Do all the things like ++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatarSign Up
Get a devDuck
Rubber duck debugging has never been so cute! Get your favorite coding language devDuckBuy Now
Search - "spam mail"
"Jim, can you tell me why my e-mails aren't getting to clients?"
They're being marked as spam...
"oh damn, how can we fix that?"
You can't. You can change the structure of your e-mails to look less spammy, but it's on their end.
"This is a disaster, we can't have our marketing e-mails marked SPAM!!"
Have you tried not spamming people?
"WE'RE NOT SPAMMING PEOPLE, THEY EXPRESSED A LEGITIMATE BUSINESS INTEREST"
No, you bought a mailing list and put together an e-mail campaign.
"But we aren't spamming people!"
IT VS Marketing 100% of the time15
This just happened:
Boss: "Hey I can't send this mail, can you take a look?"
Le Me: *looking at the logs*
Le Me: "Your mail gets a spamscore of 2007.69 of max 2000. There is a virus in your mail."
And it was a mail which he received from somebody and wanted to forward....6
-Registers on a site to use the product
"Our weekly news digest"
"Our daily news digest"
"You haven't used our products for 15 minutes. We miss you"
"Would you recommend our products to a friend"
"If you like this, you'll LOVE this"
"Here's a promo code for something you don't need"
"You've unsubscribed. Was it really you?"
"You've unsubscribed. Was it really you?"
"You've unsubscribed. Was it really you?"
"You've unsubscribed. Was it really you?"
FUCK OFF YOU ANNOYING CUNTS14
Look I understand online privacy is a concern and we should really be very much aware about what data we are giving to whom. But when does it turn from being aware to just being paranoid and a maniac about it.? I mean okay, I know facebook has access to your data including your whatsapp chat (presumably), google listens to your conversations and snoops on your mail and shit, amazon advertises that you must have their spy system (read alexa) install in your homes and numerous other cases. But in the end it really boils down to "everyone wants your data but who do you trust your data with?"
For me, facebook and the so-called social media sites are a strict no-no but I use whatsapp as my primary chating application. I like to use google for my searches because yaa it gives me more accurate search results as compared to ddg because it has my search history. I use gmail as my primary as well as work email because it is convinient and an adv here and there doesnt bother me. Their spam filters, the easy accessibility options, the storage they offer everything is much more convinient for me. I use linux for my work related stuff (obviously) but I play my games on windows. Alexa and such type of products are again a big no-no for me but I regularly shop from amazon and unless I am searching for some weird ass shit (which if you want to, do it in some incognito mode) I am fine with coming across some advs about things I searched for. Sometimes it reminds me of things I need to buy which I might have put off and later on forgot. I have an amazon prime account because prime video has some good shows in there. My primary web browser is chrome because I simply love its developer tools and I now have gotten used to it. So unless chrome is very much hogging on my ram, in which case I switch over to firefox for some of my tabs, I am okay with using chrome. I have a motorola phone with stock android which means all google apps pre-installed. I use hangouts, google keep, google map(cannot live without it now), heck even google photos, but I also deny certain accesses to apps which I find fishy like if you are a game, you should not have access to my gps. I live in India where we have aadhar cards(like the social securtiy number in the USA) where the government has our fingerprints and all our data because every damn thing now needs to be linked with your aadhar otherwise your service will be terminated. Like your mobile number, your investment policies, your income tax, heck even your marraige certificates need to be linked with your aadhar card. Here, I dont have any option but to give in because somehow "its in the interest of the nation". Not surprisingly, this thing recently came to light where you can get your hands on anyone's aadhar details including their fingerprints for just ₹50($1). Fuck that shit.
There are and should be always exceptions when it comes to privacy because when you give the other person your data, it sometimes makes your life much easier. On the other hand, people/services asking for your data with the sole purpose of infilterating into your private life and not providing any usefulness should just be boycotted. It all boils down to till what extent you wish to share your data(ranging from literally installing a spying device in your house to them knowing that I want to understand how spring security works) and how much do you trust the service with your data. Example being, I just shared most of my private data in this rant with a group of unknown people and I am okay with it, because I know I can trust dev rant with my posts(unlike facebook).38
Not checked my mail box since Thanks Giving, just opened my mail box to find 1600+ of these black friday promotion mother fuckers.2
Testing my email filters today after receiving an email about the "gender" section of my form. Which only has male/female in it.
The person sending the mail (it) apparantly has "some" knowledge of the inspector and tried to edit in some gender.
Upon failing to do so i got a not so nice email, asking why i don't support all the other genders. And i got called some names instantly for being a sexist pig and whatnot. It waa obvious this person wasn't even trying to be reasonable.
Now i got small patience for people like that. So i send an email explaining why i couldnt add other genders. The reason being i render my gender form as a boolean. Male true/false. And that even the female option is just a placeholder that does nothing.
