Spam team report, ~fenics-authors

Asked by Andrew Starr-Bochicchio on 2011-04-25

A launchpad list I moderate just received spam from the ~fenics-authors team. It seems like a legit team, with active members and an active mailing list.

Subject: "*.YOUR BLOOD WILL BOIL AGAIN!.*"
From: "Sildenafil.co.uk" <email address hidden> (fenics-authors)
Date: 2011-04-25 02:45:06+00:00
Message-ID: <email address hidden>

Cialis is an indication of true [...]
machohttp://enjxpills.ru/?zZ=4BjwxG4j

Hello Andrew Starr-Bochicchio,

GNOME-Colors Packagers has a new message requiring your approval.

   Subject: "*.YOUR BLOOD WILL BOIL AGAIN!.*"
   Author name: FEniCS Book Authors
   Author url: https://launchpad.net/~fenics-authors
   Date: 2011-04-25 02:45:06+00:00
   Message-ID: <email address hidden>

A message has been posted to the mailing list for your team, but this
message requires your approval before it will be sent to the list
members. After reviewing the message, you may approve, discard or
reject it.

To review all messages pending approval, visit:

   https://launchpad.net/~gnome-colors-packagers/+mailinglist-moderate

Regards,
The Launchpad team

Question information

Language:
English Edit question
Status:
Solved
For:
Launchpad itself Edit question
Assignee:
No assignee Edit question
Solved by:
Curtis Hovey
Solved:
2011-04-25
Last query:
2011-04-25
Last reply:
2011-04-25
Aaron Bentley (abentley) said : #1

If that team has started spamming, I believe we can disable it. However, the message may be a forgery, and the message-id suggests that it is a forgery. Can you post the full headers please, so that we can assess whether it is forged?

I rejected it in the moderation queue, so I never actually got the full headers.

Feel free to close this if there is nothing further. I just wanted to bring it to attention.

Best Curtis Hovey (sinzui) said : #3

The message is a forgery. We cannot disable the team, nor do we want to. The underling issue is a bad isLaunchpadUser() check in the mailing list rules. The email address is indeed valid, but emails are sent by users, not groups of users. The fix will be to ensure the email address belongs to a user, not a team.

Thanks Curtis Hovey, that solved my question.