[Mailman-Users] Flooded with signup requests

[Max]

Hi, I'm admin for multiple lists and I am getting flooded with fake 
signup requests. I have already set signup to "confirm and allow".



I've also added a lot of domais to the ban list (see below), still I get 
tons of gmail and yahoo signups which I can't blanket ban since some 
legitimate users use these mail providers.


What else can I do?

It also seems that the same address is trying to sign up multiple times 
and this results in multiple mails to the admins/moderators.


How can I at least stop the bots from repeated signups with the same email?


^.*@zenithhomes.com.au$
^.*@aol.com$
^.*@qq.com
^.*@yandex.ru$
^.*@mail.ru$
^.*@narod.ru$
^.*@customs.gov.ua$
^.*@womclub.com$
^.*@cox.net$
^.*@naiau.kiev.ua$
^.*@dostavkadobra.com.ua$
^.*@mfa.gov.ua$
^.*@i.ua$
^.*@vng.com.vn$
^.*@contactplatinum.com$
^.*@ukr.net$
^.*@aga.org$
^.*@sbcglobal.net$
^.*@msn.com$
^.*@163.com$
^.*@verizon.net$
^.*@comcast.net$
^.*@earthlink.net$
^.*@tmomail.net$
^.*@dvdevgroup.com$
^.*@hqsec.com$
^.*@centurylink.net$
^.*@gmai.com$
^.*@nijel.ca$
^.*@globals-globals.com$
^.*@omnicell.com$
--
Mailman-Users mailing list -- mailman-users@python.org
To unsubscribe send an email to mailman-users-le...@python.org
https://mail.python.org/mailman3/lists/mailman-users.python.org/
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: https://www.mail-archive.com/mailman-users@python.org/
   https://mail.python.org/archives/list/mailman-users@python.org/

[Mailman-Users] Re: Flooded with signup requests

[Mailman Admin]

Hello

You only can enable captcha on your registration form.


Kind regards,
Christian Mack

Am 28.07.22 um 10:50 schrieb Max:
Hi, I'm admin for multiple lists and I am getting flooded with fake 
signup requests. I have already set signup to "confirm and allow".



I've also added a lot of domais to the ban list (see below), still I get 
tons of gmail and yahoo signups which I can't blanket ban since some 
legitimate users use these mail providers.


What else can I do?

It also seems that the same address is trying to sign up multiple times 
and this results in multiple mails to the admins/moderators.


How can I at least stop the bots from repeated signups with the same email?


^.*@zenithhomes.com.au$
^.*@aol.com$
^.*@qq.com
^.*@yandex.ru$
^.*@mail.ru$
^.*@narod.ru$
^.*@customs.gov.ua$
^.*@womclub.com$
^.*@cox.net$
^.*@naiau.kiev.ua$
^.*@dostavkadobra.com.ua$
^.*@mfa.gov.ua$
^.*@i.ua$
^.*@vng.com.vn$
^.*@contactplatinum.com$
^.*@ukr.net$
^.*@aga.org$
^.*@sbcglobal.net$
^.*@msn.com$
^.*@163.com$
^.*@verizon.net$
^.*@comcast.net$
^.*@earthlink.net$
^.*@tmomail.net$
^.*@dvdevgroup.com$
^.*@hqsec.com$
^.*@centurylink.net$
^.*@gmai.com$
^.*@nijel.ca$
^.*@globals-globals.com$
^.*@omnicell.com$
--
Mailman-Users mailing list -- mailman-users@python.org
To unsubscribe send an email to mailman-users-le...@python.org
https://mail.python.org/mailman3/lists/mailman-users.python.org/
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: https://www.mail-archive.com/mailman-users@python.org/
    https://mail.python.org/archives/list/mailman-users@python.org/

--
Mailman-Users mailing list -- mailman-users@python.org
To unsubscribe send an email to mailman-users-le...@python.org
https://mail.python.org/mailman3/lists/mailman-users.python.org/
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: https://www.mail-archive.com/mailman-users@python.org/
   https://mail.python.org/archives/list/mailman-users@python.org/

[Mailman-Users] Re: Flooded with signup requests

[Mark Sapiro]

On 7/28/22 08:10, Mailman Admin wrote:

Hello

You only can enable captcha on your registration form.



