<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class="">Big thanks!!<br><br><div class="gmail_quote">On July 13, 2022 7:30:16 AM MST, Jerald Sheets via Ale <ale@ale.org> wrote:<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div class=""><br class=""></div><div class="">Ok, Ive reached out to the origination email address, and it turns out it’s a service address for “Chatechesis of the Good Shepherd” in Scottsdale, AZ. Looks like their mail address got harvested, and someone is trying to hit our list from that. I called them to discuss with their IT (or whomever is doing the companies) to try and stop it. Pointed out we’re a non-profit just like they are, etc. etc. I’ll keep everyone posted as to their reply (if any). Primarily, getting them to stop the complaints.</div><div class=""><br class=""></div><div class=""><br class=""></div><br class=""><div class="">
<div>Jerald Sheets</div><div><a href="mailto:questy@gmail.com" class="">questy@gmail.com</a></div><div class=""><br class=""></div><br class="Apple-interchange-newline">
</div>
<div><br class=""><blockquote type="cite" class=""><div class="">On Jul 13, 2022, at 9:50 AM, Jim Kinney via Ale <<a href="mailto:ale@ale.org" class="">ale@ale.org</a>> wrote:</div><br class="Apple-interchange-newline"><div class="">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" class="">
<div class="">Can you set up postfix to capture ALL outbound mail sent to <a href="mailto:ukkoknowles@usfamily.net" class="">ukkoknowles@usfamily.net</a><br class="">and redirect to a local account or /dev/null. Got another 15 last night. But the new ones are all originating within 3 minutes of the first one so it may still just be fall out.<br class=""><br class="">It looks like the first 5 complaints are for a single email. Identical time stamp, smtp id, and esmtp id. The next four are also identical but from an email sent about 40 seconds later. Each in this batch have the same ids.<br class=""><br class="">The new batch has the same sending time stamp so far, 20220711224723 but different smtp and esmtp ids.<br class=""><br class=""><div class="gmail_quote">On July 12, 2022 7:55:47 PM MST, Robert Tweedy <<a href="mailto:robert@robert-tweedy.com" class="">robert@robert-tweedy.com</a>> wrote:<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<font size="2" class=""><font face="Arial" class="">Thanks Derek,<br class="">
<br class="">
I've made the changes & tested to confirm that the
ale-request & ale-subscribe addresses no longer work.<br class="">
<br class="">
-Robert<br class="">
</font></font><br class="">
<div class="moz-cite-prefix">On 7/12/22 22:08, Derek Atkins wrote:<br class="">
</div>
<blockquote type="cite" cite="mid:181f550b888.27f4.ee0929d4f8247208f860e07266211506@ihtfp.com" class="">
<meta http-equiv="content-type" content="text/html; charset=UTF-8" class="">
<div dir="auto" class="">
<div dir="auto" class="">I know it won't break core functionality. </div>
<div dir="auto" class="">You could send the - request email to a person. </div>
<div dir="auto" class="">I think you need to deal with it in postfix. </div>
<div dir="auto" class=""><br class="">
</div>
<div id="aqm-signature" dir="auto" style="" class="">
<div dir="auto" class="">-derek</div>
<div dir="auto" class="">Sent using my mobile device. Please excuse any
typos.</div>
</div>
<div dir="auto" class=""><br class="">
</div>
<div id="aqm-original" style="" class="">
<!-- body start -->
<div class="aqm-original-body">
<div style="" class=""><p style="font-size: 10pt; font-family: sans-serif; margin: 8pt 0px;" class="">On July 12, 2022 9:11:13 PM
Robert Tweedy <a class="moz-txt-link-rfc2396E" href="mailto:robert@robert-tweedy.com"><robert@robert-tweedy.com></a> wrote:</p>
<blockquote type="cite" class="gmail_quote" style="margin:
0 0 0 0.75ex; border-left: 1px solid #808080;
padding-left: 0.75ex;"> <span style="font-size: 10pt;" class=""><span style="font-family: Arial;" class="">I feel like disabling
