FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » FUDforum Development » Bug Reports » Abusing FUD reply notification as spam source
Show: Today's Messages :: Unread Messages :: Polls :: Message Navigator
| Subscribe to topic | Bookmark topic 
Return to the default flat view Create a new topic Submit Reply
Abusing FUD reply notification as spam source [message #30530] Wed, 01 March 2006 13:16 Go to previous message
holger.linge is currently offline  holger.linge   Germany
Messages: 17
Registered: October 2002
Karma:
Junior Member
add to buddy list
ignore all messages by this user
Hi

My FUD version is somewhat outdated (2.6.6). That's deadly in this times. But i've learned my lession, so please don't beat too hard Embarassed

Obviously, my FUD-Forum has been abused as a spamsource. I've allowed anonymous postings in one of the forums. I risked being harassed by someone spamming the forum, but i rated the opportunity for a quick hello by visitors unwilling to register higher.

But now, someone not only spammed the forum, but also abused the email function. I would like to know how exactly he made it, and if it's fixed yet.

I got hundreds (*sigh*) of blocked mails like this one:

---------------------------------------------------

Return-Path: <ADMIN@MYDOMAIN>
Received: (qmail 9484 invoked by uid 501); 28 Feb 2006 04:54:29 -0000
Date: 28 Feb 2006 04:54:29 -0000
Message-ID: <20060228045429.9483.qmail@MYDOMAIN>
To: Some poor victim
Subject: New reply to poker casino597 by A voice from the shadows
From: ADMIN@MYDOMAIN
Errors-To: ADMIN@MYDOMAIN
X-Mailer: FUDforum v2.6.6
Content-Type: text/plain; charset=ISO-8859-15


To view unread replies go to http://MYDOMAIN/bbs/index.php?t=rview&goto=6737

If you do not wish to receive further notifications about replies in this topic, please go here: http://MYDOMAIN/bbs/index.php?t=rview&th=157&notify=1&opt=off

----------------------------------------------------

"A voice from the shadown" is the anonymous user name.

The targeted posting was an anonymous one with a broken link to a gambling site. All the links in all the posting looked a bit different and where all invalid.

First i thought he used the "Email too a friend", but these mails look different, and are AFAIK not acessible to anonymous users.

This spam is a reply notification, but how could one use THESE as spam?

Leaves me puzzled.

Could someone take me by the hand, and show me the light?

cu
Holger

[Message index]
 
Read Message
Read Message
Read Message
Read Message icon4.gif
Read Message
Read Message
Read Message
Read Message
Previous Topic: Inconsistent pluralization
Next Topic: Topic description sometimes vanishes (V2.7.7 + move topic patch)
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Sun Sep 08 19:41:00 EDT 2024

Total time taken to generate the page: 0.08598 seconds