Jump to content


  • Posts

  • Joined

  • Last visited

Everything posted by Outernaut

  1. G'day Serverion, as everyone seems to know about is being a real ^%&*$ renting out IP#s to a spammer that jumps from IP to IP. I've been manually copy-paste-message-source into SpamCops online reporting box. Time is taking it's toll and I just don't have enough of it to go through 36 emails accounts, so I manually delete them. I've been through here, again, today, reading through the ">> spamcop-flat-rate-email-account-setup/" But there seems to be no Flat Rate Email Account Setup, just a bevy of questions and answers - nothing about where, how, or how much to pay. I know your all very busy, so in point form I would like to ask: ITEM 1: Is the SpamCop "Flat Rate Email Account" a email account, or a mail account that filters spam out of email, then send on to intended recipient? Either way, how much does it cost, where do we send money, sign up and such? Does the FAQ need updating from "FAQ: Getting Mail From The SpamCop Email System By Jeff G., January 31, 2004" or do the instruction apply in 2021? ITEM 2: I read that to Forward spam to SpamCop via email client (Thunderbird), we need send the source, not the email if in html. For Tbird, that means each spam needs to be opened, view source, copy, select all, create email to SpamCop.... (account id), paste source (text version), and send. Is it possible to highlight all spam, then Forward it/all to "submit.blahblah........@spam.spamcop.net" or might that error out? cPanel has a email option to setting filters, but IP addresses are one at a time, so that's useless. Do any Gurus here know of a way to direct email to SpamCop's reporting system from cPanel? My discussion with the folks at cPanel haven't helped. Using example: 323.423.312.* or 323.* or 323. or CIDRs like 321.323.232.1/12 don't work. I am going to try several ideas I have; there is a danger in that I will try creating filters in Tbird, that will forward it to SpamCop if Tbird will convert the spam and forwarding headers to TEXT. I tried forwarding but received the following: Thanks for the work ya all do, O
  2. Looks like this is the only suggestion, the others are questions, but in keeping with old traditions - I'd like to suggest: That SC introduce ways and means of using SCBLs under cPanel accounts. A tool so we can drop in SCRBL s and let cPanel compare incoming mail to SCRBLs, and delete the often very obvious spam. Yes. Thanks for suggesting spam Assassin. If it was reliable, I wouldn't be suggesting side stepping the etch-a-sketch version of dealing with spam to using SC block lists instead of SA. O
  3. Not quite. After reviewing @gnarlymarley and checking again, it may be they used a contact form. The form did not have any captcha so I put a non-invasive invisible captcha on. We'll see. Thanks to you both for your asistance, ~o~
  4. This is new one for me. This scam comes from domainregistrationcorp.com (address is "502 Bad Gateway") The scam warns owners of domain to renew at ridiculous rates, and for certain, those that do, Inever see their renewal, only a hole in their pocket. https://www.spamcop.net/sc?id=z6708342598za3c1a7e1620502b088a404a350ad0835z ~o~
  5. I use spammassassin. Trouble is, even set at 2.5, so much crud still gets through - same spam, same IP. So I also use "Global Email Filters" and toss IP addresses in there. I don't care if I forget to check and remove them the list. Most come from Google, or passed through Outlook, or via OVH. That's a manual task I'd rather get rid of, each domain has it's own cPanel, so what I add is not system-wide through all my clients. Ergo, my question about SBL > RBLs. Now I've come across extortion without a IP. Separate post on that. Oh well, the battle goes on. ~o~
  6. All very generic old-style Viagra, Fat Burners, free energy scams, sunglasses - the usual stuff flogged by affiliates whose owners don't care how their product get's out, so long as they make a $ are inundating one email address. I have reported the IPs to SpamCop for 2 weeks now. The IP is always the same except last octet goes up or down a number or 2. But they are still coming, and I WAS still adding them, today I think about 20 of them before I decided I need some time for myself. I tested and pasted the full IP of several of those bits of wasted time into https://whatismyipaddress.com/blacklist-check and they all come out by SpamCop as being A-OK. I can't be the only one that gets these. So, how is SpamCop a good thing? I've been manually posting the messages here , then copying the IP and going to my mail server and adding them in to Global Email Filters, which has decided that it no longer likes the asterisk in addresses (170.130.207.*) and does nothing about blocking them. My own ISP, not affiliated with my other mail server, has decided not to use SBLs and insists customer can take the time to dig out the headers and paste it into a email to the ISP. I did this, and 2 weeks later received a email saying the spam was too old. They tell me they have their own "team" now reviewing copies sent to them. I think that support fella is too stoned. I have asked this before and got loads of technical gobbledygook. But, is there a way to use the SBLs at my mail server, without root access, just cPanel, to block or send these spams IP addresses and really, truly see them worked into the system to block them? ~o~
  7. That is great news. However, when I suggest people use real email and get Tbird, I get the deer in headlights looking back at me. Too, it's hundreds of people doing the job that ONE mailserver should be doing. I found today that all my manual reporting of domain 170.209.130.* spam for the last 2 - 3 weeks does nothing to stop it. That is in another post. But it is nice to see Tbird is still getting some add-ons. Thanks for the tip, ~o~
  8. @gnarlymarley I just received the following spam, posted it via the report spam box. It is dated Mar 10, as are all spam from our lover at amazonaws. The reference is: https://www.spamcop.net/sc?id=z6706263625z7a716025061c9bf82331039e2ea81dcfz Are you able to tell who/ISP is delaying it? Or a link to how to read that stuff. TIA ~o~
  9. After login, at the report and landing on the report page, is a new-to-me announcement: In a shell, does that mean we will no longer be able to report spam to SC, or does the change affect how we report? I'm also worried all you guys that help here will loose your high-paying positions ~o~
  10. Have you found anything out? Today's visit to spam Cop (SC) shows a SC announcement dated March 11, 2021 at spamcop.com > "Welcome registered user" page title, under the "Paste entire spam..." box, > News: (Last Modified: 3/11/2021, 12:51:03 PM -0800) makes me wonder how the changes will affect people like myself that manually post full *'source' to spam. I have been reporting several spam-a-day through amazonaws now for 2 weeks. Nothing changes except the date and the IP addresses and only slightly. (I see it as IPs address changing in IPs 3rd digit by one or two of the 3rd and/or 4th octets (i.e., today's spam originated from amazonaws ###.###.###.123 becomes ###.###.###.124). Too, one could sometimes fantasize and send full headers to abuse@amazonaws.com. I hope you have heard good news and also hope I am misunderstanding the SC announcement. ~o~
  11. Aha! So the key is "slowly" and the tooltip appears. I wondered what the dotted underline was supposed to do and since moving around and over it to find a link or something, I never went slowly. The onhover:showit(?) seems slow at this end. As in: <abbr title="Now I Understand">NIU</abbr> I take it that one needs higher privileges like Admin, Mods etcetera to invoke that via this GUI. I'll stick to using * to call out a footnote. I know topic is old, but forum isn't. Might help another noob like myself. * Asterisk. Used to call out a footnote.😊
  12. Thanks, I understand - I think My email client (Thunderbird) shows the spam date being March 10 and the garbage comes in after March 14 (today). My emails including the trash from scumbags is listed by most recent. Tomorrow, I know I will see several new legit email, and some unread (spam) will have day-before-yesterdays date. Let's blame the email client If I understand the Spamcop announcement (News: (Last Modified: 3/11/2021, 12:51:03 PM -0800) new announcement at Spamcop.net > login > Reporting GUI is abandoning us, just a week after my ISP threw customers into the cesspool by dropping their use of SBLs and telling customers to start using the webmail GUI to create filters, ISPs not being allowed. It is a very sad day. R.I.P. Internet. I am addressing this in a separate Topic. ~o~ p.s. If I don't get to say so before we are blocked from adding spammers, my sincere thanks to you and all the others here that volunteer your time, experience, and patience to help everyone battle the festering sores of the Internet.
