Security Incidents mailing list archives

Re: Strange SMTP Garbage Flood

From: Johannes Verelst <johannes () verelst net>
Date: Wed, 14 Nov 2001 22:11:08 +0100 (MET)

On Wed, 14 Nov 2001, Duncan Simpson wrote:
[snip]

I have used this method more than once to find out if abuse@<domain> exists or
not (and almost always throw in a known invalid name to see if the method
works). The same method could be abused to probe for valid user names and that
sort of thing.


For finding abuse addresses for a domain, I would recommend:

# whois -h whois.abuse.net spammerdomain.com

Johannes
-- 
"Programming today is a race between software engineers striving to build
bigger and better idiot-proof programs, and the Universe trying to produce
bigger and better idiots. So far, the Universe is winning."


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Current thread:

Strange SMTP Garbage Flood Mike Tibor (Nov 13)
- Re: Strange SMTP Garbage Flood macdaddy (Nov 13)
  - Re: Strange SMTP Garbage Flood Duncan Simpson (Nov 14)
    - Re: Strange SMTP Garbage Flood Johannes Verelst (Nov 14)