Re: Spamtrap detectors?

Jason Heiser Mon, 19 Feb 2007 16:10:33 -0800

I have a wildcard for my domain ([EMAIL PROTECTED]) and I've receivedthree of these today. Here's an example of one:

by localhost (kubrick.heiser.org [127.0.0.1]) (amavisd-new, port10024)

        with ESMTP id FcwCXEyXZqMa for <[EMAIL PROTECTED]>;
        Mon, 19 Feb 2007 17:46:20 -0600 (CST)
Received: from beta.gntech.pl (unknown [82.114.186.89])
        by kubrick.heiser.org (Postfix) with ESMTP id F0265278BD6
        for <[EMAIL PROTECTED]>; Mon, 19 Feb 2007 17:46:18 -0600 (CST)
Received: from rccchurch.org (HELO rccchurch.org) ([66.84.15.246])

by t5sc9.rccchurch.org with ESMTP id ; Fri, 9 Sep 2005 13:52:51-0180

Received: from pb.dmu.ac.uk ([124.132.49.137])

by x1gpo.dna.com.br (Sun Java System Messaging Server 6.1 HotFix0.07 (builtJul 9 2006)) with ESMTP id<[EMAIL PROTECTED]> for

 [EMAIL PROTECTED]; Fri, 9 Sep 2005 13:52:51 -0180 (IST)
Date: Fri, 9 Sep 2005 13:52:51 -0180
From: "Leighna Hordatt" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Subject: Leighna.
Message-ID: <[EMAIL PROTECTED]>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable


Hi
How are you ? Call me.
 activities
Poor you, i don't even think how much spam you are recive.
Gervasio said her
6D7174796A6E6A6D6E6A33776A716E727368456A7877746C

So the prevailing theory is that these messages are attempts to finddomains that can be abused for sender address forgery? I wonder howthese wretched villains (spammers) are tracking this. Do you thinkthey're sitting on compromised mail servers and earmarking domainsfrom which they receive "250 OK" for obviously non-existent e-mailaddresses?


Jason Heiser
HEISER.ORG POSTMASTER

Re: Spamtrap detectors?

Reply via email to