Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeOur CommunityOur CommunityGeneral Discuss...General Discuss...Dont you hate email spammersDont you hate email spammers
Previous
 
Next
New Post
10/23/2008 10:35 AM
 
Salar Golestanian


www.salaro.com
Joined: 12/27/2002
Posts: 1192

I come up with an idea recently but no time to properly test it or research it.

My idea in how to combat them It seems to me that they mainly crawl the web and pick up email addresses.

so,  my plan was to give them what they want. I thought that if we give them millions of crap email addresses through an open source DNN module

Then over time, if they have a billions email address then it devalues the real email addresses that they have since most of the spammers just send them without proper check on if they are real or not.

This is what such a module will do:-

People like us in the DNN community, have many real domains under their control and most of the community runs number of portals.

The module will automatically create crap email addresses for those domains that owner owns

like

joeplumber@salaro.com ; Alisomeone@salaro.com; MickeyMouse@salrao.net and so on

And populate certain pages on the site

so, it creates names like:

Name: joe plumber
Job: Marketing Director
Email: joePlumber@salaro.com

Name: Micky Mouse
Job: IT Director
Email: MickeyMouse@salrao.net


And on every page loads it will create new set of 100s of these imaginary emails and names.

The robots pick them up, since they think they are real email addresses.

Every time they hit the page:-

There will be a new set of email address list created since it generates the name and email address based on a fixed set of rules. It may also change once a week.

I hope that as the result of this:-

Just one site with this module is likely to generate 100,000s of crap email addresses over the year.

10,000 DNN sites with this module running will probably generate billions of email addresses

Initially I thought we could build it and give it for free to the community. But, realized that it is a bigger task for our team can handle. I think it may work better as a community endeavour. Also my logic may have an obvious fault that I have missed out. :( After all this is not rocket science and others must have considered this approach too. So why isn't it out there already.

 

Salar
 

SalarO
 
New Post
10/23/2008 10:48 AM
 
Erik van Ballegoij


Erik van Ballegoij's Avatar

erikvanballegoij.com
Joined: 4/7/2004
Posts: 4445

if you use real domain names for the addresses that will create a lot of traffic to your mailserver, even if it is just to say the address does not exist.

Also, one of the major spamming methods is to target catch all addresses (which a lot of domains still use). If you look at server logs for domains that have catch all activated, you see a lot of bogus email address passing by

There are 2 simple ways to prevent a lot of spam coming your way: greylisting and nolisting. See www.greylising.org and www.nolisting.org for more info

Nolisting is about creating a nonexistent primary mx record in your dns, and a good secondairy mx record. It seems that most spammers don't care to check the secondairy mx if the primairy doesn't answer...

Erik van Ballegoij, Former DNN Corp. Employee and DNN Expert

DNN Blog | Twitter: @erikvb | LinkedIn: Erik van Ballegoij on LinkedIn
 
New Post
10/23/2008 10:53 AM
 
Sebastian Leupold


Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

www.dnnwerk.de
Joined: 3/8/2004
Posts: 46212

Salar,

I fear, what will happen is, that the spam is sent to every ever listed account on your mail server, sent by thousands of bots (usually PCs owned by private people, who are not aware, that the machine is infected), spamming your mail server and preventing any mail to get through. You might use your email addresses as "honey pots", to identify IP addresses of spamming machines, but since most of them are dynamically assigned, you might block a number of customer messages as well.

Cheers from Germany,
Sebastian Leupold

dnnWerk - The DotNetNuke Experts   German Spoken DotNetNuke User Group

Speed up your DNN Websites with TurboDNN
 
New Post
10/23/2008 11:03 AM
 
Salar Golestanian


www.salaro.com
Joined: 12/27/2002
Posts: 1192

Ok

Point taken

May be using an active domain like salaro.com or salaro.net is not a good idea. But I also own at least 10 domains that are not used in any significant way. Surely I could use them? I am sure most developers are the same. Further more. May be some of these email addresses could be used to triger an alert the infected pcs or perhaps their ISPs

I appreciate that I dont know enough about this subject. I have learned a bit already :)

 

Salar

SalarO
 
New Post
10/23/2008 12:10 PM
 
John Mitchell


www.snapsis.com
Joined: 4/18/2003
Posts: 3987

This concept has been around for a long time and is called a "honeypot".

http://www.projecthoneypot.org/

http://spamlinks.net/track-trace-honeypot.htm

DotNetNuke Modules from Snapsis.com
 
 Page 1 of 2
12Next 
Previous
 
Next
HomeHomeOur CommunityOur CommunityGeneral Discuss...General Discuss...Dont you hate email spammersDont you hate email spammers


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out