After an unsuccessful attempt at medical treatment, an anti-spammer lost a dear friend and faithful companion this week (Jan 30 to Feb 5, 2005) and, although I never met him, I felt that some tribute to Julius was warranted. May Clifton one day find Julius waiting for him at Rainbow Bridge.
IMPORTANT! If you have one or more Netgear routers with a model number RP614, RP614v2, DG814, MR814 or HR314 then it is very important that you update the firmware in your router. You could be one of the more than half-million Netgear router users who, because of the default firmware in the router, are causing problems for the University of Wisconsin. Links to details and upgrade sources are available on my page, netgear-error.html.
Please, in taking steps to stop spam, please don't take steps that shut
out the disabled from Internet access. See:
"
Spam-bot tests flunk the blind | CNET News.com".
It's approaching that time of year again, time for the story that's always an old favourite, "An Internet Christmas Carol". And, speaking of Carols, what is this season without songs... [Note: the URL above and the ones for the songs below have been updated December 20, 2002 to reflect directory changes at the original location.]
'news.admin.net-abuse.email is the "Wall Street
Journal" of spam fighters.'
--
Frederi108 in news.admin.net-abuse.email
If you need help, one place to get it is in the news:news.admin.net-abuse.email newsgroup. Be aware that it is populated not only by anti-spammers but also defensive and/or disruptive spammers, flamers, net-kooks, and trolls (with some overlaps in roles). If you must post there for some reason, you should first read both of the FAQs ("Your First Post to NANAE" and the "news.admin.net-abuse.email FAQ"), lurk (read without posting) for a while to get the feel of the place and, when you do post, be sure to wear your fireproof Nomex underwear:
... and remember,
+----------+
| PLEASE |
| DO NOT |
| FEED THE |
| TROLLS |
+----------+
| |
| |
.\|.||/..
One regular to the news.admin.net-abuse.email newsgroup posted this adult parody called "Green Eggs and Spam". (Included here with permission of the author.)
Good SPAM?
Here are a couple of rants^H^H^H^H^Heditorial comments of mine about spam that I have posted to Usenet:
Note: I originally had links to the postings archived on DejaNews^H^H^H^H.com but a recent alleged upgrade of theirs has made articles older than more than about six to eight months inaccessable. Thanks to Patricia and SuperTroll (Ron Ritzman) who archived the posts, I now have the posts stored on my site (although the headers of one is missing and I had to reconstruct the signature from the other and may have used the wrong sig quote). I have also converted them to HTML format and added an after-the-post note to one of them.
[NEW ADDRESS!]: This was *the* source for spam information if you wanted it in one place:
To be fully honest, I should point out that the original author of the site was disciplined by AOL for violating their Terms Of Service. (Note: This link used to point to the relevant post on DejaNews but they seem to have lost a lot of articles lately and this one was one of them. What you get now is a copy of the post from DejaNews that I had saved with the DejaNews added links removed.)
Hug a Tree Today 
...
and then cut it down. 
The cheery message above was brought to you by
The Lumber Cartel
[NEW URL] (There Is No Lumber Cartel).
Now you can have your own Lumber Cartel Sooper Sekrit Decoder Ring (TINLCSSDR)(tm) for decoding those cryptic messages on Usenet. Get yours today from my "Computer Hints, Tips, and Utilities" page.
Special for Chebucto Community Net users and others using pine
3.95:
Those not using WebTV can skip this part.
For those using WebTV:
There is no "official" way to extract headers (such as a one-step process) but the following extracts headers from posts according to one WebTV user (but see below that for differeing instructions):
(Note a change in instructions. The person who posted the original instructions notified me that there was an error in the instructions.)
OK the correct instructions:
The email you get will be addressed to you w/full headers.
(My thanks to a WebTV user who gave me permission to quote this but who wished to remain anonymous.)