To be more specific, see the documentation beginning at 
https://bazaar.launchpad.net/~mailman-coders/mailman/2.1/view/head:/Mailman/Defaults.py.in#L134 
for settings for enabling either custom text based captchas or Google 
reCAPTCHA or both.


These may help with web based subscribes. If the subscribes are coming 
by email, you can disable email subscribes by removing the -join and 
-subscribe aliases or otherwise disabling those addresses in your MTA, 
or you can edit the email subscribe processor 
https://bazaar.launchpad.net/~mailman-coders/mailman/2.1/view/head:/Mailman/Commands/cmd_subscribe.py


--
Mark Sapiro The highway is for gamblers,
San Francisco Bay Area, Californiabetter use your sense - B. Dylan
--
Mailman-Users mailing list -- mailman-users@python.org
To unsubscribe send an email to mailman-users-le...@python.org
https://mail.python.org/mailman3/lists/mailman-users.python.org/
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: https://www.mail-archive.com/mailman-users@python.org/
   https://mail.python.org/archives/list/mailman-users@python.org/

[Mailman-Users] Flooded with signup requests

[Stephen J. Turnbull]

Max writes:

 > Hi, I'm admin for multiple lists and I am getting flooded with fake 
 > signup requests.

As Mark says, stopping email signups is probably a good idea.

I wonder if the gmail and yahoo signups are genuine accounts there.
If not, checking From alignment (ie, the same domain that is in From
has DKIM signed the message) should allow you to filter them.  That
could be done with code that's already in Mailman, but it would
require some additional coding.

 > It also seems that the same address is trying to sign up multiple
 > times and this results in multiple mails to the admins/moderators.

I believe that there is an option to send moderation mail once a day.
If you need more rapid response than that, presumably you have
designated folks doing the work, have them check every N hours, and
disable the mail notifications entirely.  Have them ban the address
once and then discard the rest.  It's possible that another one could
come in in the seconds between polling for moderation requests and
sending the ban, but that should be fairly rare.

 > How can I at least stop the bots from repeated signups with the
 > same email?

This is the Internet; you can't stop them.  The best Mailman can do
for you is put the address on the ban list.

If you think you're being targeted by a specific botnet, you might be
able to analyze source IPs and ban them from talking to your hosts at
all using a firewall.

This list ... OK, none of them are GMail or Yahoo! any more, but
Yikes! you've gone scorched-earth!

 > ^.*@aol.com$
 > ^.*@qq.com
 > ^.*@yandex.ru$
 > ^.*@mail.ru$
 > ^.*@sbcglobal.net$
 > ^.*@msn.com$
 > ^.*@163.com$LOL.  Wish *I* could ban them.
 > ^.*@verizon.net$
 > ^.*@comcast.net$


More proactively, we'd all like to use HIMARS, but I think Ukraine
needs them more.  Firewall and ban list is the best we have at this
point.  N.B. We don't know everything and we may have missed something
we can do.  If you have any bright ideas, perhaps we can implement
them (but they won't be added to Mailman 2, sorry).

Steve

--
Mailman-Users mailing list -- mailman-users@python.org
To unsubscribe send an email to mailman-users-le...@python.org
https://mail.python.org/mailman3/lists/mailman-users.python.org/
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: https://www.mail-archive.com/mailman-users@python.org/
https://mail.python.org/archives/list/mailman-users@python.org/

[Mailman-Users] Managing Lists Remotely

[Daniel Krause via Mailman-Users]

We're looking at options to manage our mailman3 lists programmatically from
a saas platform we offer.

The rest api seems like the way to go, but almost everything I read about
it says do not expose this publicly.

Does anyone have an alternative option to be able to do this?
We use a managed mailman installation, so we do not have carte blanche on
the server

Regards


*Daniel Krause*
*Head of IT*

*Office: **+27 87 238 4238* <0872384238>
*Mobile : **+971 55 418 4733* <0971554184733>
*Email: **dan...@noldor.co.za* 
*Web: **www.noldor.co.za* 
--
Mailman-Users mailing list -- mailman-users@python.org
To unsubscribe send an email to mailman-users-le...@python.org
https://mail.python.org/mailman3/lists/mailman-users.python.org/
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: https://www.mail-archive.com/mailman-users@python.org/
https://mail.python.org/archives/list/mailman-users@python.org/