[issue32177] spammers mine emails from bugs.python.org
Jörn Hees
report at bugs.python.org
Thu Nov 30 04:45:54 EST 2017
Jörn Hees <nrej9TyO at joernhees.de> added the comment:
oh, how convenient... as a logged in user i can just see every other user's email... but there's more, I can just go to https://bugs.python.org/user?@startwith=0&@pagesize=30000&@sort=username and see all "obfuscated" emails. A low hanging fruits approach very likely will return most of the real emails:
'.'.join(s.split()[:-1]) + '@' + s.split()[-1] + '.com'
Let me provide you with a preliminary free analysis of the 50 most frequent email domains of all 21803 users on bugs.python.org:
10554, "gmail"
3663, "sourceforge"
411, "yahoo"
179, "googlemail"
176, "co" # low hanging fruits as i said
167, "gmx"
98, "hotmail"
92, "com" # low hanging fruits as i said
81, "google"
69, "163"
62, "redhat"
57, "mail"
51, "ac"
51, "me"
50, "web"
43, "free"
41, "mit"
41, "qq"
40, "org"
33, "iki"
30, "yandex"
28, "python"
25, "comcast"
25, "edu"
25, "pobox"
23, "id"
22, "ibm"
21, "acm"
21, "fastmail"
20, "live"
19, "mac"
18, "mailinator"
18, "net"
17, "126"
17, "gentoo"
17, "seznam"
16, "protonmail"
15, "aol"
15, "intel"
14, "debian"
13, "canonical"
13, "email"
13, "laposte"
12, "inbox"
12, "ubuntu"
12, "verizon"
12, "xs4all"
11, "icloud"
11, "ieee"
11, "posteo"
Please make this a bit harder!
----------
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue32177>
_______________________________________
More information about the Python-bugs-list
mailing list