Re: Redirect of web link to a phishing website

From: "Justin John justin@PROTECTED [Dada Mail Developers]" <dadadev@PROTECTED>
Subject: Re: Redirect of web link to a phishing website
In-Reply-To: (no subject)
Date: August 18th 2021
So, a message sent by one of your subscribers in a discussion list had that malicious link. To prevent that, you may have to turn on moderation, and just double-check messages, before they’re sent to your entire list. Nothing else seemed… fishy about the message sent out? 

Was the message also then archived? Did your host run a scan on your site, and find the malicious link that way? 

In the future, I could add a feature that would not apply the Dada Mail redirect to certain URLs - like - but that wouldn’t stop the malicious link from being posted. I guess I could also have moderation happen only for, “suspicious” email messages - like ones that have links (or other link shorteners, file attachments, or any number of things). 

If tracking links isn’t that important to you, you can just disable that feature in the Tracker. In its prefs, select: 

 Track Message Clickthroughs:
 [x] Manually, By Tagging Message Links

Finally Michael I saw you sent a message that didn’t go through to the list - there was some sort of parsing error, but I’ve got a stack trace (sending those is a new feature in Dada Mail!) - so sorry for contributing finding a bug ;) 


Justin J: Lead Dadaist
email:    justin@PROTECTED
twitter:  @dadamail

Dada Mail Announcements: 

On Aug 14, 2021, at 6:17 PM, mrivner@PROTECTED mrivner@PROTECTED [Dada Mail Developers] <dadadev@PROTECTED> wrote:


From: mrivner@PROTECTED


I recently had my websites deactivated because a link on my site:   (I changed the name of the domain ( and name of the main directory (loc)  and list name (listnm) ).  But as you can see it called the mail.cgi file.

It redirected to an external website   (I removed some of this redirection)


Does anyone know what produced this.  Does this indicate an attack on the mail.cgi code—I am not really sure where this code is.  I looked at the mysql database and could not find this.





Michael H. Rivner, M.D.

Charbonnier Professor Emeritus of Neurology

Augusta University, Medical College of Georgia

Augusta, Georgia 30912



Dada Mail Developers

Post to: Dada Mail Developers ( dadadev@PROTECTED ) 
Manage Your Subscription 

  • This mailing list is a public mailing list - anyone may join or leave, at any time.
  • This mailing list is a group discussion list (unmoderated)
  • Start a new thread, email:

This mailing list is to discuss the nerdy programming development of Dada Mail -

If you are just looking for support Dada Mail, consult the message boards at:

To post to this list, send a message to:

All subscribers of this list may post to the list itself.

Some on topic... topics include:

  • Positive Crits on the program (I like, "x", but, "y" needs some work - here's an idea on how to make this better...)
  • Bug/Error reports
  • Bug fixes
  • Request For Comments on any changes to the program
  • Help customizing Dada Mail for your own internal needs
  • Patches
  • Language Translations
  • Support Documentation/Doc editing, FAQ's, etc.
  • Discussion of any changes that you would like to be committed to the next version of Dada Mail -

At the moment, there aren't many people with CVS access for Dada Mail - if you would like CVS access, please first talk about the changes you propose and how it will affect the program. If the idea is sound and agreed upon, the change will be comitted. A good track record of this will allow you to have CVS access. Some reasons that patches will not be accepted is if the patch breaks compatibility with a previous version of the program, the patch is too centric to your own problem or the patch simply isn't very good.

Please, please please familiarize yourself with the documentation at:

Since no one wants to answer the same question twice.

Another sneaky reason for this mailing list is to test out the discussion list capabilities of Dada Mail, since Dada Mail is used for the mailing list itself.

NOTE - because of this, there may be times that this list will be somewhat broken. Although we're not planning on breaking the program by using it, we're giving you the heads up that this may well happen anyways.

Privacy Policy:

This Privacy Policy is for this mailing list, and this mailing list only.

Email addresses collection through this mailing list are used explicitly to work within this email discussion list.

We only collect email addresses through our Closed-Loop Opt-In system.

We don't use your email address for any other purpose.

We won't be sharing your email address with any other entity.

Unsubscription can be done at any time. Please contact us at: for any help regarding your subscription, including removal from the mailing list.

All mailing list messages sent from us will include a subscription removal link, which will allow you to remove yourself from this mailing list automatically, and permanently.

All consent to use your email address for any other purpose stated at the time of the mailing list subscription will also be revoked upon mailing list removal.