OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Re: Spam blocked by NS

From: Philip Prindeville (philipp_subxredfish-solutions.com)
Date: Thu Aug 07 2014 - 16:51:56 CDT


This issue was recently covered on the Spamassassin users mailing list:

http://mail-archives.apache.org/mod_mbox/spamassassin-users/201408.mbox/%3c4EBF55B9-7E52-4AD8-B0AA-76C617F7304Abalholm.com%3e

On Aug 7, 2014, at 2:27 PM, Marius Gologan <marius.gologangmail.com> wrote:

> Hi everyone,
>
> Iím getting a lot of spam from the domains listed below.
> Since the list is keep growing, I blocked the associated NS (using check_sender_ns_access) which seems an extreme measure to me.
>
> Do you have a better suggestion?
>
> Thank you.
>
> Marius.
>
> List 1:
> cure-most-diseases01.mobi
> find-cars-here-4u.mobi
> get-medicare-for-less4u.mobi
> how-low-mortgage-go.mobi
> instant-oninebackgrounds101.mobi
> lower-your-payments-wHARP.mobi
> protect-home-surfaces01.mobi
> right-plan-medicare101.mobi
> safty-first-walkin-tubs.mobi
> stopnerve-paintoday1.mobi
> true-harp-save.com
> ironyworks.com
> logecall.com
> grtoruvr.com
> pauerlike.com
> showedin.com
> designatas.com
> lksdhjsks.com
>
> Name servers:
> dns1.name-services.com
> dns2.name-services.com
> dns3.name-services.com
> dns4.name-services.com
> dns5.name-services.com
>
> List 2: Domains redirecting http traffic to google.com via http redirect, not DNS nor IP.
> raemix.com
> wspmd.com
> rseidemann.com
>
> Name servers:
> guy.ns.cloudflare.com
> brianna.ns.cloudflare.com
> uma.ns.cloudflare.com
> fred.ns.cloudflare.com
> major.ns.cloudflare.com
> jeff.ns.cloudflare.com
> gina.ns.cloudflare.com