Apparantly i'm now on some gender hating blacklist or something. As my mail filter is just crunching about 20 mails an hour of people calling me a bigot amongst others.29
38°C, sunday afternoon, client be like: "Omg, I need you, it's important, can you call me?"
"So I got this E-Mail that said my SEO could be improved alot, why didn't you do that"
*looks at auto generated spam mail, hangs up*8
My private Email Account got hacked when I was in school, and they sent out a mail with something along the lines of "hey, you should really use this product to lose weight, it is great" to all of my contacts. Many of them ignored it, some of them called me to inform me about the issue (the worst part was, long after I used 2fa and changed passwords regularly, they still had my name and contact list, so they just made email adresses that looked like mine and continued to send out spam to my contacts). Anyway, one teacher of mine didn't know that this was a scam and was insulted because I regularly sent emails about her losing weight. And as if the whole situaion, which I couldn't do anything about, wasn't bad enough, my parents and I had do have a 1h conversation (which ended up in me explaining how those hacks work, and luckily she understood, but still). Never again. I prefer those fake ms support guys that call me over this every day.7
I can unsubscribe from your spam newsletter for FREE? HOW THANKFUL I AM!
What a great and kind service..and it doesn’t even cost anything to UNSUBSCRIBE when I DID NOT SUBSCRIBE IN THE FIRST PLACE4
Paranoid Developers - It's a long one
Backstory: I was a freelance web developer when I managed to land a place on a cyber security program with who I consider to be the world leaders in the field (details deliberately withheld; who's paranoid now?). Other than the basic security practices of web dev, my experience with Cyber was limited to the OU introduction course, so I was wholly unprepared for the level of, occasionally hysterical, paranoia that my fellow cohort seemed to perpetually live in. The following is a collection of stories from several of these people, because if I only wrote about one they would accuse me of providing too much data allowing an attacker to aggregate and steal their identity. They do use devrant so if you're reading this, know that I love you and that something is wrong with you.
That time when...
He wrote a social media network with end-to-end encryption before it was cool.
He wrote custom 64kb encryption for his academic HDD.
He removed the 3 HDD from his desktop and stored them in a safe, whenever he left the house.
He set up a pfsense virtualbox with a firewall policy to block the port the student monitoring software used (effectively rendering it useless and definitely in breach of the IT policy).
He used only hashes of passwords as passwords (which isn't actually good).
He kept a drill on the desk ready to destroy his HDD at a moments notice.
He started developing a device to drill through his HDD when he pushed a button. May or may not have finished it.
He set up a new email account for each individual online service.
He hosted a website from his own home server so he didn't have to host the files elsewhere (which is just awful for home network security).
He unplugged the home router and began scanning his devices and manually searching through the process list when his music stopped playing on the laptop several times (turns out he had a wobbly spacebar and the shaking washing machine provided enough jittering for a button press).
He brought his own privacy screen to work (remember, this is a security place, with like background checks and all sorts).
He gave his C programming coursework (a simple messaging program) 2048 bit encryption, which was not required.
He wrote a custom encryption for his other C programming coursework as well as writing out the enigma encryption because there was no library, again not required.
He bought a burner phone to visit the capital city.
He bought a burner phone whenever he left his hometown come to think of it.
He bought a smartphone online, wiped it and installed new firmware (it was Chinese; I'm not saying anything about the Chinese, you're the one thinking it).
He bought a smartphone and installed Kali Linux NetHunter so he could test WiFi networks he connected to before using them on his personal device.
(You might be noticing it's all he's. Maybe it is, maybe it isn't).
He ate a sim card.
He brought a balaclava to pentesting training (it was pretty meme).
He printed out his source code as a manual read-only method.
He made a rule on his academic email to block incoming mail from the academic body (to be fair this is a good spam policy).
He withdraws money from a different cashpoint everytime to avoid patterns in his behaviour (the irony).
He reported someone for hacking the centre's network when they built their own website for practice using XAMMP.
I'm going to stop there. I could tell you so many more stories about these guys, some about them being paranoid and some about the stupid antics Cyber Security and Information Assurance students get up to. Well done for making it this far. Hope you enjoyed it.34
Fucking Gmail !!!! I hate you so much !!!
My mail server is fucking perfect, I have all the records in my DNS and even have a 10/10 score on mail-tester.com.
But this fucking Gmail keeps putting me the spam folder ! Why do you hate my so much ?23
So my ISP just called me again that I'm sending plenty of spam. This time, I have all flows logged, so I know for sure that it wasn't my TV (only vulnerable device with internet access) and as my switch was offline there is nothing in front of my router anymore. And I learned that all the spam was going directly to their smtp server which I never used and didn't even know they have some. All in all everything points to their cable modem. Will tell them that in response to the mail they promised to send me. Really looking forward to new at least a little bit competent ISP (alternative should be available soon).3
"Create an account now to watch these courses for free (don't worry, we hate spam as much as you do)"
Well that's a fucking lie. This woman named Christy is abusing MailChimp vigorously.
