acme.com · Domains · Slashdot Mirror

Re:I've got a better idea by Anonymous Coward · 2005-09-17 06:12 · Score: 1, Informative · on MethLabs Shuts out PeerGuardian

Peerguardian has nothing to do with spam, primarily its designed to keep the RIAA and MPAA (and thier slimy bloodhounds) from connecting to your PC whilst you are using P2P file sharing software. Of course, you can add known spammers to your list of Ip's to block, but this really isnt an RBL system for e-mail.

As for the flaw of RBL's, I do agree that they are not perfect. A much better blacklisting scheme is to generate your own local temporary blacklists based on mail (and mailservers) which appear to be spamming. http://www.acme.com/mail_filtering/introduction_fr ameset.html has a good article on such things. By and large though, you are right, RBL's fall down because they are not Realtime enough. They don't adapt to false negative or positive conditions fast enough to be relied on as a anti-spam measure.

Re:How about multiple versions? by hab136 · 2005-09-15 09:55 · Score: 1 · on IIS 7.0 Learns a Few Tricks from Apache

Why would you WANT to run two different versions of Apache? Other than, perhaps, if you're hacking on the source.

You can have as many sites running as you like under different ports and addresses in a single version of IIS or Apache.

I can think of three reasons: speed, simplicity and security. Say, one web server that only serves up static files, nothing more - and is fast at it, with a locked-down configuration. Another for dynamic content, with all the complications that ensue.

Ideally, you'd put these webservers on separate boxes (or farms of boxes), but budgets may dicatate that they share a box. Personally I'd also use thttpd for the only-static portion, as it's faster, simpler, and easier to secure.

My take on the low power personal server thread by dezb · 2005-08-27 18:07 · Score: 2, Informative · on Low-Powered Personal Servers?

Ok,

Weighing in with my two cents worth, for what it's worth, I'd like to brain dump what I would consider worth while options for your needs. All of these are solutions I either have used in the past successfully, or am currently using for various purposes. So bear in mind that this is not just the causal musings of a thread cruiser, but actual tried and proven solutions ;-)

First some basic assumptions:

1) You want to run some form of Unix or Unix like system ( i.e. Linux ) - you've noted you currently use your Apple PowerBook laptop, so one has to assume you're running Mac OS X 10.x.x natively ( more power to you ).

2) You want complete control over the system including "root" access 24/7 - this is of course the whole point of having your own system, you can beat it up, break it, rebuild it, and all that jazz.

3) The system should be able to be run remotely, even if just headless on your LAN, or perhaps more ideally remotely from some external 3rd party in a hosted solution so you don't end up having to host it behind your link at home ( also making it easier for you to provide access to other parties should you want to either share it with friends and family or if you just want to make it world visible for whatever reason - i.e. your own mail and web server et al ).

4) You want an "always on" solution, so this should be something that, as you state, should not suck too much juice power wise, is able to be built with a "standard build" style hardened platform, which in the case of power loss would ideally recover nicely, quickly, and be back on line ( I'll touch on this later as standard builds are going to make your life so much simpler and fun ).

5) The performance of the system ideally should be such that it will cope with the key elements you've noted in your post, such as:

a) remote access such as remote sessions via SSH won't kill the system

b) able to run a web server such as:

thttpd: http://www.acme.com/software/thttpd/
Apache: http://www.apache.org/
mathopd: http://mathop.diva.nl/
Roxen: http://www.roxen.com/
Boa: http://www.boa.org/
Jigsaw: http://www.w3.org/Jigsaw/ ( written in Java )
Acme.Serve: http://www.acme.com/java/software/Acme.Serve.Serve .html ( written in Java )
CERN: http://www.w3.org/hypertext/WWW/Daemon/Status.html
NCSA: http://hoohoo.ncsa.uiuc.edu/
Netscape FastTrack: http://home.netscape.com/ ( not sure if it's still available )
Netscape Enterprise: http://home.netscape.com/ ( not sure if it's still available )
Zeus: http://www.zeus.co.uk/

source: http://www.acme.com

My take on the low power personal server thread by dezb · 2005-08-27 18:07 · Score: 2, Informative · on Low-Powered Personal Servers?

Ok,

Weighing in with my two cents worth, for what it's worth, I'd like to brain dump what I would consider worth while options for your needs. All of these are solutions I either have used in the past successfully, or am currently using for various purposes. So bear in mind that this is not just the causal musings of a thread cruiser, but actual tried and proven solutions ;-)

First some basic assumptions:

1) You want to run some form of Unix or Unix like system ( i.e. Linux ) - you've noted you currently use your Apple PowerBook laptop, so one has to assume you're running Mac OS X 10.x.x natively ( more power to you ).

2) You want complete control over the system including "root" access 24/7 - this is of course the whole point of having your own system, you can beat it up, break it, rebuild it, and all that jazz.

3) The system should be able to be run remotely, even if just headless on your LAN, or perhaps more ideally remotely from some external 3rd party in a hosted solution so you don't end up having to host it behind your link at home ( also making it easier for you to provide access to other parties should you want to either share it with friends and family or if you just want to make it world visible for whatever reason - i.e. your own mail and web server et al ).

4) You want an "always on" solution, so this should be something that, as you state, should not suck too much juice power wise, is able to be built with a "standard build" style hardened platform, which in the case of power loss would ideally recover nicely, quickly, and be back on line ( I'll touch on this later as standard builds are going to make your life so much simpler and fun ).

