(OLDER) <- More Stuff -> (NEWER) (NEWEST)
Printer Friendly Version


spam alias

What is this stuff?

If this isn't exactly what you wanted, please try our Search (there's a LOT of techy and non-techy stuff here about Linux, Unix, Mac OS X and just computers in general!):



From - Thu Jan 13 06:36:42 2000
Xref: world comp.unix.sco.misc:113868
Path: world!newsswitch.lcs.mit.edu!logbridge.uoregon.edu!nntp.upenn.edu!news.misty.com!shady!shady!not-for-mail
From: kbs=cusm@shady.com (Kevin Smith)
Newsgroups: comp.unix.sco.misc
Subject: Re: SPAMMERS LOOKING AT MY ALIAS FILE
Date: 12 Jan 2000 23:15:03 -0500
Organization: ShadeTree Software, Inc.
Lines: 48
Sender: kevin@shady.com
Message-ID: <85jjg8$bfb@shady.shady.com> 
References: <387c0c07.0@news.isdn.net> <1b7o7sgdl2701gbnv1uj9mr20esiki7k0d@4ax.com> 
NNTP-Posting-Host: localhost.shady.com
X-Mozilla-Status: 8010
X-Mozilla-Status2: 00000000

In article <1b7o7sgdl2701gbnv1uj9mr20esiki7k0d@4ax.com> jeffl@comix.santa-cruz.ca.us writes:
>On Tue, 11 Jan 2000 23:12:07 -0600, "Terry Shows"
><terry.shows@csstn.com> wrote:
>
>>I am using MMDF as my mail transfer agent.  I just got a SPAM addressed to
>>an unusual alias I have set up in my alias.n file in the table directory of
>>mmdf.   As far as I can tell, the SPAMMER either read my alias file
>>(somehow), or issued a bunch of verify requests to the SMTPD daemon until
>>they had some hits, then recorded the hits and sent the email out.
>>does anybody know how to protect from this?  My alias.n file has a lot of
>>addresses that I do NOT want spammed.
>
>telnet comix.santa-cruz.ca.us 25
>220 comix.comix.santa-cruz.ca.us Server SMTP (Complaints/bugs to:
>postmaster)
>expn root
>250 Superuser <root@comix.comix.santa-cruz.ca.us>
>expn postmaster
>250 <postmaster@comix.comix.santa-cruz.ca.us>
>expn bozos
>250 <bozos@comix.comix.santa-cruz.ca.us>
>expn jeffl
>250 Jeff Liebermann <jeffl@comix.comix.santa-cruz.ca.us>
>quit
>
>Hmmm... This was to my 3.2v4.2 SMTP which doesn't seem to expand
>aliases.  I think (not sure) that 3.2v5.0.5 will expand aliases.  If
>they manage to figure out that you're running a mailing list, and use
>the EXPN command with that mailing list, it may (not sure) belch all
>the users inside.  I'll try it when I put the RAM back into my
>3.2v5.0.5 machine.

Chances are they were just guessing unless you have 'public' on the
ALIAS line in mmdftailor for alias-n.  The 'public' keyword allows
someone connecting (as in Jeff's example) to see what the alias will
expand to.  I.e.




    ALIAS table=alias-n, nobypass, public

I think this is a checkbox in the gui configurator.  Without 'public'
expn just echos the same address back to you (with your hostname if 
you left it off) as in Jeff's example.

See 'man mmdftailor'
-- 
Do two rights make | Kevin Smith, ShadeTree Software, Philadelphia, PA, USA
a libertarian      | 001-215-487-3811  shady.com,kevin   bbs.cpcn.com,sysop
                   | dvtug.org,kevins--Deleware Valley Transit Users Group



Click here to add your comments


Don't miss responses! Subscribe to Comments by RSS or by Email

Click here to add your comments

If you want a picture to show with your comment, go get a Gravatar


/Bofcusm/236.html copyright 1997-2004 (various authors) All Rights Reserved

Have you tried Searching this site?

Unix/Linux/Mac OS X support by phone, email or on-site: Support Rates

This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more. We appreciate comments and article submissions.

Publishing your articles here

Jump to Comments



Many of the products and books I review are things I purchased for my own use. Some were given to me specifically for the purpose of reviewing them. I resell or can earn commissions from the sale of some of these items. Links within these pages may be affiliate links that pay me for referring you to them. That's mostly insignificant amounts of money; whenever it is not I have made my relationship plain. I also may own stock in companies mentioned here. If you have any question, please do feel free to contact me.

Specific links that take you to pages that allow you to purchase the item I reviewed are very likely to pay me a commission. Many of the books I review were given to me by the publishers specifically for the purpose of writing a review. These gifts and referral fees do not affect my opinions; I often give bad reviews anyway.

We use Google third-party advertising companies to serve ads when you visit our website. These companies may use information (not including your name, address, email address, or telephone number) about your visits to this and other websites in order to provide advertisements about goods and services of interest to you. If you would like more information about this practice and to know your choices about not having this information used by these companies, click here.



More:
       - OSR5
       - Bofcusm


Unix/Linux Consultants

Skills Tests

Guest Post Here










My Favorites

Change Congress