On 10/07/2015 09:42 PM, Stephen J. Turnbull wrote:
>
> I wonder how effective the Spamhaus XBL (eXploited host Black List)
> would be at this. I wouldn't use it unless I were experiencing the
> attack, though.
As I reported in my reply to Rich's post, it appears that Apache on
mail.python.org u
On 10/08/2015 07:51 AM, Rich Kulawiec wrote:
>
> I'd be curiously to see the logs for these. (I intend to check
> them against various address range lists to see if the originating
> IP addresses correlate with anything else I'm tracking.)
The results from
grep -E 'GET /mailman/listinfo|POST /
I'd be curiously to see the logs for these. (I intend to check
them against various address range lists to see if the originating
IP addresses correlate with anything else I'm tracking.) If they're
coming from botted hosts, then (as noted in the thread) using the XBL
or similar may help. If the
Mark Sapiro writes:
> > 3. Use the Spamhaus DROP and EDROP lists in your firewall and drop
> > *all* inbound traffic from and *all* outbound traffic to those ranges.
> > This achieves lossless compression. (This should be done whether you
> > do 1 or 2 or neither. It's basic network self-def
On Wed, 2015-10-07 at 17:49 -0700, Mark Sapiro wrote:
> On 10/07/2015 08:15 AM, Rich Kulawiec wrote:
> >
> > There are multiple approaches to this:
> >
> > 1. Look at the logs. Find out where the subscriptions are coming
> > from,
> > and firewall out the appropriate network(s) or countries. (
On 10/07/2015 08:15 AM, Rich Kulawiec wrote:
>
> There are multiple approaches to this:
>
> 1. Look at the logs. Find out where the subscriptions are coming from,
> and firewall out the appropriate network(s) or countries. (See ipdeny.com
> for country IP ranges.)
>
> or
>
> 2. If you only e
On Wed, Oct 07, 2015 at 09:16:32AM -0400, br...@emwd.com wrote:
> I have seen another type of subscription form spam pop-up on our
> servers. It is particularly affecting one client that has 80 mailman
> lists and they wish to keep their lists publicly advertised. We keep
> seeing dozens of subscri
On 10/07/2015 06:16 AM, br...@emwd.com wrote:
> We keep
> seeing dozens of subscription spam coming in from gmail addresses PER
> MINUTE with the following format:
>
> kihuotter+59233...@gmail.com
>
> We have implemented the form secret function that was introduced in
> Mailman 2.16 but it is hav
Paul,
Thank you for this valuable sample! This certainly helps!
I understand the necessity for giving subscribers a password, but I'm
worried that dealing with a configuration page might scare some of the less
computer/internet literate off from using the list. Could I create a
subscriber user i
