Jump to content


  • Posts

  • Joined

  • Last visited

Jimemac's Achievements


Member (2/6)



  1. Jimemac


    Thanks for your reply Wazoo. I'm not looking much for specifics on setting my firewall, email server, etc. More an explanation as to what ESMTP is and what may be some advantages/disadvantages to enabling it. I haven't been able to find any comprehensive/easy to read material on it. This is just a learning expedition for me, not a "how do I get this email to go through thing." But in case its absolutely necessary, I'm using Symantec VelociRaptor (I like to call it the CRAPtor), and Exchange 2000 on a Windows 2000 server. Thanks again for any advice! Jime
  2. Jimemac


    Ok, I need some answers from all you email server administrators. I recently learned our firewall isn't configured to pass ESMTP or EHLO traffic onto our email server. Which may be a good thing, I can't tell. I have no clue what EHLO or ESMTP is. Can someone point me to a nice FAQ or something about it. I have recently started having trouble receiving email from clients because we are denying EHLO requests on our server. (and apparently their server isn't retryin the connection with HELO) Is it safe to enable it? Which extension are safe to turn on? If I turn on ESMTP and leave all the options off, does that mean that servers will drop the connection rather than retrying w/ HELO? Help! This is all too complicated for me. Oh and a little rant here. The IETF.org site could use a little modernization don't you think, I mean they are the standard for Internet stuff! Thanks for your help all, Jimemac
  3. Sorry, I needed to add a bit more info that my post. The reason I was asking why is because I didn't see either of those IP's in Spamcop's blacklist. And I know that its a real time list and gets removed at any time. However one of the emails that was filtered was sent within 30 minutes of me checking to see if they (the IP's) were on the blacklist, which they weren't. Seeing from Merlyn's post that they are listed else where leads me to believe that maybe they were listed and the 48 hour expiration happened within that half hour. I don't see a listing history though. Anyways I just whitelisted the IP's and everything is beautiful now. Just goes to show that Spamcop is right when they say to use them as a filter and not a blocker. Thanks for your replies. Jime
  4. Not Mike Wendlend He's a local Detroit reporter that goes after the pondscum that lives in our area. He once went after pedophiles who thought they were picking up 13 year olds on the internet. It was very funny(their faces) yet disturbing to see so many idiots walking to the door thinking they were about to get lucky with an underage girl. Now I don't consider spammers to be that bad of pondscum(unless that is what they are peddling), but I think this kinda story is right up his alley. It's news cause spam effects all of us everyday, and most of us are pissed about it. I know I'd watch it. /signed Jime
  5. http://www.spamcop.net/sc?id=z697522514z4c...5c6ee79f0e4439z I got a false positive today (no biggie, it happens sometimes) What I can't figure out is why? I only use spamcop's blacklist on my email server as a spam filter, and this one was blocked(filtered) on the server. No text lookups, no Bayesian (sp?) filters are used. Also this message is a few days old, but I also got another one from the same person that was also rejected at around 12:30 eastern time today (about a half hour ago). Any help would be much appreciated. Thanks, Jime
  6. Oops looks like we are finding this around the same time But once the first link is outta bandwith, try Albino's. Jime Thanks for the move Wazoo...
  7. To bad we can't force this upon new people before they post their "Spamcop has blocked my email!!!!!, I'm gonna sue!!!" thread. http://www.albinoblacksheep.com/flash/posting.php Jimemac
  8. How does one go about setting up this quick reporting I've read about? Mondays are starting to get really long when I have to go through and 'click confirm' all the spam we got over the weekend. (Almost 600!!!) Thanks all! Jime
  9. Hey dra007, just thought I'd comment since I was very interested on what's going on here. First of all I'd like to commend you on your efforts, you are probably helping out 1000's of others who have received spam from these bastards. Even if only for a week or two before they move. I've only recently started to join the anti-spam fight. I starting using the Spamcop reporting service a few months back and am now using its BL to filter all the spam my company receives. It's working great so far, however I want to achieve better results. I usually have plenty of time (and company resources) to do the sort of fighting you've been doing, so I guess I'm asking, how did you do what you are doing? I understand how most of the basics. From looking up the network contacts in a whois type setting. But you actually call the network admins? What do you say to them? How do you know if they are just lying bastards? How do you get the upstream providers to do anything? Basically I'm highly motivated to become a soldier in the spam battle and I need a battle to be thrown into. I just need some BASIC training first. If you feel it is unnecessary to post such details here, feel free to email me through Spamcop. Thanks for your time dra and everyone else, Jimemac
  10. Was there a SPAMMERS conference in June or something? Looks like they took a vacation, or we reporters did.
  11. Here's my stupid question cause I've never been able to figure it out. What does LART mean?
  12. Imagine if this comes true how much more fun us "vigilantes" will have http://www.msnbc.msn.com/id/5326107/ Jimemac
  13. I was wondering if anybody had some recommendations or feelings about what I should use as a plugin for Exchange 2000 server. I want to give Spamcop's blacklist a try. I also had another idea as Spamcop may be too agressive for what I need. Currently we only need to receive email from within the United States. I was thinking about blocking all ip's from Korea, China, Japan, and Brazil. As this is pretty much where all our spam is coming from. Is there a way I can do this? Thanks for all your help in this matter! Jimemac
  14. Awesome, thanks Ellen that explains a lot.
  15. I have reported several spam's coming from the IP address Spamcop's information is the following.... Tracking message source: Routing details for De-referencing cais.net[at]abuse.net abuse net cais.net = abuse[at]cais.com, abuse[at]pccwbtn.com Report routing for abuse[at]cais.com, abuse[at]pccwbtn.com not listed in dnsbl.njabl.org not listed in dnsbl.njabl.org listed in cbl.abuseat.org ( ) is an open proxy not listed in query.bondedsender.org not listed in iadb.isipp.com However the info I get from whois.arin.net is this..... Search results for: ! NET-66-249-108-0-1 OrgName: Lightwave Transit, Inc. OrgID: LIGHT-16 Address: 3838 Raymert Dr. Ste 3 City: Las Vegas StateProv: NV PostalCode: 89121 Country: US NetRange: - CIDR: NetName: LIGHTWAVE-TRANIT-BLK2 NetHandle: NET-66-249-108-0-1 Parent: NET-66-249-96-0-1 NetType: Reallocated NameServer: NS1.LWTHOSTING.COM NameServer: NS2.LWTHOSTING.COM Comment: RegDate: 2004-03-17 Updated: 2004-03-17 AbuseHandle: ABUSE523-ARIN AbuseName: ABUSE AbusePhone: +1-360-323-0727 AbuseEmail: abuse[at]lwthosting.com OrgTechHandle: ABUSE523-ARIN OrgTechName: ABUSE OrgTechPhone: +1-360-323-0727 OrgTechEmail: abuse[at]lwthosting.com # ARIN WHOIS database, last updated 2004-05-04 19:15 # Enter ? for additional hints on searching ARIN's WHOIS database. Normally when I notice that Spamcop has the wrong or outdated information I click the refresh/show link and Spamcop refreshes it's information. In this case the link isn't available. How do I get the report sent to the correct location? Thanks for you help all... Jimemac
  • Create New...