On 01/05/2015 10:35 AM, Tracey McCartney wrote: > I run a list at fair_housing@(my domain here). > > > > Over the last few days, I've received some spammy non-member submissions > from these e-mail addresses: > > > > [email protected] > > [email protected] > > [email protected] > > [email protected] > <mailto:[email protected]> > > > > So clearly these aren't totally random - they have bot-generated addresses > based on the address of my list. I would like to add these and e-mail > addresses like them to my sender filter to be discarded upon receipt.
If these are subscription requests, adding something to Sender filters won't help. You want Privacy options... -> Subscription rules -> ban_list to prevent addresses from subscribing. A regex like ^fair_housing.* or more simply just ^fair_housing will prevent any email address beginning with 'fair_housing' from subscribing to the list. You could also add the same regexp to Privacy options... -> Sender filters -> discard_these_nonmembers to prevent such addresses from posting if your list otherwise accepts non-member posts. Also, if these are bots requesting subscription via the web and your Mailman version is >= 2.1.16 and you have access, see the section about SUBSCRIBE_FORM_SECRET in Defaults.py for information on a mitigation for this attack. To use it, you would set SUBSCRIBE_FORM_SECRET = 'some string of your choice' in mm_cfg.py. -- Mark Sapiro <[email protected]> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan ------------------------------------------------------ Mailman-Users mailing list [email protected] https://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-users/archive%40jab.org