the Mailman "-request" and "-subscribe" addresses
would have unintended side effects, but it's
technically a possibility; does anyone more familiar
with GNU Mailman know if this is: <br class="">
<br class="">
1. A bad idea/will severely break core Mailman
functions </span></span><span style="font-size:
10pt;" class=""><span style="font-family: Arial;" class=""><span style="font-size: 10pt;" class=""><span style="font-family:
Arial;" class="">(alternatively, how many people will
start sending in complaints that their emails to
<a class="moz-txt-link-rfc2396E" href="mailto:ale-request@ale.org" moz-do-not-send="true">"ale-request@ale.org"</a>
stopped working)?</span></span><br class="">
2. An option that's available through Mailman's
configuration files? Or would I need to modify the
Postfix aliases to achieve this?<br class="">
<br class="">
-Robert<br class="">
</span></span><br class="">
<div class="moz-cite-prefix">On 7/12/22 20:40, Derek
Atkins wrote:<br class="">
</div>
<blockquote type="cite" cite="mid:dcd67ee292d82c34dfba7569e9bacd89.squirrel@mail2.ihtfp.org" class="">
<pre class="moz-quote-pre" wrap="">Another option is to turn off handling of email-based subscription
requests and require going through the web interface?
-derek
On Tue, July 12, 2022 8:17 pm, Robert Tweedy via Ale wrote:
</pre>
<blockquote type="cite" class="">
<pre class="moz-quote-pre" wrap="">I've gotten a basic Captcha configured now on Mailman's main sign-up
pages (which is likely where the issue's coming from), so this will
hopefully lessen the problem. I'm definitely open to any suggestions for
improvement as well as donations of time to implement a better
spam-filtering mechanism to prevent the server from responding to every
incoming message it receives (ie. Mailman either needs to be smarter
about what messages it replies to & what messages it just
ignores/discards without a reply, or we need our spam filter to also
work internally & keep Mailman from sending out spam on its own when
someone/something abuses forms on the site that could generate an email).
On 7/12/22 18:01, Jim Kinney via Ale wrote:
</pre>
<blockquote type="cite" class="">
<pre class="moz-quote-pre" wrap="">Started getting these notices/complaints today and each one is a $5
charge from my hosting provider. We're up to $35 so far today.
I'm on work out of state and didn't travel with any personal gear and
Robert is also slammed. Can someone gently talk with the recipient and
ask if they can simply delete/block instead of complain.
We are open to ideas. That email is already blocked.
<snip>
</pre>
</blockquote>
<pre class="moz-quote-pre" wrap="">_______________________________________________
Ale mailing list
<a class="moz-txt-link-abbreviated moz-txt-link-freetext" href="mailto:Ale@ale.org" moz-do-not-send="true">Ale@ale.org</a>
<a class="moz-txt-link-freetext" href="https://mail.ale.org/mailman/listinfo/ale" moz-do-not-send="true">https://mail.ale.org/mailman/listinfo/ale</a>
See JOBS, ANNOUNCE and SCHOOLS lists at
<a class="moz-txt-link-freetext" href="http://mail.ale.org/mailman/listinfo" moz-do-not-send="true">http://mail.ale.org/mailman/listinfo</a>
</pre>
</blockquote>
</blockquote>
<br class="">
</blockquote>
</div>
</div>
<!-- body end -->
</div>
<div dir="auto" class=""><br class="">
</div>
</div>
</blockquote>
<br class="">
</blockquote></div><br class="">-- <br class="">Computers amplify human error<br class="">Super computers are really cool</div>_______________________________________________<br class="">Ale mailing list<br class=""><a href="mailto:Ale@ale.org" class="">Ale@ale.org</a><br class="">https://mail.ale.org/mailman/listinfo/ale<br class="">See JOBS, ANNOUNCE and SCHOOLS lists at<br class="">http://mail.ale.org/mailman/listinfo<br class=""></div></blockquote></div><br class=""></blockquote></div><br>-- <br>Computers amplify human error<br>Super computers are really cool</body></html>