Fuck off marketing with your disingenuous "community update" mails, "what you missed last week" newsletters and "handpicked crap for you" notifications.
I want to use your platform, I even pay for it, but I don't want to get your useless mail until I found the energy to dig through your config panel looking for some half broken toggle button.6
It's finally happened. I've used my mail servers for about a year to give out different email addresses on my domain to things I sign up for online, and only used my "actual" email address that received all this email for the whole domain but the single one that I used outbound for private communications.
This worked well for a long time as I could see when spam comes in, where it came from by looking at the email address I designated it. Each company's email would be sent not only from an email address that they choose, but also to an email address that I choose. It allowed me to easily determine where there were problems. For example, on Freenode IRC my vhost happened to make my username@host there a valid email address. It eventually got blacklisted due to too much incoming spam as crawlers started detecting it. Another one was "nickname"@my.domain as I posted it a few times here. Got crawled as well. But it allowed me to easily blacklist each.
I'd never thought my actual outbound email address, my real one, to get crawled though. That would require the mail server of a company I explicitly communicated with to get hacked. But today that happened. I wonder whose it is, but I can't tell.
Time to make my outgoing email bound to a designated email address as well. I want to know which companies this happens to, even if they don't disclose it.7
Earlier I signed up on this forum called NulledBB. Basically some hacker skiddie forum that had a dump of an archive I wanted, unfortunately behind a paywall which I didn't want to bother with.
On signup I noticed that I couldn't use my domain as an email address, as I usually do (the domain is a catch-all which means that mail addresses can be made up for each service I sign up to on the fly, super useful). They did expose the regex that they accepted email as however, which included something along the lines of "@live.*".
So I figured, why not register a subdomain live.nixmagic.com real quick and put that into the mail servers? Didn't take too long and that's what I eventually went with, and registered as email@example.com (which I have no trouble putting on a public forum as you'll see in a minute).
Still didn't manage to get that archive I wanted but I figured, fuck it. It's a throwaway account anyway. But eventually that email address started to receive spam. Stupid motherfucker of a forum operator with his Kali skidmachine probably leaked it.
Usually I just blacklist the email address in SpamAssassin by adding an additional spam score of 100 to email sent to such addresses. But in that case it didn't even sit on the main domain, thanks to that stupid regex block from earlier... 😏
*Logs into my domain admin panel*
*Le rm on the live.nixmagic.com record*
Null routed entirely.. nulled, if you will! 🙃3
Remember my unsubscribe post (https://devrant.com/rants/1276485/...) where I was trying to stop assholes spam me?
Well, I wrote to their customer service, India's one of the most trusted and valuable brand.
Here's what I get this morning.8
So I got an e-mail from a recruiter (a.k.a. recruiter spam) today looking for a candidate with four "essential skills" and my head almost exploded when I read what they were. I have regained my composure just enough to be able to write this rant, but I'm still not myself. I recommend sitting down for this. Are you ready?
The four "essential skills" were:
Java, Jenkins, Eclipse, IntelliJ
I don't know where to begin. Motherfucker, where do you get off telling me which IDE to use? Oh wait, you didn't, you expected me to be an "expert" with two completely different ones, you numb nuts. Why the fuck would I be? I swear to fuck these idiots would probably screen out the best programmer in the world because s/he uses VI/emacs/Atom/Sublime/fucking-Notepad.
I can hear them saying "oh, you don't know IntelliJ? Sorry, we need an expert in that."
Fuck off you filthy cunt! No, sorry, I take that back, I shouldn't be mean to the mentally disabled.
Also, Jenkins? Really? Any developer can pick up how to use Jenkins to its full effect in a matter of hours, or a couple of days at most.
Why do companies hire these jackasses to do a job as important as recruitment? Why do they write job specs that are so incredibly stupid? I almost replied to express interest so I could go to the interview and throw a bucket of red paint on them (because they're making me bleed inside).
Where's the Tylenol?5
"Condor, your new Samsung Galaxy S8+ doesn't have the latest Google apps"
You know what Google? I don't give a shit about your latest apps. Often times I go out of my way to root the device and remove your mandatory bloatware, that YOU fucking Google enforce OEM's to preinstall. Fortunately BlueStacks doesn't have them preinstalled, which saves me the pain of uninstalling them. Given that, you've got quite the balls to spam me with this shit Google.
By the way, another thing.. this preinstall shit is linked to the EU antitrust rulings, isn't it? And spam is linked to GDPR, and honestly I don't recall ever opting in to this kind of wanketeering mail. In fact, I usually go out of my way to opt out of this kind of corporate wankery. Time for another huge fine perhaps?15
The cleaning lady saga continues...
Had an appointment with their manager, stuff gets discussed and coordinated at a 3x slower pace than if I'd done it myself (as usual because fuck efficiency when there's muggles involved -_-), yada yada.
