[Operators] buycc.me spam domain

Peter Saint-Andre - &yet peter at andyet.net
Wed May 13 23:04:19 UTC 2015


OK it looks like we're going to be playing a game of whackamole here. 
I'm now receiving very similar spam from validcc-notifier.su

I note that both of these servers use self-signed certificates...

Peter

On 5/13/15 9:07 AM, Peter Saint-Andre - &yet wrote:
> Yes, I just installed mod_host_guard on my personal server. Works great.
>
> Peter
>
> On 5/13/15 8:04 AM, Thomas Camaran wrote:
>> can i use this
>> https://code.google.com/p/prosody-modules/wiki/mod_host_guard also
>>
>> 2015-05-13 15:58 GMT+02:00 Jan Pinkas <pinkas at humboldtec.cz
>> <mailto:pinkas at humboldtec.cz>>:
>>
>>     Hi Thomas,
>>     thanks to s2s dialback this solution works for Prosody too. But i
>>     dont know, if Prosody resolve by default via hosts file and if
>>     Prosody have any type of s2s cache...
>>
>>     2015-05-13 15:55 GMT+02:00 Thomas Camaran <camaran at gmail.com
>>     <mailto:camaran at gmail.com>>:
>>
>>         for prosody there is a solution?
>>
>>         2015-05-13 15:38 GMT+02:00 Jan Pinkas <pinkas at humboldtec.cz
>>         <mailto:pinkas at humboldtec.cz>>:
>>
>>             Hi all.
>>             Solution for ejabberd:
>>             nano /etc/hosts
>>             add 127.0.0.5 buycc.me <http://buycc.me>
>>             save and ejabberdctl debug, mnesia:clear_table(s2s), ctrl-c,
>>             ctrl-c.
>>
>>             Have a nice day. pinky
>>
>>             2015-05-13 15:08 GMT+02:00 Peter Saint-Andre - &yet
>>             <peter at andyet.net <mailto:peter at andyet.net>>:
>>
>>                 As far as I can determine, buycc.me <http://buycc.me> is
>>                 a spam domain, sending unwanted messages only from the
>>                 cvv.me at buycc.me <mailto:cvv.me at buycc.me> JID.
>>
>>                 Peter
>>
>>




More information about the Operators mailing list