Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4
ageorge

626 posts

Ultimate Geek


  #1648021 9-Oct-2016 15:06
Send private message

Well I am the web dev. Ive established that the spam attack does not use wordpress mail client, and I assume thats why there is no detail in my wordpress cp interface, but it does seem to stop if I rename the wordpress directory. What they are using to springboard the spam I dont know, but in reply to your later comment my opinion of Flip degraded when they showed zero interest in the spam situation. Its only since coming here and finding you helpful folks that any progress has been made.


 
 
 

You will find anything you want at MightyApe (affiliate link).
noroad
765 posts

Ultimate Geek

Trusted

  #1648027 9-Oct-2016 15:14
Send private message

ageorge:

 

Well I am the web dev. Ive established that the spam attack does not use wordpress mail client, and I assume thats why there is no detail in my wordpress cp interface, but it does seem to stop if I rename the wordpress directory. What they are using to springboard the spam I dont know, but in reply to your later comment my opinion of Flip degraded when they showed zero interest in the spam situation. Its only since coming here and finding you helpful folks that any progress has been made.

 

 

 

 

Well, I designed and built most of Flip, so Zero Interest is not quite the attention you are receiving eh....


ageorge

626 posts

Ultimate Geek


  #1648028 9-Oct-2016 15:14
Send private message

There is a setting in host CP which is called MX Entry which seems to allow re-route traffic from one domain to another.

 

If I can get that to work then I may have a chance of getting the header info.




ageorge

626 posts

Ultimate Geek


  #1648030 9-Oct-2016 15:15
Send private message

noroad:

 

 

 

Well, I designed and built most of Flip, so Zero Interest is not quite the attention you are receiving eh....

 

 

Not now, thanks!


ageorge

626 posts

Ultimate Geek


  #1648031 9-Oct-2016 15:19
Send private message

Very odd that I can rename the directory and the spam stops, name it back and it starts again. Perhaps spam source have dropped a wee script somewhere in the Wordpress installation thats doing the relay work.


freitasm
BDFL - Memuneh
76841 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1648039 9-Oct-2016 15:39
Send private message

I am thinking this story makes no sense. The fact you have a Flip account and access your sites from that account, plus this incoming email flood makes me think it could even be y I urge machine sending this out.





Please support Geekzone by subscribing, or using one of our referral links: Dosh referral: 00001283 | Sharesies | Goodsync | Mighty Ape | Backblaze

 

freitasm on Keybase | My technology disclosure

 

 

 

 

 

 


ageorge

626 posts

Ultimate Geek


  #1648043 9-Oct-2016 15:47
Send private message

freitasm: I am thinking this story makes no sense. The fact you have a Flip account and access your sites from that account, plus this incoming email flood makes me think it could even be y I urge machine sending this out.

 

Greetings sorry 'y I urge' does not make sense to me typo??

 

If you were saying it could come from here then thats not possible as Ive shut everything down at this local and while it was shut down the spam kept rolling in.




freitasm
BDFL - Memuneh
76841 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1648046 9-Oct-2016 15:49
Send private message

Sorry, yes typing on phone.

I think the problem is not with Flip and we do not have enough information to actually come up with a diagnose.




Please support Geekzone by subscribing, or using one of our referral links: Dosh referral: 00001283 | Sharesies | Goodsync | Mighty Ape | Backblaze

 

freitasm on Keybase | My technology disclosure

 

 

 

 

 

 


ageorge

626 posts

Ultimate Geek


  #1648047 9-Oct-2016 15:49
Send private message

I had another idea to use apache spam assassin and set it so the blacklist originator email address contained 'thehomenz.com' that way I was expecting it to route the spam to a spam folder but this hasnt happened - groan!


ageorge

626 posts

Ultimate Geek


  #1648054 9-Oct-2016 15:52
Send private message

Yes I think that Flip has responded belatedly well and is now showing some concern so full marks.

 

However, please leave the topic open just in case someone can give me some tips on how to actually get a header from the traffic thats passing through my site then I can let Flips gentleman know the details. After all we have established the attack is coming from Flip, so they will need to chop it off at the source when they have enough info from me.


noroad
765 posts

Ultimate Geek

Trusted

  #1648063 9-Oct-2016 16:21
Send private message

ageorge:

 

Yes I think that Flip has responded belatedly well and is now showing some concern so full marks.

 

However, please leave the topic open just in case someone can give me some tips on how to actually get a header from the traffic thats passing through my site then I can let Flips gentleman know the details. After all we have established the attack is coming from Flip, so they will need to chop it off at the source when they have enough info from me.

 

 

 

 

Send me the IP of your server, at least I can look for that in the Flip logs.


yitz
1894 posts

Uber Geek


  #1648064 9-Oct-2016 16:22
Send private message

I'm so confused....can you explain what exactly are the first two entries in your screenshot?

 

 

 

 

The following error events seem to show someone has hijacked your web form script to send mail to hotmail.fr and yahoo.fr addresses.

yitz
1894 posts

Uber Geek


  #1648065 9-Oct-2016 16:23
Send private message

noroad:

Send me the IP of your server, at least I can look for that in the Flip logs.

 

Seems to be server76 dot mainpacket dot com resolves to 104.128.226.6

noroad
765 posts

Ultimate Geek

Trusted

  #1648068 9-Oct-2016 16:27
Send private message

ageorge:

 

I had another idea to use apache spam assassin and set it so the blacklist originator email address contained 'thehomenz.com' that way I was expecting it to route the spam to a spam folder but this hasnt happened - groan!

 

 

 

 

ok, do you have a linux machine at home named webid.co.nz ?


ageorge

626 posts

Ultimate Geek


  #1648071 9-Oct-2016 16:31
Send private message

noroad:

 

ageorge:

 

I had another idea to use apache spam assassin and set it so the blacklist originator email address contained 'thehomenz.com' that way I was expecting it to route the spam to a spam folder but this hasnt happened - groan!

 

 

 

 

ok, do you have a linux machine at home named webid.co.nz ?

 

 

can I ring you for security reasons? or would you like to leave it till tomorrow I can live with renaming my host directory for overnight.


1 | 2 | 3 | 4
View this topic in a long page with up to 500 replies per page Create new topic





News and reviews »

Synology Introduces BeeStation
Posted 23-Feb-2024 14:14


New One UI 6.1 Update Brings Galaxy AI to More Galaxy Devices
Posted 23-Feb-2024 10:50


Amazon Echo Hub Available in New Zealand
Posted 23-Feb-2024 10:40


InternetNZ Releases Internet Insights 2023
Posted 20-Feb-2024 10:31


Seagate Adds 24TB IronWolf Pro Hard Drives for Multi-user Commercial and Enterprise RAID Storage Solutions
Posted 19-Feb-2024 16:54


Seagate Skyhawk AI 24TB Elevates Edge Security Capacity and Performance
Posted 9-Feb-2024 17:18


GoPro Releases Quik Desktop App for macOS and Introduces Premium+ Subscription Tier
Posted 9-Feb-2024 17:14


Ring Introduces New Ring Battery Video Doorbell Pro
Posted 9-Feb-2024 16:51


Galaxy AI Transforms the new Galaxy S24 Series
Posted 18-Jan-2024 07:00


D-Link launches AI-Powered Aquila Pro M30 Wi-Fi 6 Mesh Systems
Posted 17-Jan-2024 20:02


Newest LG 4K Lifestyle Projector Doubles as Art Objet
Posted 9-Jan-2024 15:50


More LG Smart TV Owners Set To Enjoy the Latest webOS Upgrade
Posted 9-Jan-2024 15:45


Panasonic Announces the Z95A and Z93A With Fire TV Built In
Posted 9-Jan-2024 15:30


Amazon Echo Pop Review
Posted 8-Jan-2024 14:22


Samsung Tab S9 FE Review
Posted 17-Dec-2023 08:26









Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







Backblaze unlimited backup