*mail addresses for contact start getting discussed*
Incompetent fuck of a manager: And you $realName, your email address is $firstname.lastname@example.org, then changed to $email@example.com? Mind explaining this?
Me: Oh yeah that's just because I give out different email addresses to each contact person when it involves public forms or registrations, helps with spam prevention and putting the company name of the correspondent in there helps with easy recognition when some company's database leaks and I start getting a lot of spam on that mailbox.
IFOM: Really.. we actually weren't sure whether we should reply to something with our company name in it.. you know, not sure whether it's legit etc. Why would anyone want to use one of our email addresses as theirs?
… Let that sink in for a moment. They think that $firstname.lastname@example.org is theirs? Just because it's their domain (minus TLD) in front of MY FUCKING DOMAIN? How about you start by learning how email addresses work first, because clearly you have no fucking clue about it. Are you the kind of brainless fucks that get lured in by http://totallylegitbank.com.freehost.com/... scams? Fucking stupid piece of fucking shit.
Oh, and when you're using MS Exchange, of course you can't know that when you're having your own domain, you actually also own every fucking mailbox on it, because Microshaft doesn't allow you to have more than n amount of mailboxes, unless you gobble up money for them. But you know what, in my case it's a fucking catch-all domain running Linux on its servers, so yeah I can use whatever the fuck I want in front of it, including your stupid fucking cleaning company.
IFOM: And then there's your current designated email address. $email@example.com..
Oh you're going to criticise that as well?! Yeah condor is my fucking nickname all over the internet, and my username on all my systems. That's why I use it. But you know what else is an email address that you might come across, because people are shallow idiots like that? ILoveBigTits69@gmail.com or something like that. You know what, how about I address you next time from ILoveBigTits69_OhAndYoursAreAWashboard@nixmagic.com, because you know what? I CAN FUCKING DO THAT. But you know, I at least am halfway fucking professional about my business-related stuff, so I won't because I really don't want to be associated with such an email address. So don't you fucking dare to criticize me for using my fucking nickname instead of my real name.
Long story short, people are fucking idiots.7
Recently I got an E-Mail from PayPal.de with the headline "Your account gets limited". Fun Fact: I don't have a PayPal account.
This Mail got me curious though, as it couldn't be a phishing mail, since I don't have a PayPal account in the first place, so I opened the e-mail just to get greeted by pure emptiness. It was completely empty. I thought to myself "oh no, is this some sort of new trick? Did I get infected by some sort of a weird hacky backdoor trojan already?!"
Original E-mail Address: NULL (never seen this before)
I then realized, that Thunderbird blocked the only content from this mail: a clickable image.
This is getting even more confusing the longer I examine this unique mail. The image is showing me a domain from a site completely unrelated from PayPal, so it was obviously no phishing, but I didn't trust this clickable image, so I looked up its hidden link to find an even more confusing redirection to not a picture upload site like the image suggests, but to a game key reselling site instead, like wtf? What was the whole point of this whole e-mail? Was this a weird try to make advertisements for more than one website? It wasn't even a ref-link or something like that. It was just weird, iunno.9
ok ok I'll move it to inbox Google, you lazy ass company can't you make your won mail service to it by it self -.-
Must admit, those spam emails are getting funnier by the day9
We are not friends, Alexa and Clark. I don't even want to be your friend, I just used your services a long time ago. I don't fucking care who's the name of the one sending me spam, because, as I don't remember asking you to send me e-mails, your are just sending me spam.
Seriously, who's the genius who thought, one day, "Hey, let's have some avatar to make our customers think they are friends with it ! That'll surely send some good ol' dopamine far up their tiny brains."
If you send me an e-mail and you are a company, wether it's solicited or not, send it in your name, don't try to blame your poor fake employee.4
So sick of this shit.
It should be illegal.
I just want to get my stickers and never check the mailbox again.3
Passive aggressive deed of the day: Whenever i am replying to a mail with no subject, i start with "sorry i missed your mail as it went to my spam folder, maybe because it didnt have a subject".
customer: we have a spam problem! [attached, a .docx containing screenshot of their inbox]
me: ok, send the mail headers please [step-by-step explanation on how to do that]
customer: the 3 ppl in CC will deal with it
2 of the 3 ppl reply that 3 will deal with the matter.
3 doesn't react.
I send a reminder.
3: I don't know what to do, please explain
How ethical it is to send 1gb email with big picture with word “NO” in response to spam email that wants my agreement ?17
Sorry, is TL, but humbly think is worth to read.
Coworker: Hey, our mail is being redirected to our client's spam folder. What did you do?
Me: Sorry, but I have no control over that.
Boss: I happened to me also. Something is wrong with our mail server.
Me: I'll check, but this is really out of my control.
Rushed to my station... domain blacklist check...Fuuuuuuuu! We been blacklisted! What in the fucking damn hell happened?????!!!
Mail server log check....Mmmm...WTF is this shit?
Devilish grin in my face....muahahahaaa! Your ass is MINE!
So, my "I know everything" new coworker ( https://www.devrant.io/rants/193238 ) used his account to send over 6300 messages a couple of times over a period of 4 hours. By our boss request we have no limit on our servers...
Gotcha! I'm going to get your ass fired!
(BTW: The pic is Gotcha the Cockatoo)4
By:Miss. Lucia Wright
Punchline : VERY IMPORTANT MESSAGE MY DEAR
My greetings to you in the name of our Lord Jesus Christ. I am sister Lucia Wright I am married to Archdeacon. Collins Wright whom until his death served as an archdeacon in the St. Micheal's archdeacon in Ivory Coast for nine years before he died in the year 2005. We were married for eleven years without a child. My Husband died after a brief illness that lasted for only four days.
Before his death we were both born again Christian. After the death of my Husband I decided not to re-marry or get a child outside my matrimonial home which the Bible is against. When my late husband was alive he deposited the sum of $22. Million in a security and finance company in London for safe keeping.
Presently, my Doctor confirmed to me that I have serious sickness which is cancer problem. The one that disturbs me most is my stroke sickness. Haven known my condition I decided to donate this fund to a church or individual that will utilize this money the way I am going to instruct herein. I want a church that will use this fund for orphanages,helping the widows, propagating the word of God and to endeavor that the house of God is maintained. The Bible made us to understand that? Blessed is the hand that giveth'. I took this decision because I don't have any child that will inherit this money and my husband relatives are not Christians and I don't want my husband's efforts to be used by unbelievers. I don't want a situation where this money will be used in an ungodly way,
this is why I am taking this decision.
I am not afraid of death hence I know where I am going. I know that I am going to be in the bosom of the Lord. Exodus 14 VS 14 says That? the lord will fight my case and I shall hold my peace'. I don't need any telephone communication in this regard because of my health hence the presence of my husband's relatives around me always. I don't want them to know about this development. With God all things are possible.
As soon as I receive your reply I will give you the contact of the security and finance were the amount sum is deposited for you to contact them, I want you and the church to always pray for me because the lord is my shepherd. My happiness is that I lived a life of a worthy Christian. Whoever that Wants to serve the Lord must serve him in spirit and Truth. Please always be prayerful all through your life.
Any delay in your reply will give me room in sourcing another church or individual for this same purpose. Please assure me that you will act accordingly as I Stated herein. Hoping to receive your reply. Due to present condition of my health,I was warned by my doctor to avoid receiving or making any call. For that,I have submitted the information of the deposit to my lawyer, As soon as I hear from you I will forward to you the lawyer's contact.
Remain blessed in the Lord,
Miss. Lucia Wright.
Well ok... If you want me to, I can surely help you out 😈😈😈😈😈7
Uh-oh I fucked up.
Not at work, but with my website where I had an email forwarder to an external address. The forwarding was everything so that I could do the spam filtering and occasional check in one place. Unfortunately, that triggered the spam detection at the external address (after some years!), and my provider ended up on a blacklist.
That got me a pretty angry mail from my hosting provider who had already disabled the forwarding and wanted to make sure that I understood the issue and would not put it in again.
I thought about whether they had fucked up because it was even possible to do that, or whether I had fucked up because I should have known. Hm yeah I opted for the latter and apologised.
The support guy seemed happy that I didn't try to argue (possibly like other customers...), and advised that I just should add another account in my email client. Sure, at least that will prevent this shit from happening again.
He also mentioned that every single blacklist issue they had experienced in this year was accidental due to external forwarding issues and that they would consider just disabling it altogether.
Which is probably a smart move, just as hint for these ranters here who work at hosting companies. Or at least only enable external forwarding if spam assassin or so is in place.3
My main mailbox is so full of spam i almost missed a good job test. Wtf
And these mails are so fucking irrelevant loan, cars, bank, life insurances... I DON'T FUCKING CARE ABOUT THEM, WHY THE FUCK ARE YOU FILLING MY MAILBOX YOU ASSHOLES 😠😠😠
and what's even more weird is how they all have one common sentence in exact formatting : "you can simply WIPE Out your mail from the mailing list".
I feel as if my email has been hacked. Any suggestions?19
Oh man setting up postfix and dovecot (plus things like rspamd) is a pain in the ass.
But it's worth it, having your own mail server is just quite a good feeling.
Now I just need to find out how to get it to pass the spam filter of Google, despite the server and the DNS zone being well-configured (better than my school's mail server according to tests, but that one still manages to pass. I have no idea why.)9
I am here on devRant now for a while. Althought, reading amy of your stories and taking care of websites is not what I usualy tend to do, I started doing it as a favour for a friend of a friend.
Baaad bad decission :-(
"pls, dis is urgnt! uplood dis pics asap on page"
*face palm 1* because who sends pictures by mail these days ... I like my 50MiB Inbox, dont spam it with garbage!
*opening mail - lists attachments: 1 file, ~900KiB* ok whats happening now?
