| Abusing FUD reply notification as spam source [message #30530] |
Wed, 01 March 2006 18:16  |
holger.linge
Messages: 17
Registered: October 2002
Karma: 0
|
Junior Member |
|
|
Hi
My FUD version is somewhat outdated (2.6.6). That's deadly in this times. But i've learned my lession, so please don't beat too hard 
Obviously, my FUD-Forum has been abused as a spamsource. I've allowed anonymous postings in one of the forums. I risked being harassed by someone spamming the forum, but i rated the opportunity for a quick hello by visitors unwilling to register higher.
But now, someone not only spammed the forum, but also abused the email function. I would like to know how exactly he made it, and if it's fixed yet.
I got hundreds (*sigh*) of blocked mails like this one:
---------------------------------------------------
Return-Path: <ADMIN@MYDOMAIN>
Received: (qmail 9484 invoked by uid 501); 28 Feb 2006 04:54:29 -0000
Date: 28 Feb 2006 04:54:29 -0000
Message-ID: <20060228045429.9483.qmail@MYDOMAIN>
To: Some poor victim
Subject: New reply to poker casino597 by A voice from the shadows
From: ADMIN@MYDOMAIN
Errors-To: ADMIN@MYDOMAIN
X-Mailer: FUDforum v2.6.6
Content-Type: text/plain; charset=ISO-8859-15
To view unread replies go to http://MYDOMAIN/bbs/index.php?t=rview&goto=6737
If you do not wish to receive further notifications about replies in this topic, please go here: http://MYDOMAIN/bbs/index.php?t=rview&th=157¬ify=1&opt=off
----------------------------------------------------
"A voice from the shadown" is the anonymous user name.
The targeted posting was an anonymous one with a broken link to a gambling site. All the links in all the posting looked a bit different and where all invalid.
First i thought he used the "Email too a friend", but these mails look different, and are AFAIK not acessible to anonymous users.
This spam is a reply notification, but how could one use THESE as spam?
Leaves me puzzled.
Could someone take me by the hand, and show me the light?
cu
Holger
|
|
|
|
| Re: Abusing FUD reply notification as spam source [message #30546 is a reply to message #30530] |
Thu, 02 March 2006 14:09  |
Ilia
Messages: 13241
Registered: January 2002
Karma: 0
|
Senior Member
Administrator
Core Developer |
|
|
Those e-mails looks like Forum's e-mail notification sent to people when a message is posted in a topic they are subscribed to.
In later version of forums there is a captcha test for anon posting, which significantly reduces the amount of automated forum spam.
FUDforum Core Developer
|
|
|
|
| Re: Abusing FUD reply notification as spam source [message #30558 is a reply to message #30530] |
Fri, 03 March 2006 03:46 |
xracer
Messages: 2
Registered: March 2006
Karma: 0
|
Junior Member |
|
|
We have been hacked also, our forums have been spammed to death by guess, however even after i block guess posting we got hit again. almost every forum is filled with spam
This is the information , however there are many IP addresses.
Guest IP: 205.134.172.130
poker casino www.online-575-poker-kiszka-blada.com
Hope that helps
.::EDIT::.
As an aditional note i am up to date with the updates using FUDforum 2.7.4.
[Updated on: Fri, 03 March 2006 07:45] Report message to a moderator |
|
|
|
|
|
|
|
| Re: Abusing FUD reply notification as spam source [message #30627 is a reply to message #30594] |
Sun, 05 March 2006 17:00 |
Ilia
Messages: 13241
Registered: January 2002
Karma: 0
|
Senior Member
Administrator
Core Developer |
|
|
Captcha only works so far, it is possible to write a captcha guesser/decoder. The ideal solution is to disable anonymous posting on the forum, to make it far trickier for a spammer to get through.
FUDforum Core Developer
|
|
|
|
|
|
|
|
Calendar
Search
Help
Members
Register
Login
Home
]