-
edhelas
spam spam spamm
-
ThurahT
yeah, my jabber.org account is set to deny all but contacts in roster now. It has really picked up the last two weeks.
-
ThurahT
never knew there were so many servers out there. Or at least domains.
-
Ge0rG
ThurahT: hard to find new contacts this way, though
-
mrDoctorWho
I thought the jabber spam era has ended years ago
-
Ge0rG
mrDoctorWho: there is a new spam era now
-
mrDoctorWho
I wonder what they're trying to achieve
-
Ge0rG
run by a bunch of Russian spammers, advertising for illegal services, credit card dumps and drugs
-
mrDoctorWho
Oh, yes indeed, now I remember
-
mrDoctorWho
I had a jid on jabber.ru and I was receiving such spam too
-
ThurahT
Ge0rG: I got movim for that : )
-
Ge0rG
just in: message from user763@pvpctutorials.de/nfWTmyU, body contains "Качественная рассылка по jabber // jabber advertising // https://pastebin.com/raw/hHmFT5Xh"
-
edhelas
ThurahT Movim is not spamming, we are just mining BTC and transfering them directly to our wallet :)
-
ThurahT
I approve
-
mrDoctorWho
Back in the days, when spam usually didn't come out of chatrooms, most of them had their ban lists full of servers with open registration
-
ThurahT
: )
-
Ge0rG
send a jabber message to 250k contacts for only 20$ in BTC
-
Ge0rG
or two-hours XMPP flood for only 10$
-
edhelas
I'm wondering if we could define together rules to allow S2S
-
Ge0rG
I really need a way to inject subscription-rejections based on that
-
Ge0rG
MattJ: please? :D
-
edhelas
because a bunch of those servers doesn't seems legit by just having a look at the domain
-
Ge0rG
edhelas: I'm pretty sure those are just semi-abandoned IBR servers.
-
edhelas
not sure
-
Ge0rG
spam from='helpdesk@freiebaptisten.de/312425043290271873351426'. What. The. Fun.
-
edhelas
they maybe have a script to create domains on the fly, put a letsencrypt certificate and boom
-
Ge0rG
edhelas: yeah sure.
-
Ge0rG
or they just spam IBR domains.
-
edhelas
you have a fully legit XMPP server
-
edhelas
I think that IBR should be deprecated
-
Ge0rG
edhelas: let's just deprecate XMPP altogether. We don't need new users, and neither existing ones
-
edhelas
true
-
Ge0rG
the problem isn't IBR, the problem is unlimited IBR and abandoned servers
-
Ge0rG
from='lessie@paranoid.scarab.name/7PC0mmOf'
-
mrDoctorWho
edhelas: such spam would be non-profitable
-
Ge0rG
also dumb default configurations
-
Ge0rG
from='redirect485@xjabber.org/KwdwovgL' from='info847@legalize.li/2fo6m' from='user173@jabber.tanjeff.net/lXqCN9'
-
mrDoctorWho
Such interesting names
-
Ge0rG
If only the XSF had a spam fighting taskforce.
-
Ge0rG
Then I could write it down once and not repeat myself every week.
-
mrDoctorWho
There is project Providence, but it it's seems abandoned and I don't think it even works
-
edhelas
I'm afraid of spam on pubsub as well
-
edhelas
I'll restrict publication on my pubsub services from my own xmpp accounts only if it appears
-
Ge0rG
Agenda items: 1) disable IBR by default, make sure that private servers have better means, and that for public servers there are appropriate limits in place 2) create automated ways to notify admins of abuse on their servers 3) implement server-side modules that track a remote domain's reputation, maybe even with an export/import feature to share insights with friends. Use that to block old unmaintained IBR servers
-
Ge0rG
from='dollar345@sweetway.info/rzXaiIQ'
-
mrDoctorWho
Ge0rG: the #3 sounds centralized
-
Ge0rG
mrDoctorWho: federated, not centralized.
-
Ge0rG
mrDoctorWho: like, I trust the admins of xmpp.org and of conversations.im, so I can share my stats with them
-
mrDoctorWho
Hmm, makes sense
-
Ge0rG
from='paliyvadim@simple-systems.ru/3418065207151241907771167'
-
Ge0rG
From that last domain, I had ten different accounts contact yax.im users in the last 10 days
-
zuglufttier
I kind of like the idea of a federated blacklist but the whole "web of trust" idea does not really work...
-
Ge0rG
zuglufttier: I think it depends on the abstraction level
-
Ge0rG
zuglufttier: have a look at email spam RBLs
-
zuglufttier
Still, how do I get off that blacklist?
-
edhelas
create a new random domain
-
zuglufttier
That's what a spammer would do ;)
-
Holger
gmail.com immediately responds to my server's stream header with <not-authorized/>. Are they finally closing down s2s?
-
Zash
Yes!
-
Holger
So others noticed this already? Or is there even some public info?
-
Zash
Yesterday(?) in the prosody room
-
Holger
Ah, thanks.