Please create an account to participate in the Slashdot moderation system

 


Forgot your password?
Close
typodupeerror
Spam

Journal TFBW's Journal: The faked forwarded complaint trick 2

Journal by TFBW
Here's another tactic they're trying. Since they seem to have figured out that my mail server is locked down pretty hard, they've taken to forging an entire message that is supposed to have originated in my system, and then they forward that to some poor random Joe as a complaint! Here's an example I let bounce in earlier. Bear in mind that this is the body of the message I'm posting here.

X-ClientAddr: 203.222.71.145@perfect.epsilon.com.au
Received: from PERFECT.EPSILON.COM.AU (PERFECT.EPSILON.COM.AU
[203.222.71.145])
by perfect.epsilon.com.au (8.11.6/8.11.6) with ESMTP id h2KJHx087497
for <>; Fri, 21 Mar 2003 20:28:59 -0500
Received: from nutters (unknown [203.134.64.66])
by mako1.telstra.net (Postfix) with ESMTP id 2F76447FF51
for <>; Sat, 22 Mar 2003 00:52:15 +0100 (CET)
Received: from nutters (unknown [63.240.213.250])
by smtp3.zope.com (Postfix) with ESMTP id 2F76447FF51
for <>; Sat, 22 Mar 2003 01:52:14 +0200 (CET)
Message-ID: <4116-220546321342021701@nutters>
From: "Brett Watson" <famous@nutters.org>
To: ADDRESSLISTANONYMOUS@SPAMSTOPPER.ORG
Subject: HELLO
Date: Sat, 22 Mar 2003 00:52:21 +0100
MIME-Version: 1.0
Content-type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 8bit

-----Original Message-----
From: Brett Watson [famous@nutters.org]
Sent: Fri, 21 Mar 2003 20:28:59
To:
Subject: HELLO

Hello Fellow Webmaster, <br>
Please check out my most recent articles:<br>

...and so on. What the heck is "X-ClientAddr" supposed to be? And these guys really need to study up on the "Received" header thing. And they also need to figure out that I'm not associated with Zope.

Mind you, they did manage to confuse at least one person into complaining to me over this. I was pretty confused myself when I first saw it -- it didn't make any sense at all.

This discussion has been archived. No new comments can be posted.

The faked forwarded complaint trick More

The faked forwarded complaint trick

Comments Filter:
  • Well the lattest SPAM seems to now have a link to your Journal Page on slashdot. Plus it has a URL which points there e-mail to the System Administrators for OSDN.

    To report abuse contact the following: Abuse At Slashdot Since I work for OSDN I would like to say that WE aren't the ones sending this SPAM. I'm doing my best with what little info I have contained in the e-mails people have sent in.

    There is something interesting in the e-mail I did see... (I really hate HTML formated e-mail)

    < IMGSRC=

    • I have been trying to reply to some of the people that have gotten the SPAM and have asked for the full headers of the e-mail they received. Its amazing how many people don't understand how to send FULL HEADERS...

      Outlook 97, 98, 2000
      Double-click on the appropriate email message
      Click Options from the View menu
      Choose View Internet Headers
      Copy all of the headers and paste them into a new email sent to
      <if you replied to the SPAM I will tell you>.

      Outlook 2002/XP
      Right-click on the appropria

Slashdot Top Deals

"Consequences, Schmonsequences, as long as I'm rich." -- "Ali Baba Bunny" [1957, Chuck Jones]

Close