Tweet
Hi, just registered with the site. Long time reader though, great site.
Today, a couple days after registering, before I've even posted, I received a spam email:
It appears to violate the CAN-SPAM act by not including a physical postal address, and probably other ways. And even if it wasn't illegal, reputable businesses don't send spam email. It looks like they want money to "crowdfund" a handgun booksafe of some kind, so I'm assuming it's just a flat-out scam targeting Calguns members.
It looks like, by default, Calguns exposes your email address to the entire world? I assume some bot scraped it right away, and now people will be sending me scammy spam emails until the end of time.
1. Can the site be made security by default? Email addresses are private information, and it's a little alarming it was exposed without me realizing it. Is there something I did that caused this?
2. Even for people who choose to share their email address, it seems like there should be some kind of 'anti-scraping' to prevent bots from gathering personal information from people on the site.
3. Is there a way to prevent any sharing of the address? Unless I'm misunderstanding, it looks like the most restrictive setting is sharing with "Friends" only.
I hate to start out my relationship with Calguns on the wrong foot, but this kind of information leakage is problematic, and spam email is probably the least bad thing I can think of it being used for by an adversary. And there's a lot of adversaries these days.
Today, a couple days after registering, before I've even posted, I received a spam email:
From: kev@lockitup.life
Subject: Prevent the Preventable - Make guns safer with "Lock It Up" box!
Subject: Prevent the Preventable - Make guns safer with "Lock It Up" box!
It looks like, by default, Calguns exposes your email address to the entire world? I assume some bot scraped it right away, and now people will be sending me scammy spam emails until the end of time.
1. Can the site be made security by default? Email addresses are private information, and it's a little alarming it was exposed without me realizing it. Is there something I did that caused this?
2. Even for people who choose to share their email address, it seems like there should be some kind of 'anti-scraping' to prevent bots from gathering personal information from people on the site.
3. Is there a way to prevent any sharing of the address? Unless I'm misunderstanding, it looks like the most restrictive setting is sharing with "Friends" only.
I hate to start out my relationship with Calguns on the wrong foot, but this kind of information leakage is problematic, and spam email is probably the least bad thing I can think of it being used for by an adversary. And there's a lot of adversaries these days.
And one of the CGSSA individuals was very helpful to me.
Comment