www-infrastructure-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hoss Man (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (INFRA-6585) Influx of mailing list spam (spoofed?) from subscriber accounts
Date Mon, 29 Jul 2013 22:53:49 GMT

    [ https://issues.apache.org/jira/browse/INFRA-6585?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13723089#comment-13723089
] 

Hoss Man commented on INFRA-6585:
---------------------------------

> The deny list suggestion was intended for use in the case where the spam from that account
does not stop. 

But in that case, the moderators will never know if the real user of that account resolves
the problem and wishes to be let back into the list -- hence we've opted to use a simple "unsubscribe"
instead of blacklisting them completely

If moderators are getting repeatedly hammered by a small number of completely bogus accounts
that have never subscribed or sent any meaningful mail to the list in the first place, "deny"
would certainly seem like a good way to help keep the queue managable -- it just doesn't seem
applicable in this case of many legitimate subscribers being compromised and each used to
send a small number of spam messages. 
                
> Influx of mailing list spam (spoofed?) from subscriber accounts
> ---------------------------------------------------------------
>
>                 Key: INFRA-6585
>                 URL: https://issues.apache.org/jira/browse/INFRA-6585
>             Project: Infrastructure
>          Issue Type: Bug
>      Security Level: public(Regular issues) 
>          Components: Mailing Lists
>            Reporter: Hoss Man
>
> I'm not sure what if anything can be done about this, but i wanted to report this somewhere
and get a trackable URL with the details.
> In the last ~48 hours, we've seen a large spike in the amount of SPAM mail making it
into lucene mailing lists which is making it arround the moderation queues because the identified
"sender" is in fact a subscribed user....
> http://apache.markmail.org/search/?q=from%3Aozguryilmazel%40gmail.com
> http://apache.markmail.org/search/?q=from%3Amagawake%40gmail.com
> http://apache.markmail.org/search/?q=from%3Avieri.emiliani%40gmail.com
> http://apache.markmail.org/search/?q=from%3Achris.sleeman%40gmail.com
> http://apache.markmail.org/search/?q=from%3Awiredkel%40yahoo.com
> http://apache.markmail.org/search/?q=from%3Aaravind.treasurata%40gmail.com
> ...based purely on the CC list of these spam messages, and the results on other lists
that show up from these few senders, it looks like the problem is not specific just to lucene
lists, and is probably affecting other projects at a larger scale.
> If anyone in INFRA has specific suggestions for how to deal with this influx of "subscribed
user spam", either on hollisticly in the apache server/ezmlm configs, or via moderater action,
please speak up.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message