> Anne P. Mitchell, Esq. wrote:
>
> Wow..I just saw it for myself...someone signed up to a confirmed-
> opt-in group which I moderate (yahoo group) specifically for the
> purpose of spamming it (pron spam, too).
>
> It has been suggested that this can be done by some sort of robot -
> anybody know how that works?
trivial... see basic psuedo code outline below
c ya
alvin
#
# Create a spam-bot
#
0th event - someone has to setup up a "spambot" account
with an auto-responder on a mail server
1st event - send out initial email to subscribe from spambot acct
( somebody that wants to send spam does something )
echo subscribe | mail -s subscribe list-request@foo.com
2nd event - receive autoreply/confirmation from xx-subscribe
( normally, one expect a human to reply/confirm it )
3rd event - but for us, the spammer's autoreponder replies
( remember we have an autoresponder setup on "spambot" )
- a good list manager sw will be able to defeat this
faked autoconfirmation from a supposed human confirmation
4th event - confirmation received from xx-subscribe
( no reason why it would be denied by the list )
grep list@foo.com /var/log/maillog | wc -l
if ( have at least 2 of um ... we're set to go )
5th event - send spam
( a few minutes later ... send the spam )
mail -s "make $10M today spam" < /tmp/spam-2-send.txt
6th event - unsubscribe
( few minutes later ... after confirming mail was sent )
echo unsubscribe | mail -s unsubscribe list-request@foo.com
#
# done .. sell script for $100M
Follow-Ups:
References:
|
|
