dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
474
share rss forum feed


RAZ Black

join:2001-10-04
Mansfield, TX
Reviews:
·Charter

Teach us how to stop these people.

Could DSLR post or document how they did this.

I'ld like to use the code to do the same for my websites... Maybe a national tracking system could be developed to help stop these types of activities and to catch these people in the act.

It would be cool to get funding from the CIA to set this up, a national 'spam' tracking system... with a task force like SWAT team to rush in, break down the door, and arrest these people. (like they did to the warez people)

That would scare the crap out of them!!!!!!


SYNACK
Just Firewall It
Premium,Mod
join:2001-03-05
Venice, CA
This already exists and some major ISPs, such as attbi, use it: Brightmail


Sock Puppet
Premium
join:2000-10-09
Parker, CO
reply to RAZ Black
downloadipemail.zip 214 bytes
(ipemail.txt)
Simple enough....

If your server allows, create a blank .asp page and add the line in the attached text file to the html. Change "@mydomain.com" to your e-mail domain.

Make sure your e-mail server will forward everything sent to your domain through.

wkearney99

join:2000-12-05
Bethesda, MD
reply to RAZ Black
Would it be better to mask that IP address as coded string of some kind?

In this demo you're just putting their IP address in the e-mail address. All they'd have to do would be to check against the address containing an IP address.

That way they spam trawling bot code would not have as easy a time checking against it.

It's supposed to be on a page that's not going to be humanly read. So you're not going to get hits unless something is programmtically loading the page.

So you could have some sort of random word generator tracking their IP address and issuing a custom address based on it.

You might consider your robots.txt file requesting they NOT traverse the page. This way they'd engaging in a second form of abuse, trawling the page when being explicity asked no to do so.


Sock Puppet
Premium
join:2000-10-09
Parker, CO

reply to RAZ Black
A simple way to do something like that in an IIS based web if you know a little about sql..

Create a database with an "ID"(set as primary key / auto-number), "Date" (with an auto date/time default value), and "Bookmark" field and create an ODBC system DSN for that database. Create an asp page that on load inserts a new record into that database with a value like "x" or something for the bookmark field. So you only need one page, on the same page do an sql statement "SELECT LAST(ID)+1 FROM tablename" and tack your @mydomain.com to the end of the results displayed on the page. When the page is loaded it will create a new record in the database and spit out an email address on the page with the "(ID field value)@yourdomain.com" on the page.

When you receive an e-mail sent to #@yourdomain.com, look up that number in your database then look for a hit in your web server log at exactly the same time/date.
[text was edited by author 2002-02-20 21:01:05]


Sock Puppet
Premium
join:2000-10-09
Parker, CO

downloadlog.zip 1,542 bytes
(log.asp)
downloadlog.zip 10,442 bytes
(log.mdb)
Here's the asp page created in FrontPage and the database assuming you have a a system dsn called "log" set up in ODBC and you set up a connection to it in FrontPage or in your global.asa
[text was edited by author 2002-02-20 21:18:47]

[text was edited by author 2002-02-20 21:24:49]


RAZ Black

join:2001-10-04
Mansfield, TX
Reviews:
·Charter
That's a really good idea! You could also put (with server side scripting) the users' IP, machine name, user name.. all kinda good stuff.

What would also be great is to setup a little SMTP service to accept incomming mail (not do anything with it). You'ld need a service though to monitor the 'drop' folder of the mail service for messages addressed to your specially created addresses and notify you of when something has been address to one.

You'ld know who it was, when they snaked the address... but, the spam could be sent out days after the mail address was collected...