Relay for spam?

Jordon Bedwell jordon at envygeeks.com
Wed May 18 20:31:53 UTC 2011 

On 5/18/2011 2:31 PM, Bill Stanley wrote:
> I did check with my ISP and they checked the emails sent from my email 
> account and they said they found nothing was unusual.  It obviously was 
> a hoax and the attachment, that I never saw was probably deleted by the 
> ISP, was probably booby trapped hoping that I opened the attachment and 
> this computer was a Windoze machine.
> 
> To answer your questions...
> 1   I use Wowway as my ISP.
> 2.  I do not have a fixed IP number (The ISP probably uses NAT.
> 3.  I have a couple email addresses associated with this ISP accounts
>      The email address I use for personal emails is not affected so I
>      suspect someone is spoofing the email address that I use on this
>      forum.
> 3.  The email client I use is Thunderbird.

They don't use a NAT they use DHCP:
http://whois.arin.net/rest/customer/C02136802

Most American ISPs do not allow non-commercial customers to have static
IP's and if they do, they have an overly excessive price for it (for
example between $70 a month and [I've seen it go as much as] $280 a
month) to try and keep customers from wanting to get one, because it
reduces the pool and now that there is really no pool at all some ISPs
are just flat out saying no until they get IPv6 enabled because once
they got IPv6 they'll most likely assign you to a static address.

It doesn't matter if you have static or dynamic anyways, they retain
records (most of the time for 6-18 months) of which IP was assigned to
which MAC at which time and for how long.

That said, any email you assume is official, make sure to check the
headers on.  Every email that comes in that we assume is official, we
always make sure to check the headers that way you can see if there is a
suspicious IP, and you think there is, drop by ARIN and do a whois, ARIN
whois will also point you to out of country IP whois if they don't
control the IP.

EXP: I've gotten an email from my ISP (Cox) before after checking out
the headers, I quickly started to wonder when Cox expanded into China
and if they did, why they would waste the bandwidth sending the email
from China when there is a data centre right down the road from me...

More information about the ubuntu-users mailing list