Page 2 of 2 FirstFirst 12
Results 11 to 17 of 17

Thread: Spam from select2gether

  1. #11
    pointer is offline Junior Member
    Join Date
    Feb 2009
    Posts
    9
    Rep Power
    6

    Default

    Quote Originally Posted by phoenix View Post
    That is your prerogative. If the accounts on the forums or bugzilla had been 'hacked' don't you think we'd all be getting spam?
    Indeed, it is. I was not trying to assert that bugzilla has been hacked. You can scrape email addresses from bugzilla simply by creating an account and listing bugs. Once you are logged in, you can see the email addresses associated with the ticket and its comments.
    Last edited by pointer; 08-08-2011 at 03:21 PM.

  2. #12
    bjenkins is offline Member
    Join Date
    Sep 2006
    Posts
    11
    Rep Power
    8

    Default select2gether

    Just as a data point, I'm on the Zimbra Forums and Bugzilla, I've gotten these spams for a few months. My coworker is also on the Zimbra Forums and Bugzilla, and gets the same spams. About the only thing we have in common is these two things. I would suspect a scraping rather than an outright hack, though.

  3. #13
    phoenix is online now Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,497
    Rep Power
    56

    Default

    Quote Originally Posted by bjenkins View Post
    I would suspect a scraping rather than an outright hack, though.
    That's not likely, the email addresses are not visible for viewing and if that were the case I'd think we'd all be getting spam from these sources.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  4. #14
    bjenkins is offline Member
    Join Date
    Sep 2006
    Posts
    11
    Rep Power
    8

    Default

    Well, in Bugzilla they are if you log in. Maybe that's where they are coming from, rather than the forum?

  5. #15
    pointer is offline Junior Member
    Join Date
    Feb 2009
    Posts
    9
    Rep Power
    6

    Default

    Quote Originally Posted by phoenix View Post
    That's not likely, the email addresses are not visible for viewing and if that were the case I'd think we'd all be getting spam from these sources.
    You're wrong on at least one point. Go to this URL and tell me if you see email addresses:

    https://bugzilla.zimbra.com/show_bug.cgi?id=38631

    I'm asserting that this came from bugzilla.zimbra.com. I use separate email addresses for bugzilla and these forums.

    Also worthy of note:

    https://bugzilla.mozilla.org/show_bug.cgi?id=261326

    Bugzilla appears to allow email harvesting by spammers
    - you replied to this one
    - the user simply asked Zimbra to enable email address obfuscation in Zimbra's bugzilla instance like Redhat does
    - the 4th result when you google 'bugzilla spam'

    The email address I registered to bugzilla is behind a cluster of IronPorts with DHAP (directory harvest attack prevention) enabled. Obviously this is not bullet-proof, but it makes the address being harvested much less likely.

    Thank you for taking the time to respond to this thread!

  6. #16
    davidbrown is offline Starter Member
    Join Date
    Feb 2012
    Posts
    1
    Rep Power
    3

    Default

    Quote Originally Posted by Blinkiz View Post
    I use individual email addresses for all sites I register on. Like Zimbra forum.
    Today (2011-06-04) I got spam on this unique address from do-not-reply@select2gether.com. A person (nina.crowth) requesting to add me as contact on Select2gether.

    Because I use individual email addresses, I suspect my email address here on Zimbra forum has been compromised.
    Anyone else got spam from select2gether?
    Sorry to hear this- I have actually great experience at Select2gether and have great friends, more than 40000. I sent an email to their admin so they block the person who send you this email. Thank you.
    Dave

  7. #17
    smothemh is offline Intermediate Member
    Join Date
    Jan 2006
    Location
    Tennessee, USA
    Posts
    19
    Rep Power
    9

    Default

    Just one more data point - I've been getting Select2gether spam on my registered address here and on bugzilla from about the time the OP states. I *do* use this address elsewhere so it is not necessarily an indicator of any problem.

    Not sure if this helps, but I thought I'd provide the info
    - Mick Smothers
    Memphis, TN USA

Page 2 of 2 FirstFirst 12

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. spam: how to block by sender alias
    By sangamc in forum Administrators
    Replies: 3
    Last Post: 05-10-2011, 06:29 AM
  2. Help mail server broadcast spam
    By sh1n_b3 in forum Administrators
    Replies: 0
    Last Post: 01-19-2011, 07:44 PM
  3. Spam, Spam and more Spam (Inbox)
    By luma in forum Administrators
    Replies: 4
    Last Post: 10-07-2010, 07:57 AM
  4. Spam being scored with BAYES_00
    By flyerguybham in forum Administrators
    Replies: 6
    Last Post: 04-24-2007, 12:07 PM
  5. Training spam and ham
    By Justin in forum Developers
    Replies: 2
    Last Post: 10-31-2006, 03:39 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •