Jump to content

Chris Parker

Membera
  • Content Count

    196
  • Joined

  • Last visited

Posts posted by Chris Parker


  1. Thanks for the feedback.  The max width thing was hotly debated here (I'm not the only cook stirring this pot these days).  Swappable styles was something I had in reserve, and I have added that feature now.  The default is still the fixed-width layout, but there are now various wider options.

    Hmm. WIDE does not appear to auto-update under IE 6 on XP.


  2. Just wondering, what status code do you recommend to use when rejecting mail from a host that is blacklisted in bl.spamcop.net ? Temporary (4xx) or Permanent (5xx) ? Both have advantages and disadvantages, I'm just looking for recommendatoin, and maybe what's accepted as a standard...

    I would agree that if you have wanted mail get blocked, a 500 series error is better.


  3. GRANTED we mostlikely have individuals on our mailing lists who don't remember signing up, who's email adresses has been entered by friends or who didn't realize that it is legal by european law, to send our newsletters to customers that have purchased a product or service. But these individuals complaints, truely shouldn't count towards being blocked by your spam filter.

    Your mailing list should be a closed loop unique token confirmed opt in mailing list. Meaning that someone must submit their address. Your system sends an email with a unique token. The user must confirm either by mail or web, with that token, that they do wish to be subscribed. If you run a mailing list where people can sign up other people without their permission, your mailing list will be used to abuse others.

    The legality of the mailing list is not at issue here.

    SpamCop only maintains a list of IP addresses that have been reported, by the receivers of the mail, to have sent unsolicited bulk mail.


  4. The website lookup indicates that the mail server is not currently listed. I would guess that unless you are getting a number of non-deliverables that someone else's mail server is misconfigured.

    However, doing a search in Google Groups shows a few spam reports (they are a few weeks old)

    You can always send an email to deputies <at> spamcop.net and request additional information, which they may (or may not) provide.


  5. How can I go about finding specifics as to why a server I administer, 205.161.0.2, is listed in spamcop?  We're an ISP and don't do any sort of email marketing or (knowningly) allow any customers to either.  Specifically, I would like the headers of any offending messages.

    I do not see anything obvious going on. Try sending an email to deputies <at> spamcop.net


  6. Can anyone help? our IP address is 81.138.21.74, we are flexographic and design business and we seem to have been entered on the Spamcop database, we rely on our e-mail to send proofs and other graphic files, and this block is causing loads of problems and can result in lost business, does anyone know who reported us and why, and is there any way to prevent us being entered again.

    many thanks for any help.

    You appear to be running Microsoft Exchange which with it's default settings is prone to being compromised by spammers. You'll want to remove any accounts that are not being used (ie guest) and make sure that all your passwords are non-trivial. Take a look at your outbound logs and that should give you some indication of what is happening.


  7. The website isn't allowing me to report my spam.

    When I get to the website, it asks me for my login information... which i put in, and I get the response Authorization required.  I've tried logging in about 5 times to make sure my password is correct.  (My caps lock is off).

    So I tried to reset my password and when I type in my username it tells me that my username is not found?  No userid found.

    The strange thing is I can still receive email from my email client on my computer.  So my mail client can access spamcop but I cannot gain access through the website?  If my mail client is using my userid I am assuming that my id is still there, but I'm having problems with the website.

    Please help.

    Yup, looks like one of the standard temporary problems. Cannot log in to report via website. I have yet to see a response to an email submission in at least 2.5 hours (last response was 3.5 hours ago, but nothing was reported for the following hour or so).

    Oh, site is now down for maintenance


  8. Has something gone wrong? Normally spamcop catches 90% of my spam, but that rate has dropped to about 25% as of last night, and all the fresh spam seems to be in german. I have all the blacklists ticked and spamassasin set to 1. what on earth is going on???

    Looks like someone is sending a psuedo-political/racist statement/spam through previously undetected trojaned boxes. Someone posted a copy of the message in spam-L.


  9. I have not changed any settings except - since this happened (today) I opened the internet options went to privacy and then to per site privacy actions and added spamcop.net to the always allow cookies list but still can't sign into spamcop

    Try undoing your security settings and see what happens.


