Hey everyone, been a while since I've posted here.
I've read the various postings regarding the Nigerian scam, gone
Iraqi. I haven't experienced this one, personally, however, lately, I've
been receiving spam messages from Nigeria, South Africa, Liberia,
Democratic Republic of Congo, Zimbabwe, Zambia,U.A.E. etc. Two messages
actually had '.cz' in their addresses, (I have a router entry for that one,
*.cz = error ;Czech Republic) and 2 messages actually had the originating
IP in the message header. A few messages had the same reply-to address as
the sender's address, however, most did not. Typical of this spam crap,I
know! Our church, who also has an email address & website on our server,
is also getting similar junk.
I have several email addresses on our website, and the Church's
email address on their website. All these addresses are encoded using the
SpamStopper utility, although I've not resorted to using it's,
"Full-Paranoid," mode. Should I? Would it help, or no? Thus far, most of
the junk has come to my personal email address, (which is on the site,) and
the church's address.
I have several questions. First, this spamtrap thing I've seen
postings about on here - I understand what it is, but do I actually need to
go to the DNS system and create 'A' records, creating new addresses, for
this to work, or can I just go into the user accounts module of SIMS &
create 2 or 3, or so, accounts for this purpose? Whichever way I have to
use this feature, can I embed these spamtrap addresses into my web pages,
in addition to the email addresses I already have on it for public use, or
not? If I need to embed them into the 'meta' info in my web page headers,
is there a Mac-Based app for doing this, as well as, generating any other
meta info needed?
Next, I have several RBL Servers in my DNS/RBL list. Is this all I
need to do for them to work for me, or do I need to do more? I seem to
recall a handful of posts dealing with this subject, and I seemed to glean
from them needing to add the response IP for each RBL Server to my
blacklisted IP list. True, or not? If so, where do I look for these IP
numbers, and what, exactly, does using them in my blacklist do for me? If
needed, I can provide a list of the RBL Servers I'm currently using.
Next, would it be safe & prudent, to use the originating IP info, I
mentioned was in two of the message headers, in my blacklisted IP list? As
far as examining the logs to determine the IPs to blacklist, suppose there
are 2, or more of them, showing for the spam message in question - which
one(s) do/should I use? I can provide an example from one of my logs, if
needed.
Generally, I'm looking for assistance in nipping this thing in the
bud, before it gets any worse, especially since I have a church, a friend,
a relative & 2 roommates, with accounts on my server! I know I've received
25 messages I'd consider spam in my personal account, and other than
examining the logs, I have no idea, whatsoever, how many such messages the
church has received. Might it be helpful to put '[EMAIL PROTECTED]'
on mine, & the church's site, so that I can get spam reports? I presume,
the best thing to do is ask my users to actually forward any suspected
spam messages to this account, so that I can examine the logs, and take
whatever action I deem necessary?
Well, this should suffice for the moment. I know many of you guys
have been doing this a lot longer, and on a *much* grander scale than I, so
your expertise is welcomed! Better I learn how to deal with this crap now,
before it spins out of control! TIA!
Ron Johnson
WebMaster http://www.DakotaRainbow.com/
Ron Johnson
http://www.DakotaRainbow.com
Feel free to write me at: mailto:[EMAIL PROTECTED]
"For millions of years, mankind lived, just like the animals. Then
something happened, which unleashed the power of our imagination. We
learned to talk."
>From the MD: "The Division Bell" The track: "Keep Talking"
#############################################################
This message is sent to you because you are subscribed to
the mailing list <[EMAIL PROTECTED]>.
To unsubscribe, E-mail to: <[EMAIL PROTECTED]>
To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]>
To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]>
Send administrative queries to <[EMAIL PROTECTED]>