There is a chance that the tactic above may not work for you. I am keeping the instructions above in case there is more than one version of WebTV with different procedures for each version. I have received a message that the procedure above does not work for the sender who included alternate instructions (Thanks, Laura!):
<QUOTE>
From: [address snipped] (Laura) Date: Wed, 8 Nov 2000 23:47:01 -0700 (MST) To: af380@chebucto.ns.ca ( Norman De Forest Antispam.html ) Subject: Incomplete/incorrect Webtv 'open header' info on your site. Hello, Mr. De Forest. First, I want to compliment you on your spam info page. Although I haven't fully explored all of the links yet, it seems to have a lot of information/links that'll be very useful when I report spam. Thank you :-) Secondly, I want to thank you for taking the extra time and effort to list how we Webtv'ers can open our email and/or post headers. A lot of webmasters tend to forget about us <g> and I appreciate your including us in your 'how to'. However, I'm afraid that the 'open headers' information that is listed for Webtv'ers is incomplete. I hope you don't mind, but I felt that I should let you know about that. Anyone using those instructions will just get a blank email, without opened headers. Spamcop has a page with the correct way to open the headers for wtv'ers http://spamcop.net/fom-serve/cache/28.html Or, if you wish, you can use the instructions that I'll write below. (Which are basically the same as those on the spamcop page, though not as concise ;-) To open Webtv post and/or email headers: 1. For post headers: When viewing the post, click on the 'send' button on the keyboard, then click on 'forward' and address the forward to yourself. And for email headers: Click on 'forward' on the left sidebar when viewing the email and then address it to yourself. 2. Erase (delete) the subject line. 3. Place the cursor in the body of the write screen and then hit 'return' (enter) twice. 4. Next, hit the ALT + the Z keys at the same time (alt + z). This will give you this alt character: § (Or you can use ALT + any other key.) 5. Now, hit the CMD + the A keys, to highlight the §. Next, hit the CMD + the X keys, to cut/copy it. Then, place your cursor on the blank subject line and hit CMD + V, to paste the §. (cmd + a, cmd + x, cmd + v) 6. Click on 'send'. When the email/post forward is received, it will show the full headers. It takes longer to write it than it does to actually do it ;-) The whole process, once someone's practiced it once or twice, usually takes maybe 15 - 30 seconds. I'm sorry this was so long and I hope it wasn't too much of an imposition. Thanks again for thinking of us wtv'ers when you wrote your spam information page :-) Oh... and if you do choose to use my instructions on your page, as opposed to what's already there or spamcop's page, please don't list my email address. Using 'Laura' is fine, just not my email addy. Thanks:-) Have a great day. Laura ~~~~~email welcome, but NO forwards, mass mailings, spam, etc.~~~~~~~~~~~
</QUOTE>
Another set of instructions for WebTV was posted to Usenet and is available through Deja.com (if they don't break things again):
Tutorials on displaying full headers for other systems:
Tutorials on displaying and interpreting full headers.
More tutorials on interpreting full headers.
RFCs related to email and spam:
Some RFCs from my bookmarks -- yet to be sorted and have the duplicates weeded out:
For science-fiction lovers, here's an imaginary scenario about what could happen if laws mandating opt-out (and thereby endorsing spam as a legitimate marketing tool) were to be passed. It was written when the Torricelli bill regarding spam was being proposed and is slightly out of date for that reason but the argument still holds if similar legislation is proposed in the future. (Orwell's 1984 is still a classic even if that date has now been passed.)
The Death of the Internet by Clifton T. Sharp, Jr.
4DOS users might be interested in a little 4DOS alias I use called "dot" to convert those pesky integer URLs into dotted-quad form -- the ones that look like:
http://3409588296/
To define it, use the following command as a single line. It is shown wrapped here only for readability and only wrapped where there is a space in the alias. Type it as one long line:
alias dot=`echo.^echo %1 = %@eval[ %1 \ 16777216 ].%@eval[ %@eval[ %1 \ 65536 ] %% 256 ].%@eval[ %@eval[ %1 \ 256 ] %% 256 ].%@eval[ %1 %% 256 ]^echo.`
Note: if you tried this earlier and it didn't work, I forgot the ` at the end of the definition. Oooops!
