Many thanks for the links - these would seem to accomplish the desired task.
On Sat, Jun 5, 2021 at 6:11 PM joemailop--- via mailop
wrote:
> Hello Scott,
>
> Azure's IP space, updated once a week with one week lead before they go
> live -
>
Hello Scott,
Azure's IP space, updated once a week with one week lead before they go live -
https://www.microsoft.com/en-us/download/details.aspx?id=56519
From the looks of the json filename, it is changed after each release, so I
wouldn't recommend re-downloading the below json file for new
Sorry, bit laid up and typing with one hand, but luckily all the top
three publicly list their IP(s), unfortunately they do it via web URLs'
that you need to parse instead of via say a rwhois entry.
(some are listed at various services you can query in RBL format such as
RATS-AZURE)
Some
On Fri, 2021-06-04 at 18:08 -0500, Scott Mutter via mailop wrote:
> On Fri, Jun 4, 2021 at 1:24 PM Michael Peddemors via mailop
> wrote:
> > With apache, you can use modsecurity quite easily, and you can block all
> > azure (and other cloud providers ranges) from certain services like
> >
On Fri, Jun 4, 2021 at 1:24 PM Michael Peddemors via mailop <
mailop@mailop.org> wrote:
> With apache, you can use modsecurity quite easily, and you can block all
> azure (and other cloud providers ranges) from certain services like
> wordpress, or contact forms etc.. (you can even do dns based
On 2021-06-04 at 10:35:26 UTC-0400 (Fri, 4 Jun 2021 16:35:26 +0200)
Martin Flygenring via mailop
is rumored to have said:
Have anyone found a good way to block these using SpamAssassin? We
tried to make some rules, but it's hard to make any with that
gibberish and short subject and body.
> -Original Message-
> From: mailop On Behalf Of Michael Peddemors via
> mailop
> Sent: Friday, June 4, 2021 2:24 PM
> To: mailop@mailop.org
> Subject: Re: [mailop] Malware waves from hotmail.com
>
> With apache, you can use modsecurity quite easily, and yo
With apache, you can use modsecurity quite easily, and you can block all
azure (and other cloud providers ranges) from certain services like
wordpress, or contact forms etc.. (you can even do dns based checks or
rbldnsd) ..
Unless desktop in the cloud becomes more prevalent, you should make
On Fri, 2021-06-04 at 11:45 -0500, Scott Mutter via mailop wrote:
> Not to hijack this thread and send it off-topic, but I'm also seeing a lot
> of brute force attempts (mostly WordPress login attempts) from various and
> wide-ranging subnets of Microsoft IPs.
>
> Has Microsoft's network been
Not to hijack this thread and send it off-topic, but I'm also seeing a lot
of brute force attempts (mostly WordPress login attempts) from various and
wide-ranging subnets of Microsoft IPs.
Has Microsoft's network been compromised?
On Fri, Jun 4, 2021 at 10:46 AM Jörg Backschues via mailop <
On 04.06.21 at 10:20h Bjoern Franke wrote via mailop:
since several weeks we are getting several mails a day from hotmail.com
users with subjects like "fob xt k xerhc", an attached malware PDF like
[1] and adressed to ~200 recipients.
The good thing is, that the patterns are very clearly
Have anyone found a good way to block these using SpamAssassin? We tried
to make some rules, but it's hard to make any with that gibberish and
short subject and body.
The rule we made initially looked at the length of the body. It was good
at catching these, but unfortunately it also got some
Hi,
since several weeks we are getting several mails a day from hotmail.com
users with subjects like "fob xt k xerhc", an attached malware PDF like
[1] and adressed to ~200 recipients.
Mabye we should consider blocking all outbound servers of Microsoft
because some part of their network is
13 matches
Mail list logo