North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Have Yahoo! gone pink?
[I'm wearing my personal hat here.] I'm getting a *flood* of spam coming in from Yahoo! mailservers, both to my personal and work addresses. It seems that Yahoo! don't care. Here's the response to me piping a sample one through Spamcop: http://abuse.mooli.org.uk/yahoospam Yahoo claim "After investigation, we have determined that this email message did not originate from the Yahoo! Mail system. It appears that the sender of this message forged the header information to give the impression that it came from the Yahoo! Mail system." The spam headers claim otherwise: Received: from mrout3.yahoo.com ([188.8.131.52]) by relay-1.mail.uksolutions.net with esmtp (Exim 4.50) id 1FJbCW-0002Ag-IV for [email protected]; Wed, 15 Mar 2006 18:58:29 +0000 As does DNS and whois: [email protected]:~$ host 184.108.40.206 220.127.116.11.in-addr.arpa domain name pointer mrout3.yahoo.com. [email protected]:~$ host mrout3.yahoo.com mrout3.yahoo.com has address 18.104.22.168 [email protected]:~$ whois 22.214.171.124 OrgName: Yahoo! Inc. OrgID: YAHOOI-2 Address: 701 First Avenue City: Sunnyvale StateProv: CA PostalCode: 94089 Country: US [etc] Doing double-DNS lookups of the IP addresses on other spams also give yahoo.com hostnames, and they're typically in DNSBLs for being sources of spam and a useless abuse address. So, which IP blocks shall I null-route then? Or is there anybody here from Yahoo! with a clue? (OK, you can all stop laughing now.) -- PGP key ID E85DC776 - finger [email protected] for full key