edhelaslooks like I'll have to put some more servers on the blacklist
Licaon_Kteredhelas: did you contact the admins?
Licaon_Kteredhelas: and the spam continued because they did nothing so off to the ban list? Hmmm
edhelasfor now I just contacted them
edhelasbut if I still have spam
edhelasthen it's blacklist yes
Ge0rGI've got a spam escalation process of:
1. try to contact server admin (XEP-0157, website), wait up to a week
2. contact the server IP abuse department, wait up to two weeks
3. blacklist the server (not yet implemented)
Ge0rGAlso an internal spam tracking tool
Ge0rGit's not perfect yet, but it allows tracking progress of the domain and IP admins.
Ge0rGAlso could somebody please report 0nl1ne.cc and blackjabber.cc to leaseweb abuse, because they are only forwarding my reports to the server owners instead of shutting the f***ing spam boxes down.
edhelasblackjabber.cc is blacklisted
Ge0rGedhelas: according to the Manifesto, I'd like to maintain a common and public list of blacklisted domains, including at least a reference to the previous escalation process
edhelasis this list somewhere ?
edhelasthe issue about exposing that list is that the spammers can easily know how to circumvent it :)
Ge0rGedhelas: circumvent it by... going to other unmaintained IBR-enabled servers?
Link Mauveedhelas, I meant spammy IBR registrations, not spam from other servers.
Ge0rGLink Mauve: what's the difference?
Link MauveEven though the former is probably the first step to the latter.
Link MauveGe0rG, one happens on my server and I can block it immediately, the other will go on for years.
Ge0rGLink Mauve: just put your own domain on the blocklist. All problems solved.
edhelasIBR registration is just not a good idea to me anymore
edhelasnot without at least a captcha or something like that
Link Mauveedhelas, CAPTCHA doesn’t do anything.
Link MauveWe didn’t have fewer successful account creation before we disabled it.
Link MauveAnd as a user it’s painful for no benefit.
Link Mauve(Except to Google.)
edhelasI'm wondering if in the process of checking if a server is "spam risky" or not, having IBR enabled would not lower the score automatically
Ge0rGedhelas: I run an IBR server and have got zero spam bot registrations in the last three months or so, because I'm preventing most spam delivery
Link MauveThey don’t seem to know that about my server.