View All Products
Compute
Storage
Databases
Networking
Developer Tools
Delivery
Security
Services
Industries
Pricing
Community
Engage With Us
Community Questions Spam email from a Linode to my email account... wtf?
Log in to Ask a Question

Spam email from a Linode to my email account... wtf?

random

Got this email today from someone in Linode. Not sure where to post this or who to talk to but here it is. Also, the spam email was sent to my personal email address that isn't listed on my forum or domain record.

Delivered-To: <snip>
Received: by 10.220.73.196 with SMTP id r4cs470363vcj;
        Tue, 22 Dec 2009 14:31:56 -0800 (PST)
Received: by 10.142.250.21 with SMTP id x21mr6174126wfh.169.1261521115738;
        Tue, 22 Dec 2009 14:31:55 -0800 (PST)
Return-Path: <zoko99@li44-214.members.linode.com>
Received: from li44-214.members.linode.com (li44-214.members.linode.com [72.14.181.214])
        by mx.google.com with SMTP id 19si9547315pxi.32.2009.12.22.14.31.50;
        Tue, 22 Dec 2009 14:31:55 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of zoko99@li44-214.members.linode.com designates 72.14.181.214 as permitted sender) client-ip=72.14.181.214;
Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of zoko99@li44-214.members.linode.com designates 72.14.181.214 as permitted sender) smtp.mail=zoko99@li44-214.members.linode.com
Message-ID: <01CA8356.532158ED@li44-214.members.linode.com>
X-Priority: 3 (Normal)
Subject: ***Best price***
From: <zoko99@li44-214.members.linode.com>
Date: Tue, 22 Dec 2009 22:30:22 +0500
To: <snip>
Reply-To: <zoko99@li44-214.members.linode.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 7bit

All congratulations.

grussschinner-eck.de/wtfywn.html?</zoko99@li44-214.members.linode.com></snip></zoko99@li44-214.members.linode.com></zoko99@li44-214.members.linode.com></snip>

3 Replies

abuse (at) linode.com. generally you can find abuse addresses using the whois tool:

whois

Hah, interesting. I wonder what will this turn out to be.

On a similar and not totally irrelevant note, I use unique email addresses (aliases for my main account) for each service I register online and those I always designate as private, ie. not published, especially on forums.

Recently I received single spam message for my address that I used only, and only to register on Netbeans forums.

That can mean only one thing: insider trading. Or an SQL injection that revealed entire userbase, complete with email addresses, to some script kiddie.

Come to think of it, they use(d) same phpbb version as Linode, unless I'm totally wrong (and I probably am, I don't like or use phpbb), judging from the copyright notice (© 2001, 2005). I think that's phpBB 2.x

@Azathoth:

That can mean only one thing: insider trading. Or an SQL injection that revealed entire userbase, complete with email addresses, to some script kiddie.

I tend to use unique email addresses as well, and saw a similar thing happen to me in February. I got simultaneous spam to two accounts that I had set up for two specific online retailers. My guess is that they had the same hosting provider, and the provider was compromised.

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Log in to Reply
Community Code of Conduct