North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Have Yahoo! gone pink?
[I'm wearing my personal hat here.] I'm getting a *flood* of spam coming in from Yahoo! mailservers, both to my personal and work addresses. It seems that Yahoo! don't care. Here's the response to me piping a sample one through Spamcop: http://abuse.mooli.org.uk/yahoospam Yahoo claim "After investigation, we have determined that this email message did not originate from the Yahoo! Mail system. It appears that the sender of this message forged the header information to give the impression that it came from the Yahoo! Mail system." The spam headers claim otherwise: Received: from mrout3.yahoo.com ([22.214.171.124]) by relay-1.mail.uksolutions.net with esmtp (Exim 4.50) id 1FJbCW-0002Ag-IV for email@example.com; Wed, 15 Mar 2006 18:58:29 +0000 As does DNS and whois: abuse@mooli:~$ host 126.96.36.199 188.8.131.52.in-addr.arpa domain name pointer mrout3.yahoo.com. abuse@mooli:~$ host mrout3.yahoo.com mrout3.yahoo.com has address 184.108.40.206 abuse@mooli:~$ whois 220.127.116.11 OrgName: Yahoo! Inc. OrgID: YAHOOI-2 Address: 701 First Avenue City: Sunnyvale StateProv: CA PostalCode: 94089 Country: US [etc] Doing double-DNS lookups of the IP addresses on other spams also give yahoo.com hostnames, and they're typically in DNSBLs for being sources of spam and a useless abuse address. So, which IP blocks shall I null-route then? Or is there anybody here from Yahoo! with a clue? (OK, you can all stop laughing now.) -- PGP key ID E85DC776 - finger firstname.lastname@example.org for full key