  13. On a busy email address, spam comes in but occasionally with older dates/times. It's sometimes rejected by SC due to it's age. This is a example: https://www.spamcop.net/sc?id=z6706167000zcd603f42bf470b11f07d5489c8829d4dz (rejected saying it was to large (not! Rejected because it appears old?) Today is March 14, 2021. There are several emails dating back to March 10, 2021 and the spam showing the date of March 10, 2021 was not delivered until today. The spam seems to have been backdated or held until today, but with March 10 date. How is this even possible? TIA ~o~
  14. One account I am interested in protecting (Y.Com for example) is on a shared server/IP. It's one of those reseller programs similar to what Hostgator and the like offer. The account has it's own domain name of course, and may have a multitude of email addresses. The email IP octet set has one number different in the last octet than the site IP shared address. i.e. Site may be 123.456.789.001 and the email is 123.456.789.002 I sent a email out from me@y.com to myself at a telecom email address. The headers showed the IP for the shared host email IP, followed by my ip at the telecom. If I understand you correctly, then my IP is showing? Is there a handy-dandy how-to for noobs you could recommend that addresses this issue of 'to bounce or just delete'. ? I very much appreciate your time, ~o~
  15. Can someone tell me where I should be asking this question? Should I open a account at cPanel and ask them? Thanks
  16. I will try to explain better: Mail arrives at server and in cPanel > Global Email Filters is where I enter the IP, and choose what to do with that IP next time email arrives. The "Action" options are: To Filter, I use: I enter a name for the filter (I use the offending IP - easier to find), then under Rules, from drop-down I choose "Any Header" > "Contains" and enter the IP address, or parts of it. and Under Actions, is where I choose what to do with it. My choices are: Discard Message Redirect to email Fail with message (bounce?) Stop processing rules Deliver to folder Pipe to a program I assume these checks are done as email arrives. Do you think 'Fail with message' shows my IP or senders? Too, the server Host tells me they scan for spam using default of '5' and use Spamcop, so I shouldn't have to do anything, BUT, I have my settings via spam Assassin (now Apache SpamAssassin) set to 2.5 and raunchy spam with phishing, worm, or Trojans still come through daily. The generic spam, those with my winning the latest Apple stalker, a contest winner, parcel waiting for pick up or receive my millions of dollars on hold, ad nauseum arrive daily.
  17. I'm no longer able to find the article here about to Bounce or not to Bounce so apologies. Preamble: (using cPanel > Global Email Filters settings) When adding a IP address to a black list, I can choose "Fail With Message" and prompted with a text box to provide the "message". There is a lot of chatter (82 pages @ 25 topics each with numerous replies) regarding bouncing, but no pro or cons to bouncing emails. QUESTION: GURUS! Is it best practice to bounce, or not to bounce and just delete them? TIA, ~o~
  18. @gnarlymarley First of all, I don't accept public wmail from clients. Either they use their real email, or they don't get a reply. So, when invoices go out, it's to real email address. Google, Microsoft and ilk are not involved. I have the invoices sent to a real email and BCC my invoicing ware to another email address. Like so: (public mail is NOT involved - ever!) From: billing@anotherdomain.TLD Reply to: billing@anotherdomain.TLD To: Client@domainname.TLD BCC:billing@anotherdomain.TLD, copies@copies.TLD The BCCs arrive. I added a additional test by BCC: my_private_email@Big-Telcom.TLD and those arrive as well. Two clients use a big telecom instead, thereby branding/advertising the telecom, not their own domain, but using a 2 x 4 to convince them otherwise is still illegal. They get their invoices. Not to their-site.TLD @KNERD I refuse to send invoices through any public web-mail stalker. All my clients have their own TLD. I even offer to set them up with real email 'nullamque causam'. So Google and ilk are never involved. Those that insist on not using a real email address, get their invoices via snail-mail +$6.50 fee. Most pay the fee since it's only once 6 or 12 month, pending plan. The crux is this, that most are served invoices from the same mail server - the only thing not reaching clients are the invoices. I checked the server but no emails deleted, bounced, or junked. @KNERD You betcha! Wouldn't have it any other way, save for 10 email accounts at my telecom. The rest, clients and myself on my own Email servers.
  19. I know. Often they had the Gmail address before the website, and to have two email addresses seems a complexity beyond them. "But I can set up forwarding for you." "Too complicated." "An email account @yourwebsite will look more professional." "I'm doing fine. I just wanted a website, that's all." Yeppers. I try not to use the term "email" when referring to Gmail, because if Gmail were Email, they'd call it 'Email', not Gmail. Telus, a large telecom in Canada, recently sent all customers Email accounts to Gmail, but they still use their regular ****@telus.net It's just the Google can now scan and profile Telus customer Gmails and pimp their data to peeps and perves. Europe forbade Google and fined them for spying on Gmail users, but no such law in N.A. Mozilla sold out clients privacy to Google as well. I've always believed that if one can't get government or corporations to do the honest and right thing, they must embarrass them into it. Case example; it took one person to light the fire and two years hard work, but embarrassed Google and Microsoft into doing the right thing, a battle started by a person that wrote to techCrunch, which the BBC picked up and the New York Times also did a story but in much more detail . Both Google and Microsoft took umbrage, but did the right things and made significant changes to their search algorithms. By the way, apparently, the issue had been reported to several child protection agencies - which did nothing. There must be a similar way to get Google to stop mining people's privacy. ~o~
  20. I am curious if you are not getting bounces or if the invoice emails are going to their spam folders and they are not paying attention to it. Google has made some changes to their spam folders a few years back and now I have to check the spam folder on a daily basis for non-spam email. I have no idea @gnarlymarley where the emails are going.Any mail with any of those addresses ends up in the byte bucket. As for my own domains' email send-outs disappearing, it seems only Google mail rejects them. Was probably something I said I hate to say this, but I guess I'll have to set up a kmail account at Google, and check what's happening that way. I still think Pinemail was better. ~o~
  21. No need unless you want to. You did ask WDYT and my reply is what I think Internet Stalking (stalking being the kindest word) is a deep rabbit hole and at the bottom of most holes is usually a load of poop. And it ain't the bunny's!