Usage:
c:\comm\>dot 3409588296 3409588296 = 203.58.48.72 c:\comm\>
Because the alias has three commands in it, you have to use the 4DOS 'command-grouping' feature if you wish to redirect the output to a file:
c:\comm\>( dot 3409588296 ) >dotquad.num c:\comm\>
Real Audio is now in the RBL as can be seen in this Wired report.
The word in the net-abuse newsgroups is that if you try to "Add RealAudio and RealVideo to any web site with RealProducer" or download any of the Real Audio players then you will get spammed even if you uncheck the checkbox on their site asking for email when you download the Real Audio player. In the past there have also been claims that just mentioning "G2 Real Audio" or any other Real Audio product on your web site will also attract spam from Real Audio.
I am going to put that latter claim to the test by including on this page a few frequently-used phrases from other sites -- with just enough "editorial" changes so I will not be lying in this page. Let's see if I get any spam from Real Audio because of it. :-)
I have also added the following META tag to the header of this page:
<meta name="keywords" content="RealAudio, RealVideo, RealProducer, RealMedia, RealPlayer">
You Should Not
Download
Real Audio Player
Here!
Nothing on this page Requires Real Audio Player so you don't need to follow that link.
Avoid "RealProducer G2".
To listen to Real Audio files you need Real Audio player. If you haven't already got this on your system you can NOT download it FREE by clicking on any logo below (TANLB){1}.
Footnote:
{1} TANLB: "There Are No Logos Below"
You might want to read the latest
CAUCE Newsletter
(vol. 3, num. 1, Jan 1999).
(Note: I found out that, due to a stupid error on my part,
the file access permissions for this file were misset.
If you got an error trying to access this in the past, try again.)
Just the FAQs, ma'am:
Why is spam bad?
Combatting Spam:
Advertising on the Internet:
Traceroute information and gateways:
IP lookup:
Mixed and other tools:
Lawsuits:
Legal Resources:
Laws that are or may be applicable to U*E:
Bills pending in US Congress:
Don't count on all politicians to help you. Some are also in the spamming ranks. Read about it at "PinkPols".
While it is usually a bad idea to respond directly to spammers, I can't resist the occasional temptation to attempt to re-educate a pyramid-scheme spammer. One of the most recent of these spammers, however, seemed totally incapable of seeing how his alleged "Multi-Level Marketing" scheme matched the United States Postal Service's description and the Canadian Competition Act's description of an illegal pyramid scheme. The email exchange seems to prove that some of our human ancestors must have landed on their heads when they came down out of the trees.
Spamming is not the only form of net-abuse. When I saw a plea for help in the news.admin.net-abuse.usenet newsgroup and had a look at the harassing going on in a couple of other newsgroups, I couldn't resist poking fun at the harasser.
A number of spammers have done more than just send out spam. Here, I plan to point out those who have done worse things.
Our first contestant in out "Who's Been a Bad Little Spammer?" competition is Eventemp. People critical of them have apparently received death threats after failing to be intimidated by threats of legal action. A collection of postings to the news.admin.net-abuse.email newsgroup about this indicates how anti-spammers can stick together. (Now full threads available on request, (large, about 151K bytes unzipped) as I needed the space for other stuff.)
NEWS UPDATE!!! Eventemp has more to worry about than just anti-spammers now:
"http://angel.1jh.com/nanae/kooks/" documents some of the kooks that frequently post to N.A.N-A.E (or have in the past).
What follows is a totally unorganized list of spam-related bookmarks. Recently, I have been too busy responding to spam to work on sorting it by topic. I have just finished sorting it by URL to eliminate duplicates and have moved some links which do not belong to the bottom of the page until I can find a new home for them. May contain anti-spam sites, net-kooks, parody sites, duplicates of files above, broken links, mailserver information, filtering rules, foul language, news stories, and sodium proprionate to retard spoilage.
Well, somebody has to stand up for the poor
defamed sheep.
Webmaster: Norman De Forest,
If you have any comments about this site
send me an email message.