From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from localhost (localhost [127.0.0.1]) by arlo.cworth.org (Postfix) with ESMTP id 403836DE1003 for ; Thu, 3 Mar 2016 09:52:07 -0800 (PST) X-Virus-Scanned: Debian amavisd-new at cworth.org X-Spam-Flag: NO X-Spam-Score: -0.035 X-Spam-Level: X-Spam-Status: No, score=-0.035 tagged_above=-999 required=5 tests=[AWL=-0.024, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=disabled Received: from arlo.cworth.org ([127.0.0.1]) by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q0f0yiN7tL_x for ; Thu, 3 Mar 2016 09:52:05 -0800 (PST) Received: from fethera.tethera.net (fethera.tethera.net [198.245.60.197]) by arlo.cworth.org (Postfix) with ESMTPS id 1F12B6DE014A for ; Thu, 3 Mar 2016 09:52:04 -0800 (PST) Received: from remotemail by fethera.tethera.net with local (Exim 4.84) (envelope-from ) id 1abXQU-00028E-MJ; Thu, 03 Mar 2016 12:52:38 -0500 Received: (nullmailer pid 2937 invoked by uid 1000); Thu, 03 Mar 2016 17:51:56 -0000 From: David Bremner To: Johnny Utahh , notmuch@notmuchmail.org Subject: Re: Stolen email list? In-Reply-To: <56D86143.6040205@johnnyutahh.com> References: <56D86143.6040205@johnnyutahh.com> User-Agent: Notmuch/0.21+5~gca076ce (http://notmuchmail.org) Emacs/24.4.1 (x86_64-pc-linux-gnu) Date: Thu, 03 Mar 2016 13:51:56 -0400 Message-ID: <87k2ljwitf.fsf@tesseract.cs.unb.ca> MIME-Version: 1.0 Content-Type: text/plain X-BeenThere: notmuch@notmuchmail.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Mar 2016 17:52:07 -0000 Johnny Utahh writes: > I recently received email sent to my notmuch-based email address that > was clearly spam. I suspect that notmuch@notmuchmail.org email-address > list may have been stolen. If you're not already aware. I'm not aware of any such event. I've CC'd Carl, who runs the lists. If you have e.g. message-ids of suspect messages, that would potentially let others on the list check if they had also received them. I suppose a motivated spammer could scrape the pipermail pages; the obfuscation there is not exactly difficult to reverse. d