PDA

View Full Version : Need email address.



goodbasil
12-19-2009, 04:54 PM
Who can I email about this forum? I gots an idea. Carl doesn't really have much to do with it, does he? Scott is not here. Who then?

Thanks, DN

S/V Laura Ellen
12-19-2009, 05:00 PM
Who can I email about this forum? I gots an idea. Carl doesn't really have much to do with it, does he? Scott is not here. Who then?

Thanks, DN

So what's the idea?

IIRC try scot at woodenboat dot com

botebum
12-19-2009, 05:11 PM
The address used to notify me that my ban had been lifted was wbfadminatsymbolwoodenboat.com and it was signed "Scot".

Doug

BarnacleGrim
12-19-2009, 05:20 PM
You guys realise you are opening the floodgates of spam to those two addresses by posting them in clear text?

botebum
12-19-2009, 05:31 PM
Good point. Fixed it.

Doug

Paul Pless
12-19-2009, 07:22 PM
You guys realise you are opening the floodgates of spam to those two addresses by posting them in clear text?its already posted in clear text on the woodenboat home page

S/V Laura Ellen
12-19-2009, 07:30 PM
its already posted in clear text on the woodenboat home page

Actually it isn't, If you bring up the web page and look at the source (what is down loaded to the browser), you'll find that there is a script used to hide the actual addresses (the src="js/matt.js") part. Yes, I know, I used Matt's as an example.



<br />
<strong>Editorial:</strong> Matt Murphy,
<script type="text/javascript" src="js/matt.js"></script>
<br />

Uncle Duke
12-19-2009, 08:12 PM
http://woodenboat.com/contact-us.php
Kinda looks like plain text to me....;)

S/V Laura Ellen
12-19-2009, 09:06 PM
http://woodenboat.com/contact-us.php
Kinda looks like plain text to me....;)


Use the browser to show the source, what is actually sent is a script, the script when run on your PC then displays the address in plain text. Since the address isn't in clear text until it's displayed, the bots have a hard time intercepting the address.

Here is is a snippet of what is sent to your PC:

<h4><em>WoodenBoat</em> Magazine</h4>
<p><strong>Publisher:</strong> Carl Cramer,
<script type="text/javascript" src="js/carlwb.js (http://www.woodenboat.com/forum/view-source:http://woodenboat.com/js/carlwb.js)"></script>
<br />
<strong>Editorial:</strong> Matt Murphy,
<script type="text/javascript" src="js/matt.js (http://www.woodenboat.com/forum/view-source:http://woodenboat.com/js/matt.js)"></script>
<br />
<strong>Research Library:</strong>
<script type="text/javascript" src="js/wblibrary.js (http://www.woodenboat.com/forum/view-source:http://woodenboat.com/js/wblibrary.js)"></script>
<br />

the js/matt.js is the address

BarnacleGrim
12-19-2009, 09:24 PM
I don't know if it happens in practice, but it should be a simple enough for spammers to decode that script. A picture would be better, the day they OCR every picture on the net looking for email addresses they would be very desperate. There's also http://mailhide.recaptcha.net/

It would be interesting to know how sophisticated these email spiders really are.

S/V Laura Ellen
12-19-2009, 09:33 PM
I don't know if it happens in practice, but it should be a simple enough for spammers to decode that script. A picture would be better, the day they OCR every picture on the net looking for email addresses they would be very desperate. There's also http://mailhide.recaptcha.net/

It would be interesting to know how sophisticated these email spiders really are.

First they would have to know it was an address, then they would have to run the script and capture the address. This is more than most bots can do.

The idea of using a picture has a flaw because to have the "click to link to e-mail" you would need to send the <a> scripts whick would contain the reference URL (e-mail address).

The way Woodenboat is doing it seems to be relatively state of the art (someone knows what they are doing).

The bots seem to be able to break some of the captcha being used these days by using OCR (some of these are very advanced), this works for them because its obvious whats captcha in the source. The way Woodenboat is doing it also has some security by obscurity, its hard to tell what is an e-mail address by looking at the source.

The mailhide.recaptcha is a good idea, but I'm afraid it would be too much for most people, there is a fine line on this balancing act between security and ease of use for your viewers. I screw up getting the right answer an good captcha about half the time.

S/V Laura Ellen
12-19-2009, 09:53 PM
Spam is a very large issue these days. Most corporations are plagued with up to 80% of the mail received classed as spam.

The only way to overcome the problem is for all ISPs to:


block SMTP traffic from leaving their network
allow only authenticated users from connecting to their SMTP servers
require good authentication