unofficial mirror of notmuch@notmuchmail.org
 help / color / mirror / code / Atom feed
* Stolen email list?
@ 2016-03-03 16:07 Johnny Utahh
  2016-03-03 17:51 ` David Bremner
  0 siblings, 1 reply; 3+ messages in thread
From: Johnny Utahh @ 2016-03-03 16:07 UTC (permalink / raw)
  To: notmuch

I recently received email sent to my notmuch-based email address that 
was clearly spam. I suspect that notmuch@notmuchmail.org email-address 
list may have been stolen. If you're not already aware.

~Johnny

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: Stolen email list?
  2016-03-03 16:07 Stolen email list? Johnny Utahh
@ 2016-03-03 17:51 ` David Bremner
  2016-03-03 20:28   ` Carl Worth
  0 siblings, 1 reply; 3+ messages in thread
From: David Bremner @ 2016-03-03 17:51 UTC (permalink / raw)
  To: Johnny Utahh, notmuch

Johnny Utahh <notmuchmail.org@johnnyutahh.com> writes:

> I recently received email sent to my notmuch-based email address that 
> was clearly spam. I suspect that notmuch@notmuchmail.org email-address 
> list may have been stolen. If you're not already aware.

I'm not aware of any such event. I've CC'd Carl, who runs the lists.

If you have e.g. message-ids of suspect messages, that would potentially
let others on the list check if they had also received them.

I suppose a motivated spammer could scrape the pipermail pages; the
obfuscation there is not exactly difficult to reverse.

d

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: Stolen email list?
  2016-03-03 17:51 ` David Bremner
@ 2016-03-03 20:28   ` Carl Worth
  0 siblings, 0 replies; 3+ messages in thread
From: Carl Worth @ 2016-03-03 20:28 UTC (permalink / raw)
  To: David Bremner, Johnny Utahh, notmuch

[-- Attachment #1: Type: text/plain, Size: 669 bytes --]

On Thu, Mar 03 2016, David Bremner wrote:
> Johnny Utahh <notmuchmail.org@johnnyutahh.com> writes:
>
>> I recently received email sent to my notmuch-based email address that 
>> was clearly spam. I suspect that notmuch@notmuchmail.org email-address 
>> list may have been stolen. If you're not already aware.
>
> I'm not aware of any such event. I've CC'd Carl, who runs the lists.

I'm certainly not aware of anything either.

But I'd be happy to investigate anything I can, (if you have data to
point me to where to look).

In the meantime, if the list was leaked, are there any mitigating steps
you would recommend we perform at this point?

-Carl

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 818 bytes --]

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2016-03-03 20:28 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2016-03-03 16:07 Stolen email list? Johnny Utahh
2016-03-03 17:51 ` David Bremner
2016-03-03 20:28   ` Carl Worth

Code repositories for project(s) associated with this public inbox

	https://yhetil.org/notmuch.git/

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).