woodcraft spam

Page 2 of 3  
My bet is #4. Nobody reads company policies about what they are authorized to do with your email address once you click the submit button. It is probably clearly stated somewhere in their policy.
--






Trees are good, dead or alive.
Please visit my website, and share it with your friends..
  Click to see the full signature.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

Their privacy policy is stated at
http://www.woodcraft.com/privacypolicy.aspx

^---NOTE----------------^

and on http://www.woodcraftnews.com /

So I don't believe this happened intentionally.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

Or #5 : Woodcraft outsourced the web site hosting and order fulfillment and that company either sold the email list or is sending SPAM.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

That violates their stated policy on privacy. Personally - I don't think woodcraft is evil.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
I believe that it's fairly common for merchants to sell their mailing lists (one of the ways to improve the bottom line).
The Woodcraft privacy policy says that they do not share email addresses with outside parties, but I'm wondering if that includes their affiliates.
Soon or later, the spam league will find you so I determnined long ago that it's easier to hit delete than to fret much about it.
-Z

Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
wrote:

I see and hear a lot about people receiving huge amounts of spam, but I've never been bothered with it. A few come in sporadically but nothing that wears out my delete button. Several months ago, I got at least one email each day encouraging me to buy some off-the-wall penny stocks that were guaranteed to triple (or more) in value within a few weeks, but that stopped after a week or so. I noted the ID of a few of them and checked on them later. Every one had lost value. Wish I had shorted them. Figure it was someone trying to inflate demand for the stocks to drive the price up so they could sell theirs.
Right now, some fool is trying to sell me some kind of outrageously expensive watch for some seriously discounted price. I took my watch off when I retired 5 years ago and haven't worn it since. Think I'll pass on that offer, too.
That's about it for the spam I get, and I take no special pains to hide my email address from vendors or anyone else, for that matter. I do have a rule on my inbox that sends emails from anyone not in my address book to a junk folder and automatically deletes any of those that aren't addressed specifically to me. Maybe that's getting rid of all the junk.
Tom Veatch Wichita, KS USA
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
Somebody wrote:

ago
SFWIW, Thunderbird stops a lot of it dead.
Lew
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
Tom Veatch wrote:

I have an account that I have had for more than 10 years, back then, one included a valid e-mail address with one's Usenet postings. That account now gets on the order of 300+ e-mails per day. It amazes me the number of people concerned about my need for time pieces or the size of one of my anatomical features. I used to use that address for all on-line transactions, but it has become so clogged with spam, any confirmation e-mails are washed out by the spam. I've missed confirmations from Grizzly and Woodworkers Supply.
So, I'm now in the process of abandoning that address to the spammers. I've notified those from whom I wish to continue to receive e-mail and changed account ID's with those merchants who use the e-mail address as an account ID. I will periodically delete all e-mail from that account with no effort expended to read any of it. Since it was the primary e-mail address for my ISP account, I can't just delete that box, or I'd do so.
--
If you're going to be dumb, you better be tough

Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
Mark & Juanita wrote:

I have a 'thingy' in Firefox that generates a random email whenever I find myself dealing with a company that I think would sell my address to a Tattoine slave trader for two game credits.
Companies like those that pay guys in Indiastan to tell you that their name is "David Jones". ##
It generates an address like " snipped-for-privacy@mail.svenz.eu", which lives exactly long enough to check a confirmation email or two.
Then the email address disappears off the radar.
Bill
## As I explained to the last "David Jones", "Why would I want to do business with a company that pays people to lie to me as a matter of policy? After all, they've already proven that they can't be trusted."
--
I'm not not at the above address.
http://nmwoodworks.com
  Click to see the full signature.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
Mark & Juanita wrote:
<this is to make up for not clipping the previous post>
Sorry, guys (& gal).
Bill
--
I'm not not at the above address.
http://nmwoodworks.com
  Click to see the full signature.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
Tom Veatch writes:

Then your ISP is doing a good job. I think the ratio is that for every legitimate e-mail, there are about 8-10 spam messages attempted.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
"HeyBub" wrote in message

Know the feeling ... spammers sucked so much bandwidth from one of our little Internet companies, that was doing very well otherwise, we got tired of fighting it and shut the whole thing down.
Should spammers ever incur the death penalty and executioners are in short supply, I'm available.
--
www.e-woodshop.net
Last update: 8/8/07
  Click to see the full signature.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

Get in line, Karl, get in line.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
wrote:

I love that analogy :)
That is the kind of horror story I was referring to. I don't know what I'm doing (or not doing), but my spam receipts - including those that are rule-directed to my junk mail folder- are rarely more than 3 or 4 per week. There could be more that are rule-deleted before I see them (Rule = From: not in my address book, To: not my email address, then Delete) but I wouldn't know how many of those there might be.
Tom Veatch Wichita, KS USA
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload
Tom Veatch wrote in

Tom, it could be that your ISP is helping out. I know that Comcast is pretty good at reducing the flow substantially. It's one of the reasons I put up with their (expensive) services.
That, and I guess I don't really want to change addresses very much.
Patriarch
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

Lucky you. In the past 12 days my Deleted Items folder has accumulated 2470 items.
<snip>
--
--
--John
  Click to see the full signature.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

You don't run your own mail server, do you?
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

You have to understand that a dictionary crack does not rely exclusively on a dictionary as you know it. They often build user names from combinations of of words, letters, numbers, etc. It's not uncommon to see your mail server hit by snipped-for-privacy@haha.com snipped-for-privacy@haha.com ... until it hits snipped-for-privacy@haha.com. You get the point.
I'm not trying to absolve woodcraft, but I wouldn't rule out a dictionary crack. I administer several mail servers and I used to see these things all the time. Fortunately sendmail has a macro to stop these sorts of attacks.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

I know exactly what a dictionary attack is. I watch my logs, (I see each and every attempt to guess every account) and I notice when this happens.
Most of the time I see guesses that try accounts like "info" "guest" etc. I would have noticed attempts where thousands of accounts fail.

Yes. I use sendmail.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

In particular, I use define(`confBAD_RCPT_THROTTLE', `3')dnl
So each IP address can have 3 guesses. It's pretty hard to go through 100,000 guesses at that rate.
Add pictures here
<% if( /^image/.test(type) ){ %>
<% } %>
<%-name%>
Add image file
Upload

Related Threads

    HomeOwnersHub.com is a website for homeowners and building and maintenance pros. It is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.