  22. I think this topic is old, but not obsolete - yet and still with good, useful cautions. IMO: There is no such thing as a free meal, nor is there such a thing as "free" software/app/program/scripts/services whatever it's called this month. The government and corporate stalkers have pre-purposed what our rights to privacy are. There being no fixed dollar value on 'privacy', privacy is therefore deemed value-less. In exchange for "free" -stuff-, we pay with value-less privacy. READ THE PRIVACY POLICY and/or Terms of Use of almost any telcom giant or any small business-card style website and if you survive the legalese and gobbledygook you'll find that using the sites services or whatever, invalidates your right to privacy and that it is open season on your privacy. In short, Internet "free" means no money is exchanged - just your privacy. Keep in mind, that it is best to read the privacy policy, BEFORE entering in to any agreement with any -thing- on the Internet. ALSO: When you see those annoying, thug-like warnings that states "We use cookies and other ..." Note the keywords "and other"! If they do not explain what "other" is, then they don't want you to know what else it is they are doing with your privacy so run - there are many websites that will probably have what you're looking for, without stalking you with "and other" embedded spyware. Too, "cookies" are not always the cute little helpers they pretend to be. ~O~
  23. @petzl Good stuff to know petzl. Thanks.
  24. Personally, I think any kind of spam should be easily reported to a central 'spam' clearing house. But that costs money and most giants are so micro-managed that a 25 cent cost raises flags - and the responsibility of spam-prevention is what they dump onto webmail clients - a cost-saving to the Giants and 'free tools' for customers to embark on dealing with spam themselves. In times past we'd call that tossed to the wolves. Giants call it additional free service. Gmail, IMHO is the hot-bed for spammers. As are most 1free webmail-wannabe real E-mail web sites. It seems there is to much for the giants to even care about when they can just pass the buck, and the spam, to it's customers victims. As a 'host' to 68 sites, each with a different number of email accounts, I try very hard to keep them free from spam. Yes, they have a variety of tools with which they can use to reduce spam, but no one wants to take the time to dig out the offenders addresses, take the steps to add the offender to a list, to delete the spam when it comes from that source. Too, I am amazed at the number of clients that sport a good domain and use name@gmail.com of boss@mywebsite.com. I often ask "Why don't to you use your own domain address and promote that instead of promoting google?" I'm met with that 'deer in the headlights stare'. I believe that Google has already assimilated most of the roughly 10,617,060 tons of grey matter walking about so the slow demise of real email via a email client is dying or forced out by telcoms who pimp people's privacy out by profiling users via Webmail. You asked for it - You did say "WDYT?" ~o~ 1 Free webail in exchange for it being scanned, analyzed, and added to your Google profile. The 'web' shows us that our 'right to privacy' is non-existent and that our privacy is open-season to those that harvest our information, and it's only seen as a value to them, not us. spam is so far down the list of telcoms interests that not even Google could find it, or want to.
  25. I'm confused, because my 'system' that has been sending invoices for years, using the same format, except edited a couple of times so as not to appear spamish are blacklisted. Recently, none get through, and I only find out after 2 months when no one has paid - they are not getting them. I get copies from same account that sends the invoices. Somewhere, a anti-spam decided to add my IP to their list based on what - invoice attached? It's getting so that legal, honest emails are being beaten down while faked large corporate names abused in spam (Apple winner etcetera) get off. Anti-spam may fade away, and lose it's battle. But only because the large corporate peons running Gmail, YahooMail, HotMail (still), Livemail and other privacy harvesters and ilk won't support anti-spam. Most people have been conned into using webmail and are just commodity - innocent collateral Googies. I now use SpamCop just to paste those entire message source so I can easily read the tracks and manually adding the first 3 octets of the lazy ISP to cPanel > Email > Global Email Filters. I still submit the spam - but that is no longer why I use SpamCop. ~0~
  • Create New...