Dear Hostcenter responsibles.
Sorry that I write to Swinog, but the Hostcenter phone support just didn't get the problem.
One of your customers has again set up an autoresponder sending 'new' emails to every 'from' address it sees. We got about 10'000 new support tickets opened last night by this customer.
Subject and everything is replaced, so that RT is not able to recognize the loop. Precedence: Bulk or Junk is missing so RT sends a reply too.
This Hostcenter setup can wonderfully be abused to mailbomb any destination email address in an anonymous way.
The Hostcenter support told me that this a reseller's host and so this is the reseller's problem and not theirs but that they are not allowed to give me contact info of that reseller...
If somebody from Hostcenter reads this, and thinks about reconsidering this statement, please contact me asap: bp@imp.ch or 061 826 93 06.
As I'm playing with the idea to start reporting those autoreplies to spamcop, but it's just a reseller's host, so normal customers are not affected. Isn't it? (mail03a.hostcenter.com)
Regards -Benoit Panizzon-
hi benoit
what about blackholing or rejecting the mails before it can fork a rt-mailgate process? i'm sure you can reject based on ip address or if always the same domain has been used (*@blabla.tld).
-steven
ps: your performance solving trouble tickets must be incredible ;-))
On Wednesday 04 May 2005 09:48, Benoit Panizzon wrote:
Dear Hostcenter responsibles.
Sorry that I write to Swinog, but the Hostcenter phone support just didn't get the problem.
One of your customers has again set up an autoresponder sending 'new' emails to every 'from' address it sees. We got about 10'000 new support tickets opened last night by this customer.
Subject and everything is replaced, so that RT is not able to recognize the loop. Precedence: Bulk or Junk is missing so RT sends a reply too.
This Hostcenter setup can wonderfully be abused to mailbomb any destination email address in an anonymous way.
The Hostcenter support told me that this a reseller's host and so this is the reseller's problem and not theirs but that they are not allowed to give me contact info of that reseller...
If somebody from Hostcenter reads this, and thinks about reconsidering this statement, please contact me asap: bp@imp.ch or 061 826 93 06.
As I'm playing with the idea to start reporting those autoreplies to spamcop, but it's just a reseller's host, so normal customers are not affected. Isn't it? (mail03a.hostcenter.com)
Regards -Benoit Panizzon-
Hello Benoit,
please provide me with some samples and I can look at the issue with the Hostcenter Admins.
It seems it's not the server but the customer, having an Outlook POP "plugin" resending mail to all receipients.
Send me some full Mail headers and we can look at the issue.
Regards,
Guido Roeskens Swisccom Fixnet AG Bluewin
Benoit Panizzon wrote:
Dear Hostcenter responsibles.
Sorry that I write to Swinog, but the Hostcenter phone support just didn't get the problem.
One of your customers has again set up an autoresponder sending 'new' emails to every 'from' address it sees. We got about 10'000 new support tickets opened last night by this customer.
Subject and everything is replaced, so that RT is not able to recognize the loop. Precedence: Bulk or Junk is missing so RT sends a reply too.
This Hostcenter setup can wonderfully be abused to mailbomb any destination email address in an anonymous way.
The Hostcenter support told me that this a reseller's host and so this is the reseller's problem and not theirs but that they are not allowed to give me contact info of that reseller...
If somebody from Hostcenter reads this, and thinks about reconsidering this statement, please contact me asap: bp@imp.ch or 061 826 93 06.
As I'm playing with the idea to start reporting those autoreplies to spamcop, but it's just a reseller's host, so normal customers are not affected. Isn't it? (mail03a.hostcenter.com)
Regards -Benoit Panizzon-
swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog