North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

** Forged spamming going on

  • From: alex
  • Date: Sun Dec 20 16:55:30 1998


some luser off of AT&T DIalup is using mailme.com (my domain) for relaying
mail:


Received: from mailme.com (146.st-louis-71-72rs.mo.dial-access.att.net [12.75.28.146])
	by atom.ntgi.net (8.8.8/8.8.7) with SMTP id XAA23473;
	Sat, 19 Dec 1998 23:27:18 -0500 (EST)
	(envelope-from [email protected])

He is sending thousands of emails to AOL users, who is then bouncing them
to me.

I am not please, to say the least.

AT&T's security dept is non-existent, as far as I am concerned. 

I wish vixie would RBL 12/8.

Thinking about this, there is no solution; here are my options:

1) blackhole AT&T, which does nothing, since the mail is bounces coming
from AOL.

2) blackhole AOL, which would fix my attack, but would break all
legitimate mail from/to AOL.

3) temporarily blackhole mailme.com, which would prevent me from getting
the bounces, but then I can't send/get legit mail.

I wish AT&T and other huge dialup organizations could control the
users they have; there should be a licensing process..

 

-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
     Atheism is a non-prophet organization. I route, therefore I am.
       Alex Rubenstein, [email protected], KC2BUO, ISP/C Charter Member
               Father of the Network and Head Bottle-Washer
     Net Access Corporation, 9 Mt. Pleasant Tpk., Denville, NJ 07834
 Don't choose a spineless ISP; we have more backbone!  http://www.nac.net
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --