Jump to content

Lking

Forum Admin
  • Content Count

    23,676
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Lking

  • Rank
    What Life?

Contact Methods

  • Website URL
    http://www.knob.com
  • ICQ
    0

Profile Information

  • Gender
    Male
  • Location
    Colorado, USA

Recent Profile Visitors

6,312 profile views
  1. Lking

    Ragged end of the internet

    "And now for the rest of the story" It seems that near the end of the workday Thursday a contractor working between Durango and Silverton, CO, USA was digging and cut the fiber cable. It truly was an "oh sh**" moment because they just filled in the hole and went home.. As a result it took telo a while to find the break. And yes the one and only fiber cable coming into town stops here. No loop, no redundancy, no second path. ~~ A stub end right here. It took 5yr of everyone yelling to get the fiber. This county seat was the last county in Colorado to get something that "looked" like the internet. Before it was a multi-link microwave shot over 2 mountain passes which carried all the phone service/what ever out of town. Because of the mining industry that use to be here, electrical power, on the other hand, came in from both the north and south. No power for the mines, then we are talking real money. With the mines closed, there is probably enough extra power here to make our own dilithium crystals.
  2. Sorry about the confusion with your post. SpamCop does not sent spam reports to the spammer but to their ISP, etc. If you could provide a Tracking URL it would help others see what the parser did with your spam. It is hard to give an informed opinion based on just your post.
  3. Have been without phone landline or cell and of course internet for the last ~24 hrs Yes I live out on the ragged, unreliable, slow end of technowledge
  4. Lking

    AWS spam source

    Thanks [petzl. I was in a rush this morning..
  5. Lking

    Sendgrid reports dev'nulled?

    It is quite possible that abuse{AT}sendgrid.com has ask SpamCop to not send reports.
  6. Lking

    Emails not being received

    It is understandable. Having joined the forum in the last hour, I can understand why you have not received email from he forum for the last 3 years. Try with your new account. Notification works fine for me. There is no indication that there is a issue with the system and current active accounts. Post split from an existing, older, unrelated topic and move to a more appropriate forum.
  7. Lking

    forum spam handling

    Not to be more cynical than usual, but... Wandered back and founld one new member "M" who joined ~3UTC (12 hours ago) who's IP is in New Delhi. We will see While looking at the list of new users saw three that have not yet validated their emails (2- outlooks & 1- protonmail) all from New Delhi. But then again RobiBue may be right.
  8. Lking

    forum spam handling

    Those are post I was in the process of hidding . The user's post count does not update when I hide their post, but there is nothing for you to see. Robi we are ships in the night.
  9. Lking

    forum spam handling

    I too have noted this variant. There is also a large number of spams by members that have registered days or more before posting. For example today (last night) there were 8 new members ~ all spammers. But there were 23 spam posted. You can mouse over the member icon and see date/time joined and date of last post. For a spammer likely their only post.
  10. Lking

    spam with entire contents in ENVELOPE_TO

    In the case where the body is missing in the original spam, It is OK to add something like "Body Missing" Be sure to include a blank line to mark the end of the header. It is of course to late to report this example.
  11. Lking

    forum spam handling

    To create an account the email must be validated stolen emails shouldn't work. Anecdotally, there is a pattern to the emails used to create accounts here. Using the forum tools sorting emails of course groups mailboxes not address domains. The most of the emails today are gmail and outlook. This looks to be true historically with lots of protonmail.com, mail.com, and yandex.com The email(s) used with the one IP use twice to post were mail.com and faithmail.org. Blocking email domains doesn't seem useful. A casual review highlights gmail and outlook but also protonmail, yandex and mail.
  12. Lking

    forum spam handling

    Still not an "in depth analysis" but today's sample of spamming IPs does not reveal much of a pattern in the first pass. Sorting the 23 IPs that posted spam over night today show only 1 duplicate post in "How To Use" otherwise the IPs are unique. The most active was 4 post from 146.196.37.0/24 otherwise unique at that level. Although the system does not provide a tool to search users IPs, I tried to check the 22 different IP that posted 23 times today. I did not find those IPs in the historical db. Added Looking up the 22 IPs using https://www.spamcop.net/w3m?action=map the results at this time are not vary informative. Of the 22 addresses 8 are listed as "poor", and 1 as "neutral". I guess I was surprised that only ~1/3 are listed. The 4 addresses 146.196.37.0/24 identified above are all "poor". The one IP that posted twice was not listed.
  13. Lking

    forum spam handling

    It has always been the feeling of the powers-that-be that one of the important audiences for this forum are those struggling with the side effects of having a spammer use their email, IP, infect there system or just be in their neighborhood. In part this concern is due to the impact of an effective SCBL; If emailers Alice & Bob temporally share an ISP/IP then Bob's email get blocked because of Alice's spam. The question then becomes how do "we" help Bob? How do those impacted contact the forum if any automatic blocking is used? If there post is delayed (until approved by someone) i'm guessing they just look for help elsewhere. I know I do. As stated we block reuse of usernames and email. Blocking IPs would also lock all users of gmail, about 1/5 the users of CenturyLink in Denver, etc and that person who shares an IP with a spammer. Now I have not done an in depth analysis but a quick look at 4 or 5 pages of 25 banned users (sorted by IP) did not reveal a clusters. Who ever designed the db screwed the date (mm/dd/yyyy) which makes it hard to look at say yesterdays spammers. I will work on that while watching the hearings in the morning. Beefing up the front end to keep out the bots seems to be the only acceptable solution, IMHO. Holding the first post it seems would discourage first posters that have been "blocked by SC" or are trying to deal with spam incoming to their system, both a primary audience. Blocking IP's or blocks of IP's has the same affect. (yes there have been lagit posters from Russia and India) Hiding post after n-number of reports 1) would require adding a feature to an off-the-shelf product (check the bottom of the screen) 2) There is also the reality that by the time I get to spam with my first cup, generally the spam has only been reported by @RobiBue. Sometimes one other. After those posted while I sleep, there are seldom any reports before I get to them. and 3) That type of process would open the forum to another type of attack that needs to be programmed to stop. (Only reports from certain group(s) of users can block. What about reports by other users?...) It is a pain. I have to work at keeping tract of threads that need attention with all the clutter. There was a time when @Wazoo had full access to the forum software and db. He tweaked the SW with regularity, which resulted in a system that was generally undocumented and not maintainable after he left the seen. That resulted in the migration to an ISP maintained package and unfortunately all the bad links in old threads. There are pros and cons to all changes. There is an issue but a solution where the pros win out is needed.
  14. Good catch. I missed that.
×