Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-laptop

From: "Robin H. Johnson" <robbat2@g.o>
To: gentoo-laptop@l.g.o
Subject: [gentoo-laptop] Listadmin speaks - Was: Re: Re: WHY
Date: Mon, 10 Nov 2008 21:12:33
Message-Id: 20081110201853.GD2370@curie-int.orbis-terrarum.net
In Reply to: Re: [gentoo-laptop] WHY by Andrey Vul
1 Dude,
2
3 Lay off the emo angst.
4
5 The only "solution" to being completely spam-free is going to moderation on
6 every list, which is a huge burden, and I've got enough other stuff to do.
7
8 I succinctly laid out the real problem on the mlmmj mailing list some months
9 ago, and also discovered at the time that it effects nearly every other mailing
10 list program.
11
12 Simply put, the spammer finds some auto-responder that ignores the 'Precedence:
13 Bulk' header and replies anyway, and forges mail from that address, to the
14 subscribe address. The auto-responder confirms itself and is then subscribed.
15
16 Now for pass two, the spammer forges a message from the auto-responder to the
17 list itself. The spam is now accepted to the list.
18
19 Normally, that would be the end of it, one forge, one spam, however there is a
20 worse case.
21
22 The Nero auto-responder was the most extreme example, because unlike most
23 auto-responders, it did NOT have any rate-limiter or loop detection. Thus after
24 a single forged mail, the auto-responder saw it's own messages, and replied to
25 them AGAIN. Our Gentoo systems can usually catch this as we have our own loop
26 detection, however the Nero auto-responder stripped those headers so it wasn't
27 detected until somebody reported the problem to me as the listadmin.
28
29 If you see a spam that has slipped through (and it's not a lot, I count 5 spams
30 for gentoo-laptop in the last 30 days), I highly encourage you to send me an
31 email, NOT containing the message itself, but containing a link to the spam in
32 archives.gentoo.org (or any other web archive). Do not send the spam itself, as
33 it will be caught by my own filters (I get thousands of spams a day to
34 postmaster@g.o).
35
36 --
37 Robin Hugh Johnson
38 Gentoo Linux Developer & Infra Guy
39 E-Mail : robbat2@g.o
40 GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85

Replies

Subject Author
Re: [gentoo-laptop] Listadmin speaks - Was: Re: Re: WHY "Sebastian Günther" <samson@××××××××××××××××.de>
Report Message
Find on MARC Find on Google Groups