Am 31.03.25 um 11:44 schrieb Alexandre Dangreau via mailop:
Hello benoit,
I'm not able to send you direct answer, your mail server seems to decline my
corp mail ...
We checked your 3 reports (2018, 2019, 2025). For the last one, you talk about
botnet but add attachment. I hope you can understand why we can't accept
attachment for security reason. Regarding the content of your report, if you
weren't on this ML I would ask you to use the form. I hope you will improve the
quality of your report. I can't activate the automatic workflow for your mail
address with this low level of quality.
Not handling text attachments (which these presumably were if they had a message/rfc822 MIME type) is a bit lame for an
abuse desk.
It is fairly straightforward to display them (or process them with appropriate tooling) such that support workers can
verify the mail headers and extract URLs from the body without any chance of getting their system infected (unless they
deliberately store the complete attachment and open it with a MUA that "helpfully" executes Javascript or downloads
external resources when viewing a mail message).
In the past, I've tried to direct abuse reports at OVH both through mail and through the web form, and finally came to
the conclusion that just like Rob Kendrick I simply don't have the time to fill out web forms or go through registration
processes just to send a heads up when some of your customers are bad apples - especially considering the observation
that such reports don't seem to have the desired effect, as indicated by the number of long-running spam and scam
operations sending from OVH servers.
Cheers,
Hans-Martin
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop
