Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4
ageorge

477 posts

Ultimate Geek


  #1648021 9-Oct-2016 15:06
Send private message

Well I am the web dev. Ive established that the spam attack does not use wordpress mail client, and I assume thats why there is no detail in my wordpress cp interface, but it does seem to stop if I rename the wordpress directory. What they are using to springboard the spam I dont know, but in reply to your later comment my opinion of Flip degraded when they showed zero interest in the spam situation. Its only since coming here and finding you helpful folks that any progress has been made.


noroad
629 posts

Ultimate Geek

Trusted

  #1648027 9-Oct-2016 15:14

ageorge:

 

Well I am the web dev. Ive established that the spam attack does not use wordpress mail client, and I assume thats why there is no detail in my wordpress cp interface, but it does seem to stop if I rename the wordpress directory. What they are using to springboard the spam I dont know, but in reply to your later comment my opinion of Flip degraded when they showed zero interest in the spam situation. Its only since coming here and finding you helpful folks that any progress has been made.

 

 

 

 

Well, I designed and built most of Flip, so Zero Interest is not quite the attention you are receiving eh....


 
 
 
 


ageorge

477 posts

Ultimate Geek


  #1648028 9-Oct-2016 15:14
Send private message

There is a setting in host CP which is called MX Entry which seems to allow re-route traffic from one domain to another.

 

If I can get that to work then I may have a chance of getting the header info.


ageorge

477 posts

Ultimate Geek


  #1648030 9-Oct-2016 15:15
Send private message

noroad:

 

 

 

Well, I designed and built most of Flip, so Zero Interest is not quite the attention you are receiving eh....

 

 

Not now, thanks!


ageorge

477 posts

Ultimate Geek


  #1648031 9-Oct-2016 15:19
Send private message

Very odd that I can rename the directory and the spam stops, name it back and it starts again. Perhaps spam source have dropped a wee script somewhere in the Wordpress installation thats doing the relay work.


freitasm
BDFL - Memuneh
68826 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  #1648039 9-Oct-2016 15:39
Send private message

I am thinking this story makes no sense. The fact you have a Flip account and access your sites from that account, plus this incoming email flood makes me think it could even be y I urge machine sending this out.





 

 

These links are referral codes

 

Geekzone broadband switch | Eletricity comparison and switch | Hatch investment (NZ$ 10 bonus if NZ$100 deposited within 30 days) | Sharesies | Mighty Ape | Backblaze | Coinbase | TheMarket | My technology disclosure


ageorge

477 posts

Ultimate Geek


  #1648043 9-Oct-2016 15:47
Send private message

freitasm: I am thinking this story makes no sense. The fact you have a Flip account and access your sites from that account, plus this incoming email flood makes me think it could even be y I urge machine sending this out.

 

Greetings sorry 'y I urge' does not make sense to me typo??

 

If you were saying it could come from here then thats not possible as Ive shut everything down at this local and while it was shut down the spam kept rolling in.


 
 
 
 


freitasm
BDFL - Memuneh
68826 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  #1648046 9-Oct-2016 15:49
Send private message

Sorry, yes typing on phone.

I think the problem is not with Flip and we do not have enough information to actually come up with a diagnose.




 

 

These links are referral codes

 

Geekzone broadband switch | Eletricity comparison and switch | Hatch investment (NZ$ 10 bonus if NZ$100 deposited within 30 days) | Sharesies | Mighty Ape | Backblaze | Coinbase | TheMarket | My technology disclosure


ageorge

477 posts

Ultimate Geek


  #1648047 9-Oct-2016 15:49
Send private message

I had another idea to use apache spam assassin and set it so the blacklist originator email address contained 'thehomenz.com' that way I was expecting it to route the spam to a spam folder but this hasnt happened - groan!


ageorge

477 posts

Ultimate Geek


  #1648054 9-Oct-2016 15:52
Send private message

Yes I think that Flip has responded belatedly well and is now showing some concern so full marks.

 

However, please leave the topic open just in case someone can give me some tips on how to actually get a header from the traffic thats passing through my site then I can let Flips gentleman know the details. After all we have established the attack is coming from Flip, so they will need to chop it off at the source when they have enough info from me.


noroad
629 posts

Ultimate Geek

Trusted

  #1648063 9-Oct-2016 16:21

ageorge:

 

Yes I think that Flip has responded belatedly well and is now showing some concern so full marks.

 

However, please leave the topic open just in case someone can give me some tips on how to actually get a header from the traffic thats passing through my site then I can let Flips gentleman know the details. After all we have established the attack is coming from Flip, so they will need to chop it off at the source when they have enough info from me.

 

 

 

 

Send me the IP of your server, at least I can look for that in the Flip logs.


yitz
1487 posts

Uber Geek


  #1648064 9-Oct-2016 16:22
Send private message

I'm so confused....can you explain what exactly are the first two entries in your screenshot?

 

 

 

 

The following error events seem to show someone has hijacked your web form script to send mail to hotmail.fr and yahoo.fr addresses.

yitz
1487 posts

Uber Geek


  #1648065 9-Oct-2016 16:23
Send private message

noroad:

Send me the IP of your server, at least I can look for that in the Flip logs.

 

Seems to be server76 dot mainpacket dot com resolves to 104.128.226.6

noroad
629 posts

Ultimate Geek

Trusted

  #1648068 9-Oct-2016 16:27

ageorge:

 

I had another idea to use apache spam assassin and set it so the blacklist originator email address contained 'thehomenz.com' that way I was expecting it to route the spam to a spam folder but this hasnt happened - groan!

 

 

 

 

ok, do you have a linux machine at home named webid.co.nz ?


ageorge

477 posts

Ultimate Geek


  #1648071 9-Oct-2016 16:31
Send private message

noroad:

 

ageorge:

 

I had another idea to use apache spam assassin and set it so the blacklist originator email address contained 'thehomenz.com' that way I was expecting it to route the spam to a spam folder but this hasnt happened - groan!

 

 

 

 

ok, do you have a linux machine at home named webid.co.nz ?

 

 

can I ring you for security reasons? or would you like to leave it till tomorrow I can live with renaming my host directory for overnight.


1 | 2 | 3 | 4
View this topic in a long page with up to 500 replies per page Create new topic





News »

Nanoleaf enhances lighting line with launch of Triangles and Mini Triangles
Posted 17-Oct-2020 20:18


Synology unveils DS16211+
Posted 17-Oct-2020 20:12


Ingram Micro introduces FootfallCam to New Zealand channel
Posted 17-Oct-2020 20:06


Dropbox adopts Virtual First working policy
Posted 17-Oct-2020 19:47


OPPO announces Reno4 Series 5G line-up in NZ
Posted 16-Oct-2020 08:52


Microsoft Highway to a Hundred expands to Asia Pacific
Posted 14-Oct-2020 09:34


Spark turns on 5G in Auckland
Posted 14-Oct-2020 09:29


AMD Launches AMD Ryzen 5000 Series Desktop Processors
Posted 9-Oct-2020 10:13


Teletrac Navman launches integrated multi-camera solution for transport and logistics industry
Posted 8-Oct-2020 10:57


Farmside hits 10,000 RBI customers
Posted 7-Oct-2020 15:32


NordVPN starts deploying colocated servers
Posted 7-Oct-2020 09:00


Google introduces Nest Wifi routers in New Zealand
Posted 7-Oct-2020 05:00


Orcon to bundle Google Nest Wifi router with new accounts
Posted 7-Oct-2020 05:00


Epay and Centrapay partner to create digital gift cards
Posted 2-Oct-2020 17:34


Inseego launches 5G MiFi M2000 mobile hotspot
Posted 2-Oct-2020 14:53









Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.