  10. The hostname "bl.spamcop.net" as listed in the spamcop FAQ's with regard to tcpserver setups is not resolving. 

    Perhaps the FAQ has the wrong hostname? Let me know.  Thanks.

    Everything is working correctly. The host bl.spamcop.net does not exist. The query should be formatted in the reverse dotted quad like this:

    (to check and see if 127.0.0.2 is listed)

    2.0.0.127.bl.spacop.net

    The response of 127.0.0.2 shows that the IP is listed.


  11. securepay.com,Jun 3 2004, 02:42 PM] OK, I think you folks are a little one sided on your opinions, but the object is to try and prevent spam from getting through. So I have turned off the CR and added the bl.spamcop.net to the DNSBL list.

    Any other suggestions other than more convictions :)

    Tony

    I would suggest the use of the following dnsbl's instead (or in conjunction) if you are worried about false positives:

    sbl-xbl.spamhaus.org

    relays.ordb.org

    list.dsbl.org

    dnsbl.njabl.org

    dynablock.njabl.org

    Thanks for listening...


  12. securepay.com,Jun 3 2004, 02:29 PM] So, the position here is that since I use challenge response which does prevent a large amount of spam from getting through to my users I am the bad guy.

    The issue is that *your* system is sending mail to those that did not request it. (aka your mail server is a source of spam)

    Other issues are not relevent to your server being listed.


  13. Actually Challenge Response does work, unfortunately with so many disparate systems there are conflicts.

    No, C/R only works for those behind the C/R system. *everyone* else suffers increased spam.

    I am all good with dropping the challenge response and adding the Spamcop black list, but so far it appears that SpamCop is indescriminate and blocks good mail.  SpamCop as demonstrated clearly has faulty logic in how it works or my challenge response emails would never have triggered the "secret traps".

    SpamCop lists systems that spam. If *your* system is send mail to people who did not send email to your system, then your system is spamming. No, SpamCop clearly demonstrated how faulty C/R systems are.

    How would you measure SpamCop as a spam preventative?

    It reduces the amount of spam that I get by several hundred per day.

    How much spam still gets through?

    What gets through gets reported so that others will not get spammed later.

    My mailserver is 207.53.225.218 ... if I could get more feedback to why it is being blocked.

    I'm sure that challenge messages to spamtraps is the reason it was blocked. Drop a polite email to deputies <at> spamcop.net


  14. Okay spoke too soon.  Was unblacklisted this morning and now I am blacklisted again.  This is getting ridiculous.  I thought I had the problem solved and just when I was giving the good news to my users, I got the beat down!

    I forced all users to change passwords and enforced password complexity.

    I am running Symantec Antispam for Exchange 2000.

    I turned off NDR's and virus reports.

    Could possibly just be a late report coming in from someone. I'd suggest that you drop a note to deputies <at> spamcop.net before jumping to any conclusions.

    I can now see why Ironport/Spamcop is getting sued.  This stifles commerce for a lot of ligitimate businesses.  And it should work like our justice system...it's better for one hundred guilty to go free than to put one innocent man in jail.

    You should look at the reputation of the person who filed the complaint. A well known spammer.

    What stiffles commerce is when I have to deal with (without filtering) 1000's of spam messages a day. If the ratio were 1:100 then I would agree with you. The ratio of false positives to spam that I see on the mail servers that I manage are in the neighborhood of 1:100,000.


  15. 217.166.48.131 listed in bl.spamcop.net (127.0.0.2)

    How to get of the Black List? The customer got the mail from spamcop with the reasons why they were blocked but he deleted it thinking it was spam.

    You are also sending to spam traps.

    You can drop a polite message to deputies <at> spamcop.net who may be able to provide you some more specifics.

    Seeing as you are running an Exchange server, you'll want to read the following FAQ: Exchange FAQ

    You'll also want to make sure that you've disabled any virus notifications or non-delivery reports.

    Update: There has been a significant increase in the amount of mail coming from that machine (almost 1000% increase in the last 30 days) which would indicate that server may have been subject to an SMTP AUTH hack (see FAQ above).

×