Harvesting email addresses

Forum Moderators: mack

Message Too Old, No Replies

Harvesting email addresses

mightymid

8:48 pm on Sep 12, 2003 (gmt 0)

When those nasty email harvesting types go hunting for email addresses to spam, what exactly are they looking for?

Are they looking for the anchor tag with "mailto:address@nospam.com"?

Or are they simply looking for any string of text that might resemble an email address?

(Did that make any sense?)

thanks,
midori

Yidaki

9:37 pm on Sep 12, 2003 (gmt 0)

Yes, they simply look for any string that looks like a email adress. They even record typos, html messed email adresses etc.

Btw: do you know this trick?:
You can catch the harvesters and match them with the actual spammers pretty easy if you put a generic code on your pages like (using SSI, php or whatever):

<a href="mailto:Trap-RequestIP-Date-Time@example.com">dontclick</a>

and then watch all email that goes to this email adress (sure, you have to set up a email account for it - using wildcards Trap*@example.com.) If you receive a message, just look at your logs who hit your pages at the date and the time using the ip that is coded into the spam trap generated email adress and you can match sender with harvester or at least know "the source" of the spammed adress list. ;)

mightymid

3:09 pm on Sep 16, 2003 (gmt 0)

Hey, that's a pretty cool trick! Thanks!

mightymid

3:25 pm on Sep 16, 2003 (gmt 0)

Here's a follow-up question...

I've read that one of the ways to obscure an email address is to write it out in numeric code, like so:

example@domain.com

(that's example@domain.com)

Are there bots out there, though, that are capable of "decoding" this?

Dreamquick

3:41 pm on Sep 16, 2003 (gmt 0)

Are there bots out there, though, that are capable of "decoding" this?

Yes, I'd wager there are plenty - I saw one a while ago while testing an anti-harvesting script of my own, and that's just off-the-shelf stuff... I imagine they get a lot more advanced if you actually knew where to look / who to ask.

That said there aren't that many - decoding adds complexity and slows through-put, and lots of the "bargain basement" products pride themselves on their throughput, also another reason for not including this in low-end products is that sending to munged addresses will probably result in a lot more complaints that normal.

Does it work? Yes most of the time. It using it a good idea? No not really, if you want to be spam-free that badly then use a response form or something similar - munging relies on security through obscurity which is never a good thing.

- Tony

g1smd

12:41 am on Sep 17, 2003 (gmt 0)

Use javascript in an external file to document.write the email link, from fragments that the JS then reconstructs, or use an email form on the page.

See the similar thread to this one, from a couple of months back, for more ideas.