[NTISP] SMTP Abuse Alert - And the workaround for it.

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Previous message: John Lange: "Re: [NTISP] Stalker's CGIMail Questions???"
• Next message: Rudy Komsic: "RE: [NTISP] SMTP Abuse Alert - And the workaround for it."
• In reply to: John Lange: "Re: [NTISP] Stalker's CGIMail Questions???"
• Next in thread: David Payer: "Re: [NTISP] SMTP Abuse Alert - And the workaround for it."

We have locked it down enabling all anti-spam features and we even found
hundreds of domains with Poorly implemented DNS Records. There are
basically no reverse lookups for a lot of doamins we got requests from.
each day I produce about 10mb of logs of failed mail deliveries due to the
Reverse DNS Lookup of the sending mailserver.

Rudy Komsic - President
Cyberglobe Communications Inc.

> -----Original Message-----
> From: Bugtraq List [mailto:BUGTRAQ@NETSPACE.ORG] On Behalf Of Frank
> Miller
> Sent: March 10, 1999 2:25 PM
> To: BUGTRAQ@NETSPACE.ORG
> Subject: SMTP Abuse - Extracted domains from glpro.exe application
>
>
> Per request, the following URL lists domains hardcoded into the glpro.exe
> application (version 3.3 trail).
>
ftp://ftp.apaynet.com/pub/glpro/glpro.txt

In summary, the glpro.exe application performs, as discussed, a dictionary
based 'attack' upon MTA's (RCPT/MAIL) in order to obtain a list of addresses
for UCE's. Approximately 4000 + domains (including isi.edu!!) was noted.

Take care,

Frank Miller

For more information about this list, including removal,
see this url: http://www.iea-software.com/maillist.html

• Previous message: John Lange: "Re: [NTISP] Stalker's CGIMail Questions???"
• Next message: Rudy Komsic: "RE: [NTISP] SMTP Abuse Alert - And the workaround for it."
• In reply to: John Lange: "Re: [NTISP] Stalker's CGIMail Questions???"
• Next in thread: David Payer: "Re: [NTISP] SMTP Abuse Alert - And the workaround for it."