Google Help? Hah!
Google web servers are being used to commit fraud. I went out of my way to let google know how thier servers were being used to faciliatate fraud. I expected to be ignored, but to take action showing their disrespect seem a little more offensive than my comfort levels allow.
Here's my reply to their generic responce.
At 10:34 PM 6/7/2006, Google Help wrote:
Thank you for your note. Google doesn't send unsolicited email, and we
don't permit others to send unsolicited email through our mail servers. A
number of unscrupulous businesses have sent out mass mailings that appear
to be related to Google. We're actively pursuing all available legal means
to stop these miscreants from abusing our name and your inbox.
We understand your frustration with spam mail. Thank you very much for
your understanding, and please accept our sympathies for any inconvenience
this has caused.
Regards,
The Google Team
Dear Google Team,
That's so sweet. I'm glad you don't spam me. I know you only persuing some affordable means, not all available means to stop them from spamming, but I'll forgive that little fib. If you don't know the difference, feel free to write and ask me about it.
Saddly, you might not be so thankful for my understanding when you realise it includes the knowlege that you sent wrong generic reply because you didn't bother reading my first email. I did not mention spam in my first note to google, so let's not bring up spam again in this conversation. This is only about the google web servers being used to commit fraud.
If you have a paypal account, please click on the following link to the google server and log in, then realise google helped davidmartinez.org steal your account/password, and may soon have all your paypal funds.
http://www.google.com/url?sa=U&start=4&q=http://www.davidmartinez.org/bin/www.paypal.com/cgi-bin/us/cmd/webscr-cmd=_login/
Your "http://www.google.com/url?" functionality allows redirection via your web server. i.e. Someone can use a link to the Google web server to commit fraud.
davidmartinez.org set up a phony paypal login, and www.google.com helps hide it under a recognizable server to get around many generic sercuity whitelists.
The following was the first email, which you didn't bother to read.
************************************************************
Dear Google,
Please stop aiding www.davidmartinez.org in it's attempts to rip off stupid Americans.
By leaving "http://www.google.com/url?sa=U&start=4&q=http:" wide open, you invite this sort of attempted fraud.
All you'd have to do is filter at his IP address and Domain Name for a few month, and you wont have the feds trying to turn you into the next Napster. Honestly, I'd only let this redirect to safe addresses, instead of just anyone wanting to use you as an accessory, even with the extra hardware and responce time (yes, I do this for a living).
Don Carnevale
************************************************************
Here's my reply to their generic responce.
At 10:34 PM 6/7/2006, Google Help wrote:
Thank you for your note. Google doesn't send unsolicited email, and we
don't permit others to send unsolicited email through our mail servers. A
number of unscrupulous businesses have sent out mass mailings that appear
to be related to Google. We're actively pursuing all available legal means
to stop these miscreants from abusing our name and your inbox.
We understand your frustration with spam mail. Thank you very much for
your understanding, and please accept our sympathies for any inconvenience
this has caused.
Regards,
The Google Team
Dear Google Team,
That's so sweet. I'm glad you don't spam me. I know you only persuing some affordable means, not all available means to stop them from spamming, but I'll forgive that little fib. If you don't know the difference, feel free to write and ask me about it.
Saddly, you might not be so thankful for my understanding when you realise it includes the knowlege that you sent wrong generic reply because you didn't bother reading my first email. I did not mention spam in my first note to google, so let's not bring up spam again in this conversation. This is only about the google web servers being used to commit fraud.
If you have a paypal account, please click on the following link to the google server and log in, then realise google helped davidmartinez.org steal your account/password, and may soon have all your paypal funds.
http://www.google.com/url?sa=U&start=4&q=http://www.davidmartinez.org/bin/www.paypal.com/cgi-bin/us/cmd/webscr-cmd=_login/
Your "http://www.google.com/url?" functionality allows redirection via your web server. i.e. Someone can use a link to the Google web server to commit fraud.
davidmartinez.org set up a phony paypal login, and www.google.com helps hide it under a recognizable server to get around many generic sercuity whitelists.
The following was the first email, which you didn't bother to read.
************************************************************
Dear Google,
Please stop aiding www.davidmartinez.org in it's attempts to rip off stupid Americans.
By leaving "http://www.google.com/url?sa=U&start=4&q=http:" wide open, you invite this sort of attempted fraud.
All you'd have to do is filter at his IP address and Domain Name for a few month, and you wont have the feds trying to turn you into the next Napster. Honestly, I'd only let this redirect to safe addresses, instead of just anyone wanting to use you as an accessory, even with the extra hardware and responce time (yes, I do this for a living).
Don Carnevale
************************************************************