Jump to content


  • Content Count

  • Joined

  • Last visited

Everything posted by gnarlymarley

  1. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    So, would it be worth us having someone point all the Amazon to ipmanagement or could it be possible that that group might not be in charge of all of their IPs?
  2. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    I have not got that. Mine has only said "This is a follow up regarding the abusive content or activity report that you submitted to AWS. We have investigated this report, and have taken steps to mitigate the reported abusive content or activity." Which I wonder if they are taking down the correct customer or are just sending a stock reply. I am not sure amazon is doing anything on this or else maybe the spammers themselves are running support. Amen.
  3. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    Hopefully, this keeps working out for you. The last BBB case I opened, the provider just laughed at me and the BBB didn't do anything about it.
  4. gnarlymarley

    Spamcop not parsing Gmail spam correctly?

    After me going back through my stuff, I was not able to locate a spam that had a BCC to me. I believe I have had one, but I download the spam over imap/ssl and it probably doesn't keep the BCC on the imap side. Since the field is an added by the receiver mail program, I would probably just remove the header before submitting.
  5. gnarlymarley

    Why does abuse@amazonaws.com get /dev/null?

    Agreed. As for action, I believe all we can do at this point is to feed the Blocking List and if capable, use the Blocking List on your email server. Also, from what I can tell, the directory in the googleapis URL seems to be unique to the receiver email account. I have two email addresses that are getting the spam and each account seems to have their own google links.
  6. gnarlymarley

    Spamcop not parsing Gmail spam correctly?

    I usually sent a note to the deputies about bugs at deputies[at]admin[dot]spamcop[dot]net. I try to include helpful information such as the link to this forum post or tracking URLs. The deputies have an internal bug tracker. https://www.spamcop.net/fom-serve/cache/12.html
  7. I had some other hosts appear when I setup mine when I originally setup hotmail, but they all appeared under the one entry. I believe mine came from other people who had previously setup mailhosts. Yours could be the same. If the mailhosts does not work for you, there is an option in a dropdown list to delete any entries you do not like and you can try adding again.
  8. gnarlymarley

    Unable to register - Invalid CAPTCHA

    Seems to work for me. Ostap, are you getting a spinning circle to the left of the blue "try another captcha" button?
  9. gnarlymarley

    Spamcop not parsing Gmail spam correctly?

    Gmail works for my reports, but then I am using fetchmail (over ssl) and an scri_pt that encapsulates the spam in an attachment. Are you using something like thunderbird or another mail client or the "Show Original" option found in the webmail? When I click the Show Original, my emails seem intact.
  10. gnarlymarley

    Spams received already outdated

    Yep, looking at the headers I see a jump from smtp26.services.sfr.fr to filter.sfr.fr for the two days. It appears that sfr.fr is internally delaying the emails (since they are coming from a 10.x.x.x private address). This appears to be the case. Looking at the "Received:" lines the border server seems to be catching the spam on time, but for some reason there is a delay going to the next internal server. It appears to be a problem on the SFR servers. I think what petzl is trying to say is currently SpamCop thinks should go to abuse[at]dacentec[dot]com but the whois.arin.net (where people in North America gets their IPs from) says the IP should be reported to abuse[at]bigboxhost.com. As long as abuse[at]dacentec[dot]com keeps rejecting spamcop reports, manual sending may be required. Looking at the routing details, it does appear that spamcop does not want to send to abuse[at]bigboxhost[dot]com, but would prefer dacentec even though it bounces.
  11. gnarlymarley

    Why does abuse@amazonaws.com get /dev/null?

    I can agree on this, however my recent troubleshooting appears that the person/people that are managing the abuse mailbox do not seem capable of clicking on the tracking URL. Also, they do not accept attachments either. I found that I have to copy out the spam email to the body of a message when I manually send to the abuse mailbox. It would be nice if this could be automated such as appears with the level3, but amazon seems to keep changing the reporting rules.
  12. gnarlymarley

    no TLS?

    My guess is that when the forum was setup not very many people were using https. At that time, the FBI and NSA had the capability to decrypt https trafffic. The place where encryption should be is on the login page. In my own opinion (completely my own opinion and not anyone else's) a public accessible forum (that does not require a login to read) should not need TLS or https encryption on the pages that anyone can read.
  13. gnarlymarley

    reveal obfuscated url for reporting

    Back on v4, I thought I remembered that spamcop use to do this with some URL forwarders. I ran across another post (shown below) before the V5 upgrade and I suspect they took out the unobfuscation section.
  14. gnarlymarley

    Replies from spammer BOK IQ PL

    Hetzner.de is basically the same. I meant to say the from address that would be sent to the ISP when you click the send spam reports button is unique and contains the report ID that goes to the ISP. It should would be nice if the ISPs could setup a unique address or method to accept spamcop all reports without the requiring their users to sign up.
  15. gnarlymarley

    SpamCop Emails To Me Bounce

    I had this happen with my account on gmail. I had to find all the related message in my spam folder and mark them as "not spam" in order to get their spam rules to stop rejecting it. For me, it all started when google changed their rule system and needed every thing to be setup again. So far I have all seems good for me. Hopefully this might help you.
  16. gnarlymarley

    Spams received already outdated

    A tracking URL would be useful. Also if you look at the headers, is your border server putting on an old date? Spammers have been known to put in faked headers with old dates to try to confuse the SpamCop parser. This is why the mailhosts setup now exists is to cause the parser to stop at your border server. This is so that the correct IP and date can be picked up by the parser.
  17. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    I do find it interesting that I still get the occasional spam from a specific "claimed" helo name and from. Seems like the spammer is able to stand up new EC2 instances almost as soon as amazon "claims" they are resolved the issue.
  18. gnarlymarley

    Can I forward spam Emails as attachment for reporting ?

    Yes, just attach the spams to an email that is heading to your submit address. The parser only recognizes them as an attachment.
  19. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    Interesting that my amazon spam has nearly all stopped after I had submitted ten reports in a four day period. What I also find is interesting is that I had one come back where the tech support person was not familiar with the date/time format in email headers and they needed it defined separately. * Complete, accurate timestamps of the activity including: - Date - Time - Time Zone * Full e-mail header and HTML content of the spam message
  20. gnarlymarley

    spam links hosted on https://storage.googleapis.com

    Heather, I have been getting that and it is coming from all over amazon's ip ranges. Google seems to have no interest, and neither does amazon. I setup my email server to reject it and they still try to send it. At this point, I am not sure there is a way to stop it without a firewall that can drop the tcp connection before it connects. Right now, I am mainly feeding the blocking list, but the spammer changes to a new IP every few minutes, so blocking based on a single IP seems pointless. If I hear of anything that works, then I can post it here.
  21. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    And hopefully they would revoke the port 25 being open if they previous opened it and close it back down. Yes, it is up to them to fix.
  22. Like Lking said just start reporting. Somethings to note is that your Mailhost setup is effective for previous submitted spam, so if you go to any of those to report them they should properly detect the correct spammer. Without the mailhost setup, spamcop would try to guess the IP that sent your email spam. With it, it will detect the spammer's IP that connected to your border email server.
  23. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    Ah, but it appears that one can request port 25 to be unblocked. I am not sure if there is a related fee or if it is free.
  24. gnarlymarley

    reports disabled for spam [at] uce dot org

    If they are converting this into a sandbox, should be still be munging the address in these forums?
  25. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    I am guessing this is because amazon appears to be rotating public IPs every minute. They seem to want to know the minute and since I have NTP enabled, it should make just fine into their systems. I wish that they would just enable IPv6 and stop with the NAT stuff.