"Email Scams" from Bugzilla? - Mozilla

This is a discussion on "Email Scams" from Bugzilla? - Mozilla ; Symptom: Recently I've been seeing the banner "Thunderbird thinks that this is an email scam" on some of my bugmail from bugzilla-daemon -at- mozilla.org. It seems that all such "false positives" had https://127.0.0.1/ in the text. Questions: 1. Does anyone ...

+ Reply to Thread
Results 1 to 6 of 6

Thread: "Email Scams" from Bugzilla?

  1. "Email Scams" from Bugzilla?

    Symptom:
    Recently I've been seeing the banner "Thunderbird thinks that this is an email
    scam" on some of my bugmail from bugzilla-daemon -at- mozilla.org. It seems
    that all such "false positives" had https://127.0.0.1/ in the text.

    Questions:
    1. Does anyone else see it too?
    2. Is it possible to tell Thunderbird that "this is not a scam" by means of a
    filter? (My bugmail is already filtered to get into a separate folder and be
    marked as "Not junk".)


    Best regards,
    Tony.
    --
    Real Programmers think better when playing Adventure or Rogue.

  2. Re: "Email Scams" from Bugzilla?

    Tony Mechelynck wrote:
    > Symptom: Recently I've been seeing the banner "Thunderbird thinks
    > that this is an email scam" on some of my bugmail from
    > bugzilla-daemon -at- mozilla.org. It seems that all such "false
    > positives" had https://127.0.0.1/ in the text.
    >
    > Questions: 1. Does anyone else see it too?


    I can't confirm it as i disabled that option long ago.

    > 2. Is it possible to tell Thunderbird that "this is not a scam" by
    > means of a filter? (My bugmail is already filtered to get into a
    > separate folder and be marked as "Not junk".)


    Sorry if it fails to work.
    As TB is marking message as Scam , so i believe it also set
    'X-Mozilla-Status' to some predefined/fixed value.
    You can create filter on that header to mark it as not Junk . But again
    I'm not
    sure if 'mark as not Junk' will have any effect on 'Scam' message.


  3. Re: "Email Scams" from Bugzilla?

    Nir wrote:
    > Tony Mechelynck wrote:
    >> Symptom: Recently I've been seeing the banner "Thunderbird thinks that
    >> this is an email scam" on some of my bugmail from bugzilla-daemon -at-
    >> mozilla.org. It seems that all such "false positives" had
    >> https://127.0.0.1/ in the text.
    >>
    >> Questions: 1. Does anyone else see it too?

    >
    > I can't confirm it as i disabled that option long ago.
    >
    >> 2. Is it possible to tell Thunderbird that "this is not a scam" by
    >> means of a filter? (My bugmail is already filtered to get into a
    >> separate folder and be marked as "Not junk".)

    >
    > Sorry if it fails to work.
    > As TB is marking message as Scam , so i believe it also set
    > 'X-Mozilla-Status' to some predefined/fixed value.
    > You can create filter on that header to mark it as not Junk . But again
    > I'm not
    > sure if 'mark as not Junk' will have any effect on 'Scam' message.
    >


    I recall reading that the scam detector works off DNS/IP mismatches and is
    not a trainable detector.

    --
    Ron K.

  4. Re: "Email Scams" from Bugzilla?

    Nir wrote:
    > Tony Mechelynck wrote:
    >> Symptom: Recently I've been seeing the banner "Thunderbird thinks that
    >> this is an email scam" on some of my bugmail from bugzilla-daemon -at-
    >> mozilla.org. It seems that all such "false positives" had
    >> https://127.0.0.1/ in the text.
    >>
    >> Questions: 1. Does anyone else see it too?

    >
    > I can't confirm it as i disabled that option long ago.
    >
    >> 2. Is it possible to tell Thunderbird that "this is not a scam" by
    >> means of a filter? (My bugmail is already filtered to get into a
    >> separate folder and be marked as "Not junk".)

    >
    > Sorry if it fails to work.
    > As TB is marking message as Scam , so i believe it also set
    > 'X-Mozilla-Status' to some predefined/fixed value.
    > You can create filter on that header to mark it as not Junk . But again
    > I'm not
    > sure if 'mark as not Junk' will have any effect on 'Scam' message.
    >


    It doesn't. Anything from bugzilla-daemon -at- mozilla.org is already marked
    as "not junk" by my existing filters, as I said in the ending parenthese of #2
    above. Some of that "nonjunk" mail is still marked as "scam" by Thunderbird,
    as if it were a phishing attempt. (A link to 127.0.0.1 means something on my
    own computer, and if I have a malware HTTPS server on my own computer I should
    have all kinds of other problems anyway. Not that I would click that kind of
    link.)


    Best regards,
    Tony.
    --
    Tact, n.:
    The unsaid part of what you're thinking.

  5. Re: "Email Scams" from Bugzilla?

    Tony Mechelynck wrote:
    > Ron K. wrote:
    >> Nir wrote:
    >>> Tony Mechelynck wrote:
    >>>> Symptom: Recently I've been seeing the banner "Thunderbird thinks
    >>>> that this is an email scam" on some of my bugmail from
    >>>> bugzilla-daemon -at- mozilla.org. It seems that all such "false
    >>>> positives" had https://127.0.0.1/ in the text.
    >>>>
    >>>> Questions: 1. Does anyone else see it too?
    >>>
    >>> I can't confirm it as i disabled that option long ago.
    >>>
    >>>> 2. Is it possible to tell Thunderbird that "this is not a scam" by
    >>>> means of a filter? (My bugmail is already filtered to get into a
    >>>> separate folder and be marked as "Not junk".)
    >>>
    >>> Sorry if it fails to work.
    >>> As TB is marking message as Scam , so i believe it also set
    >>> 'X-Mozilla-Status' to some predefined/fixed value.
    >>> You can create filter on that header to mark it as not Junk . But
    >>> again I'm not
    >>> sure if 'mark as not Junk' will have any effect on 'Scam' message.
    >>>

    >>
    >> I recall reading that the scam detector works off DNS/IP mismatches
    >> and is not a trainable detector.
    >>

    >
    > Maybe it can't be trained, but it can be overridden: after opening an
    > email, I can click the button "This is not a scam" near top right. If it
    > can be overridden manually (by a mouse click), why couldn't it be
    > overridden programmatically (by a filter)? Or would that make our
    > paranoid Security gurus throw an epileptic fit?
    >
    >
    > Best regards,
    > Tony.


    The answer to filtering is the backend code would need revision to expose
    the output of the "Scam" code to processing by the filtering code. A
    Bugzilla RFE would be in order for that.

    --
    Ron K.

  6. Re: "Email Scams" from Bugzilla?

    Ron K. wrote:
    [...]
    > The answer to filtering is the backend code would need revision to
    > expose the output of the "Scam" code to processing by the filtering
    > code. A Bugzilla RFE would be in order for that.
    >


    I don't want to "test" if scam but to "tell" Tb that it isn't. I have just
    opened an RFE: https://bugzilla.mozilla.org/show_bug.cgi?id=398875


    Best regards,
    Tony.
    --
    Darth Vader sleeps with a Teddywookie.

+ Reply to Thread