*facepalm 2, 3, 4, 5, 6, 7, 8, 9* (10 if there still would be a face to palm on)
the person seriously send me the pictures in an attachment, within a pdf document that was created with MS Word.
No - Just NO!
I should have known better ... sooo much better :(6
It all started with an undelivereable e-mail.
New manager (soon-to-be boss) walks into admin guy's office and complains about an e-mail he sent to a customer being rejected by the recipient's mail server. I can hear parts of the conversation from my office across the floor.
Recipient uses the spamcop.net blacklist and our mail was rejected since it came from an IP address known to be sending mails to their spamtrap.
Admin guy wants to verify the claim by trying to find out our static public IPv4 address, to compare it to the blacklisted one from the notification.
For half an hour boss and him are trying to find the correct login credentials for the telco's customer-self-care web interface.
Eventually they call telco's support to get new credentials, it turned out during the VoIP migration about six months ago we got new credentials that were apparently not noted anywhere.
Eventually admin guy can log in, and wonders why he can't see any static IP address listed there, calls support again. Turns out we were not even using a static IP address anymore since the VoIP change. Now it's not like we would be hosting any services that need to be publicly accessible, nor would all users send their e-mail via a local server (at least my machine is already configured to talk directly to the telco's smtp, but this was supposedly different in the good ol' days, so I'm not sure whether it still applies to some users).
In any case, the e-mail issue seems completely forgotten by now: Admin guy wants his static ip address back, negotiates with telco support.
The change will require new PPPoE credentials for the VDSL line, he apparently received them over the phone(?) and should update them in the CPE after they had disabled the login for the dynamic address. Obviously something went wrong, admin guy meanwhile having to use his private phone to call support, claims the credentials would be reverted immediately when he changed them in the CPE Web UI.
Now I'm not exactly sure why, there's two scenarios I could imagine:
- Maybe telco would use TR-069/CWMP to remotely provision the credentials which are not updated in their system, thus overwriting CPE to the old ones and don't allow for manual changes, or
- Maybe just a browser issue. The CPE's login page is not even rendered correctly in my browser, but then again I'm the only one at the company using Firefox Private Mode with Ghostery, so it can't be reproduced on another machine. At least viewing the login/status page works with IE11 though, no idea how badly-written the config stuff itself might be.
Many hours pass, I enjoy not being annoyed by incoming phone calls for the rest of the day. Boss is slightly less happy, no internet and no incoming calls.
Next morning, windows would ask me to classify this new network as public/work/private - apparently someone tried factory-resetting the CPE. Or did they even get a replacement!? Still no internet though.
Hours later, everything finally back to normal, no idea what exactly happened - but we have our old static IPv4 address back, still wondering what we need it for.
Oh, and the blacklisted IP address was just the telco's mail server, of course. They end up on the spamcop list every once in a while.
tl;dr: if you're running a business in Germany that needs e-mail, just don't send it via the big magenta monopoly - you would end up sharing the same mail servers with tons of small businesses that might not employ the most qualified people for securing their stuff, so they will naturally be pwned and abused for spam every once in a while, having your mailservers blacklisted.
I'm waiting for the day when the next e-mail will be blocked and manager / boss eventually wonder how the 24-hours-outage did not even fix aynything in the end...
WTF?!? so apparently I guy I know, knows the guy who built dodeley.com (don't get me started on the name!)
Oh boy... Where should I begin? So besides the fact that I'm pretty sure these newsletters will be classified as spam (aites like mailchimp and so on actually pay large mail providers not to classify them as spam, I doubt they do...), their so called "widget" is just a form, sent to their domain using GET, FUCKING GET, NOT POST, GET!!! The request looks something like "dodeley.com/?action=subscribe&id=xxx&field1=xxx&..." I mean like, WTF? Oh and their solution to not leave the page is simply to add a target="_blank" to the form, that you have to include on your site.
Did I mention, that the form id is static? Did I mention, that there's no validation on what you enter?
Who the fuck programmed this shit? Honestly!1
My IT-teacher has a website. Aside from it looking like from 1980 (which is ok), he has a "security js Mail decryption":
You can just run this link (open email app and read it) or use the same function and same href in the browser console and read it. It sounds so stupid.
(Yet I figured out he probably doesn't want bots to spam his mail, so maybe I am stupid)1
sophisticated spam >>>
My name is Susan W. Alphonsus, I am a US military Soldier currently in Iraq. I have an important information to share with you, If i receive your response ,i will give you details of the information.5
No, I'm not interested in your credit card offer 😬
I need a spam filter for my mailbox like my email 👻
After waiting weeks and weeks for my account to be deleted (they asked for email to support for that, altough egistration takes 5s) I finally asked last time, this time using magical word "GDPR"
Got my account and data deleted under an hour and now their account settings page have delete account button. Even if it's this fake one which only changes email/id to prefixed one, still it was worth it.8
Wow, just fucking wow, you did it again Microsoft. You know the default mail app that comes with 8.1? It just randomly downloaded a pdf of a spam mail that it DELETED BY ITSELF before. Wow... "Hey, that looks fishy. Probably a trojan. LETS DOWNLOAD IT". I haven't even opened it. I was on my Desktop when it happened. Immediately deleted that crap.
