[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Mail Abuse / Bandwidth Pirate

Subject: [cobalt-security] Mail Abuse / Bandwidth Pirate
From: "Vic O'Dell" <odellv@xxxxxxxxxxx>
Date: Tue, 15 Jul 2003 19:21:36 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

I am experiencing a problem with spam-challenged idiot! The idiot is sending
tons of B/S spam using my domain name (plus random characters as usernames)
as the return path for his spam email (i.e. selling outdated Lotus 97 for
$39.99). The spam message is linked to this URL -
http://www.bagngrab.com/lotus/lotus97.htm and after some investigation I've
come up with the following info:

DOMAINS THAT HE OWNS:
bagngrab.com
emarketsrus.com

WHOIS:
U Save
Glen Hannifin (5782730.fly@xxxxxxxxxxx)
5208855899
958 S Sierra Nevada Dr
Tucson, AZ 85748

All day long, I get bounced emails with the original spam message attached.
Over and over and over. I've looked up both of his providers and reported
the abuse to no avail:

AJ'S COMPUTER BUG INC.
NEW EDGE NETWORKS

Can anyone offer advise on how to deal with this problem? It is driving up
my bandwidth costs and is a security nusance. My server is a RAQ4i fully
patched.

Thanks,
Vic O'Dell

Follow-Ups:
- Re: [cobalt-security] Mail Abuse / Bandwidth Pirate
  - From: Larry Smith

Prev by Date: [cobalt-security] old Thawte SSL Cert info won't give way to the new Geotrust
Next by Date: RE: [cobalt-security] old Thawte SSL Cert info won't give way to the new Geotrust
Previous by thread: [cobalt-security] old Thawte SSL Cert info won't give way to the new Geotrust
Next by thread: Re: [cobalt-security] Mail Abuse / Bandwidth Pirate

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index