Forest Software- websites for the smaller business and charity.
Google
 

Home

Web Site Design
What we do
Domain registration
Check your domain
Our Portfolio
Ask for a quote
Terms and Conditions
Website Templates

Hosting Your Site
Our Servers
Package Deals
Terms and Conditions
MS FrontPage FAQ's

Web Site Updates
Is your site up to date?
Site Updates
Redesigning sites

Search Positioning
WebPosition Gold
Professional Positioning

Website Articles
Search Engines and -
your website
Registering Keywords
Web Crawlers and Bots
Do I need a sitemap ?
Affiliate Programmes
Increase your Click-
Thru Rate.
Launching a small business website.
What is DMOZ?
Know your customer
404 Error Pages

Other Services
M Consultancy
M Programming
M Training
Cache & M Links

Support
PC Support
MS FrontPage

Small Business Links
Legal and Finance
General Links
Virus Alerts
Business Books
PC Software
Desktop Computers
Laptop Computers
Hand Held Computers
Dell PDA's
Security Software
Advertising Products

Miscellaneous Pages

Email Forgery & SPAM
Some of our clients
What is Marketing?
Working at home
Internet Tools
Useful Links
Business Links
Local Links
Site Map

 
  Attention visitors to Forest Software!: Like us, you may be the victim of a Spammer. Towards the end of June 2003, someone began forging our domain name (forestsoftware.com). The spammer forged the From: and Reply-To: fields of his/her spam messages. The spam in question advertised adult web sites and Viagra". Update image As of the middle of September 2005 we are getting reports of this happening yet again.
 
Attention system administrators/spammer victims: I assure you, and the administrators of your ISP/domain, that we did not send you any spam email. It is very likely that the email in question was spam sent by someone who forged our email address/domain. These messages did not come from us. Someone else was forging my email address to send their SPAM. I first learned about this spammer, and the domain forgery, on the 26th June 2003. If you've received a spam message with my domain name in the From: or Reply-To: field, I'd appreciate it if you could forward me the entire message, with the full header intact. The message content and headers are essential in tracking down the individual(s) responsible for forging my email address/domain. I do not want anyone sending SPAM with my name on the message. See our contact page for contact information.
(Continued below)
Why would a spammer forge header data?: Spammers forge email header data like the From: and Reply-To: lines because they do not want to receive complaints (or complaints to their ISP). They just want your money. Unfortunately email forgery is simple and commonplace. Forgery of email header data makes it nearly impossible for the average email recipient to complain or report spam effectively. If you can't figure out who really sent you the spam, you can't get them shut down.
 
What I we are doing about it: As a company/web site administrator, you can't prevent spammers from forging your email address/domain in the spam that they send. You can't conceal your email addresses and only reveal them to trustworthy individuals. Your clients, visitors, and friends need to be able to contact you. All you can do is react when a spammer forges your name/domain on a piece of spam.
I am doing my best to figure out who is forging my domain/email address. I have contacted several ISP's, and system administrators in an effort to find out who was forging my domain/email address. I know how to detect header forgery, how to de-obfuscate encoded URL's, and how to track ISP/web host contact information. I used all the skills at my disposal, to track down the guilty party, and in the end, hope to determine who is responsible for this forgery and identity theft.
More specifically;
  1. I notified the system admins of AOL and other large ISP's. I didn't want Forest Software blocked, because of complaints from people who didn't realize that the spammer was forging my domain/email address.
  2. I have published this explanation, describing the circumstances surrounding the incident. That way annoyed spam recipients that come to my web site will understand what happened, and that we were not responsible for the spam message(s) he/she received.
  3. I am collecting evidence (printed and electronic copies of complete emails, including all headers) in case it becomes necessary, to either pursue the spammer through the courts, or convince a sceptic that I didn't send the spam.
I currently have documented evidence of at least seventy eight instances where this spammer forged our domain on an email address.
 
How can you be sure I wasn't responsible for the spam?: Every email sent over the internet contains information called header data. Some of that header data can be forged, some of it cannot. Spammers typically forge a large percentage of their header data. If you receive/have received an email (allegedly from me), I encourage you to examine the full headers. Most email clients (Software) have a 'show full headers' feature/capability. Examine the IP addresses in the header, you will likely find that much of the data is forged, and you will also find that the header data does not point back to us or our mail server(s). If you are unsure how to read/interpret the header data, I encourage you to do a little research. You can start by reading a brief tutorial on header data.
 
So what should you do with this spam?: If you've received some of this spammers email. I'd ask you to do two things. First, send an abuse report via email, to the ISP that relayed the email to your email server/service. I guarantee it's not my email server/service. Secondly, send a copy to me. Please be sure to include the full header and mark the subject to include the words 'forged spam'. As I stated earlier; the message content and headers are essential in tracking down the individual(s) responsible for forging my email address/domain, and sending the spam.
 
What should you do about spam in general?: The simplest thing to do is just delete it. Replying directly to the forged From: or Reply-To: address is ineffective, as either (a) the From: or Reply-To: addresses are forged, or (b) your email address will be used to harvest a list of 'Working email addresses', which the spammer can use to optimize his or her operations, or sell to other spammers.
What else?;
  1. Try to avoid loading spam in an HTML capable email client which automatically loads images. Spammers often encode your email address in the URL used to retrieve those images. By examining their web server logs, they can determine if you received the email, and whether you read it.
  2. For the same reason, don't click on any links in the email. Doing so will only confirm your email address as 'Live prey'!
  3. If you want to do some detective work, look at SamSpade.org ( who have a very good downloadable tool) or the UXN Spam combat page, both of which have a collection of online tools for deciphering URLs, tracing website ownership, and researching ISP contact information. But be careful! It's all too easy to point the finger at the wrong person. Spammers try to cover their tracks, and more than one of the email headers will typically be forged.
  4. And obviously, never buy anything from a spammer. You don't really think your credit information is safe with somebody who forges emails for a living, do you?
 
Authentication and Identification: How do you know we are who we say we are? When communicating via email,we take several measures to authenticate and identify myself. These measures can easily be detected in my email headers, and are extremely difficult to forge. I doubt any spammer would go through the trouble of trying. If you receive an email which is allegedly from us, but doubt it's authenticity, I urge you to forward a copy to us. For information on how to contact Forest Software Ltd, please see our contact page.
 

A portion of the material above is quoted/adapted (with permission) from a web page posted by Robert L Vaessen. He had a similar experience with a spammer.

Free MailWasher Pro download

 

John Mitchell T/A Forest Software
9 Pembroke Grove, Glinton, Peterborough, Cambridgeshire, PE6 7LG
Tel : +44 (0)870 747 4943       Skype Handle : john-glinton