From owner-freebsd-questions@FreeBSD.ORG Tue Apr 29 23:34:13 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 0DD97321 for ; Tue, 29 Apr 2014 23:34:13 +0000 (UTC) Received: from alogt.com (alogt.com [69.36.191.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id DA968953 for ; Tue, 29 Apr 2014 23:34:12 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=alogt.com; s=default; h=Content-Transfer-Encoding:Content-Type:MIME-Version:References:In-Reply-To:Message-ID:Subject:Cc:To:From:Date; bh=2dc6OjX67FXNy9e2X6S47wqlOHNhGFGeu3wOiWnBCMA=; b=Iy+txE06MVoSvLgJLIOLYBg0txdQVsyePKIGCPVdJvgFR0VVUp4R6g8khu4kRCReVllFxkd0CGeO3WDn+kWM75Zvot9ynt2qGboNXntBbpBOia0ZKFCu8/glSNeTRpzXpbff5c9/8fmCOhAZ5+y5y4EXmNhevzEkja8SwY8OXtU=; Received: from [182.10.220.244] (port=33236 helo=X220.alogt.com) by sl-508-2.slc.westdc.net with esmtpsa (SSLv3:DHE-RSA-AES128-SHA:128) (Exim 4.82) (envelope-from ) id 1WfHXK-0009OJ-V4; Tue, 29 Apr 2014 17:34:11 -0600 Date: Wed, 30 Apr 2014 07:33:51 +0800 From: Erich Dollansky To: David Joyce Subject: Re: Spam to list participants (from openhosting.com & softcom.com) Message-ID: <20140430073351.4383f0d2@X220.alogt.com> In-Reply-To: <4b6b4a9ce7244211a2621510c6d9752d@CorpEX01.ad1.softcom.biz> References: <73354.1398734218@server1.tristatelogic.com> <4b6b4a9ce7244211a2621510c6d9752d@CorpEX01.ad1.softcom.biz> X-Mailer: Claws Mail 3.9.3 (GTK+ 2.24.22; amd64-portbld-freebsd10.0) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - sl-508-2.slc.westdc.net X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - alogt.com X-Get-Message-Sender-Via: sl-508-2.slc.westdc.net: authenticated_id: erichsfreebsdlist@alogt.com X-Source: X-Source-Args: X-Source-Dir: Cc: "freebsd-questions@freebsd.org" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Apr 2014 23:34:13 -0000 Hi, On Tue, 29 Apr 2014 21:29:17 +0000 David Joyce wrote: > I am a representative from the myhosting.com (SoftCom) abuse > department, which is responsible for the IP ranges mentioned: you are reading this list? Are you also a user of FreeBSD then? > > Since we did not receive any notifications about this spam since > roughly a day ago, we were not made aware of the activity. I think > that Ronald F. Guilmette is being a bit premature in asking to have > our entire network blacklisted without any prior notification of the > activity. > I reported this when I have gotten the first spam of this sort from a different provider. Ok, the provider blocked that one IP/machine but the spam moved then to a new IP. If you are lucky, you have already got one spam-mail after posting here and might get a second one after I answer yours. As the spam stays the same but the IP addresses move across continents, I believe that a botnet is behind the activities. Good luck in finding out more. Erich