That's actually the first time in the 3 years i have my pc that my antivirus was needed and it's not even my fault.
Recruiter logic: I know that developers receive a lot of messages from recruiters, so I'm sending you the third mail within a week to make sure you don't miss my special deluxe job offer!
I hate these recruitment spam bots...2
Fucking ant-cumstained garbage bag. How come you are so inaccessible you satan website.
I wanted to look at someone on facebook. But for some things you need an account, so I sign up with my spam mail and a random name and the birth date that was filled in
When I try to login facebook says: your account might be compromised, what is your birth date to verify it's you.
Wtf I just made this. So I fill in the standard birth date.
WRONG BIRTH DATE YOU CAN'T TRY AGAIN FOR THE NEXT 15 MIN
Im glad I abandoned you long ago.
But apparently you know you suck since you don't allow new users?
WHAT THE FUCKING FUCK?!5
Aaarrgghh! Stupidity of some webdevelopers! Ordering new battery on e-shop and got in my mail devilery report from one freemail service. Checking what kind of spam it is and those lazy bastards are taking my full order and sending it with my e-mail addresses in From to their freemail account. Which correctly rejects it based on SPF as the freemail suprisingly does its job well. Who the hell thought this would be a good idea? Grrrr!2
Again got an email(pseudospam) from a service I subscribed to (yes I did). It says the email is from CEO and it's supposed to be X-mas wish + invitation to their youtube channel. It was, kind of...
But the words they (or he, but I hope not) used in the email! It was so obviously blank, such uninteresting-president-speech. It was even targeted as a spam by gmail. In a foreign lang.
I mean... if you want to reach to your customers, sit on your ass and imagine _yourself_ reading an email that's long, its point was lost somewhere in the fourth sentence and magically appeared at the end + even default mail filter targets it as a spam.
That's what you get from a service. Motivational crap and blank words. Many thanks, I haven't heard a lot of those lately, eh?!
Used own fake/spam mail to sign up here... (real address I kept for several years)
Wants to get stickers but need to send them real name and address with this email account..
Well fuck :~
All results for GDPR on my "spam mail adress" (NO results for DSGVO!) ... seems like GDPR doesnt apply for spam :D but this email is also registered to sooo many services and websites... i think the search is broken :|5
Sometimes I feel that as we have some rules and accessibility guidelines for 18+ when they visit any website, play a game etc., we should also think about 60+ who are not technology friendly. I've explained to many elders why they should not share their personal information on public forums like facebook or twitter, or why should they not reply a spam mail.... but :(1
Mesosphere sold every e-mail who registered with them to Tech Global Leads. Either that or Tech Global Leads stole a list of leaked e-mail addresses. In either case I unregistered/unsubscribed from Mesosphere and still got e-mails to those two specific accounts from Tech Global Leads with Mesosphere consulting soliciting. (So they keep e-mail information, even for accounts that unsubscribe).
TGL doesn't even have a website up. They're either amateurs or scammers. Either way, fuck you and your spam, both TGL and Mesosphere. Go die in a fire.1
Co worker asks, why he can't send e-mails to a particular address. others cant't either
Turns out that the other company has blocked us.
*We are no spam senders, it was an issue they had with our company before*
Days like these are a perfect fucking opportunity for corporations to spam your mail and feed you with friendshit and then help you help them with click bait.
P.S Friendship is for decades not a day. Now can we have a good Sunday lunch? Enough of this bullshit.2
Any disposable e-mail address service:
"FIGHT THE SPAM"
"THANK YOU FIGHTING THE SPAM"
"YOU DID GOOD BY FIGHTING SPAM"
The users of disposable e-mail address:
*creates another spam account*
*creates another multiaccount in order to exploit a system*
Companies actually fighting spam:
Now there is even more spam to fight against. (which is not good)
About 2/3 of the accounts created daily on our website are spam accounts. We have to waste our time with this shit instead of actually improving our services. Since we do not track IP-Addresses and there are countless amounts of disposable e-mail domains AND there is still the option to create countless spam e-mail addresses within legit e-mail providers, there is no easy way of stopping this madness.
"Fight the Spam", you could start by deleting your shitty service or at least give us a list of all the domains you're using, srsly.
I pretty much had my spam under control for quite a while, receiving only a few spam mails per week. However, in the last month or so the volume has picked up significantly, and now I just saw 16 new spam mails in the last two hours! Fookin shyte…
Of course I suppose they don't realize that at least Gmail is quite effective in filtering that crap right into the Spam folder so I don't have to deal with it. Come on, I know e-mail is cheap but mails that are never read might as well not have been sent in the first place…2
Pharmacy... Preorder-mail got stuck in spam due to weird receiver passphrases so they didn't actually order it (it was "banana" followed by an steadily incrementing number). You wouldn't believe their faces after they saw my mail.
It took the pharmacy exactly ONE HOUR to get that medicine after I went up getting them to know that they missed an order. They express ordered it after I guess I signaled the urgency...
That's one of the pretty great things in Germany. If you need medicine and if you're in a medium populated area, you could get it within hours, or at least in 1/2 day if they not express the order and you order over their website.
But this is attacked due to European trade deals. Online pharmacy shops (the ones without local pharmacies) simply trade in from cheaper areas in Europe and can sell much cheaper. Also because they aren't committed to cross finance local hospital medicine delivery which then let's the health insurance raise their prices.
But due to the law for the minimum wage and therefore steadily decreasing wages the online-only pharmacies get more and more of the market cap....
Such problems aren't easy to fix...3
How would you approach choosing a fairly short but meaningful domain name? Common words are obviously going to be taken.
I have a handful of domain names used for different things, but my main one is 17 characters long and made up of 2 words and not particularly interesting (my surname + another word). It's relatively easy to read out to people over the phone, but inputting it in a phone handset or on a device without a keyboard (e.g. setting the hostname + domain of a media centre with a remote control) is a bit tiresome.
Doesn't even have to be something I can say easily as I mainly want it just for "infrastructure" purposes rather than to host a website etc.
I'd probably use it for sign-up e-mails to reduce the amount of spam/newsletter mail (I do generate a separate address for signing up to most services) but other than that wouldn't be using it regularly for e-mail.
But I don't want something meaningless like abcxyz.2
So, some of you may already know, that my email address got leaked a while ago. And as I sometimes like to do, I had a look at my spam folder (as there is sometimes interesting stuff in there.) And there was! Its an odd mail by some "anonymus hacker" as he called himself. He demanded that I pay him 2$ within 48h in order for him not to leak my "nudes". I knew it was fake from the start as I dont have any and a hacker would surely send some proof, that he has something against me. But he didnt. Also if he asks for only 2$ it feels like this was an automated email and he is trying to fraud multiple ppl at once. Well, about a week from that mail he sends a warning mail with about the same contents. Just from a diffrent address.
What got me more suspicious is, that he wrote in the first one, that he knows when I open the email. So this mean, that he should not have sent a warning knowing I havent read the first email.
And in the grand finale we have his third email. (Also a diffrent address) His grammar got a lot worse with this one.
The email consists of him cussing at me, calling me all sorts of things and now demanding
5'000$ till next friday for basically the same thing. Not leaking nonexisting nudes.
The thing that gave him away the most was this line: Nice car you there are. Would be a lot nicer if you would put a "I had my nudes leaked" sticker on it.
Thing is, I dont own a car! I use public transport.
Here is my idea behind him:
He bought a leaked database from the darknet for cheap. Messaged anyone this standard letter that he knew speaks german. (Probably also said in the db.) This gives away the next clue. He must speak german in some way. Next thing i looked at were the domains. someNameSomeNumber@smth.smth.xyz or .top
After looking these up. You can buy .xyz or .top domains for literally less than a dollar a piece. Probably bought a bunch and uses them now to send out spam like this maybe with tor for anonymity. (I havent confirmed this one so far!)
Here are his adresses in case anyone wants to dig:
I can maybe provide some more info if you need it. Just keep me informed in case you find something! :)3
It's lovely when your corporate application starts having problems sending mail through google, so you fallback to your onsite mail server, only to learn it is nothing more than a pass through to your gmail account.
Not only that, but it isn't secured at all, so spam bots have been sending millions of spam emails through it, leading to your google account being blacklisted which caused the email problems in the first place. Yay!2
That lovely moment, when I have to spend an hour on mail delivery issue, only to find out the message was flagged as spam due to a faulty dns blacklist.
Though the way it got flagged is idiotic and funny at the same time, too.
The blacklist domain got parked, dunno why, and of course, all of the dns queries thus got redirected to a different dns server that just returned the A records of the dns park owners.
Guess what that causes when you use that blacklist? Every single email gets flagged, including that one of ours that I had to debug.
Fml, an hour of overtime for a stupid malfunctioning blacklist...
Want to send an email? Sure thing, how about you configure first a DKIM, DMARC, SPF and some reverse DNS. Otherwise your mail can go fuck itself, because it won't even make it to the spam folder. Even if you do all these time consuming fuckwit tasks I might just mark your mail as spam. Because fuck you, that's why.
Sending mail to Gmail in a nutshell.2
Just got an "no-reply" email that wants me to click a link for customer satisfaction survey. No company name, no whatever, just plain text and the sender is "firstname.lastname@example.org" Is there a way to find out where did they get my email?!5
When you have to block a email address from a website providing you a great way to have a payment form for your client because they didnt implement the unsubscribe and you get spammed at every test