5) The performance of the system ideally should be such that it will cope with the key elements you've noted in your post, such as:

a) remote access such as remote sessions via SSH won't kill the system

b) able to run a web server such as:

thttpd: http://www.acme.com/software/thttpd/
Apache: http://www.apache.org/
mathopd: http://mathop.diva.nl/
Roxen: http://www.roxen.com/
Boa: http://www.boa.org/
Jigsaw: http://www.w3.org/Jigsaw/ ( written in Java )
Acme.Serve: http://www.acme.com/java/software/Acme.Serve.Serve .html ( written in Java )
CERN: http://www.w3.org/hypertext/WWW/Daemon/Status.html
NCSA: http://hoohoo.ncsa.uiuc.edu/
Netscape FastTrack: http://home.netscape.com/ ( not sure if it's still available )
Netscape Enterprise: http://home.netscape.com/ ( not sure if it's still available )
Zeus: http://www.zeus.co.uk/

source: http://www.acme.com

My take on the low power personal server thread by dezb · 2005-08-27 18:07 · Score: 2, Informative · on Low-Powered Personal Servers?

Ok,

Weighing in with my two cents worth, for what it's worth, I'd like to brain dump what I would consider worth while options for your needs. All of these are solutions I either have used in the past successfully, or am currently using for various purposes. So bear in mind that this is not just the causal musings of a thread cruiser, but actual tried and proven solutions ;-)

First some basic assumptions:

1) You want to run some form of Unix or Unix like system ( i.e. Linux ) - you've noted you currently use your Apple PowerBook laptop, so one has to assume you're running Mac OS X 10.x.x natively ( more power to you ).

2) You want complete control over the system including "root" access 24/7 - this is of course the whole point of having your own system, you can beat it up, break it, rebuild it, and all that jazz.

3) The system should be able to be run remotely, even if just headless on your LAN, or perhaps more ideally remotely from some external 3rd party in a hosted solution so you don't end up having to host it behind your link at home ( also making it easier for you to provide access to other parties should you want to either share it with friends and family or if you just want to make it world visible for whatever reason - i.e. your own mail and web server et al ).

4) You want an "always on" solution, so this should be something that, as you state, should not suck too much juice power wise, is able to be built with a "standard build" style hardened platform, which in the case of power loss would ideally recover nicely, quickly, and be back on line ( I'll touch on this later as standard builds are going to make your life so much simpler and fun ).

5) The performance of the system ideally should be such that it will cope with the key elements you've noted in your post, such as:

a) remote access such as remote sessions via SSH won't kill the system

b) able to run a web server such as:

thttpd: http://www.acme.com/software/thttpd/
Apache: http://www.apache.org/
mathopd: http://mathop.diva.nl/
Roxen: http://www.roxen.com/
Boa: http://www.boa.org/
Jigsaw: http://www.w3.org/Jigsaw/ ( written in Java )
Acme.Serve: http://www.acme.com/java/software/Acme.Serve.Serve .html ( written in Java )
CERN: http://www.w3.org/hypertext/WWW/Daemon/Status.html
NCSA: http://hoohoo.ncsa.uiuc.edu/
Netscape FastTrack: http://home.netscape.com/ ( not sure if it's still available )
Netscape Enterprise: http://home.netscape.com/ ( not sure if it's still available )
Zeus: http://www.zeus.co.uk/

source: http://www.acme.com

Personally... by Shads · 2005-08-26 16:42 · Score: 4, Informative · on E-Mail Server Setup Advice?

... after hosting using Exim3 and Exim4, Postfix, and Sendmail... if i were doing a "Large" config again (read 1000+ domains, 30k+ accounts) I wouldn't consider anything *but* sendmail. It's not the easiest, newest, or anything like that, but it does scale extremely well. The setup I'm currently using (about 10 domains, 70ish accounts) is:

Exim4 SMTP
Dovecott IMAP and POP3
Bogofilter
Spamassassin (SA-Exim)
Clam-AV

It's a rocking system, I'm currently having about 18000 messages a day tossed at me of which about ~17000 are spam. My personal accounts were getting about 2500 spam/day until I enabled all the anti-spam software and virus removal. I now get about 1-2 Spam a day and I've not had a single false positive.

For a small mid range setup I would probally use exim4. It's simple, has great features, and it's nice to have spamassassin at smtp time instead of having to process the entire message.

I don't recommend standard RBL's, however, the URI RBL's are *extremely* effective and an order of magnatude more sane in what they block (eg: if the message contains a link to viagraforyou.com it blocks the message, rather than blocking random dsl servers and /16 netblocks of ip addresses to catch a single spammer... some of the standard rbl's are nutzo.)

Theres a nice tutorial and informational link about using all the good features of sendmail and several additional ideas and theories on what is effective and what isn't at http://acme.com/mail_filtering/ the guy gets *insane* quantities of mail (mostly spam) and tells how he deals with it.

Synopsis: Large site- Sendmail, Medium/Small Site- Exim4.

Alot of people like qmail and postfix over sendmail and exim, but I just don't care for them having used them. Although if forced to choose between postfix and qmail it would be qmail.

Re:Only in jail? by Shads · 2005-08-25 06:44 · Score: 2, Insightful · on Another Major Spammer Busted

Nod, try greylisting, that helps a ton too. Most spammers don't use real mail servers that comply with the rfc's... so generally if you missed the mail on the first run you're not going to get it.

There was an excellent piece on slashdot a while back about spamfiltering... infact here's a link to it: http://acme.com/mail_filtering/ killer stuff there on prevention. He gets a level of spam that would put me outta my mind.

thttpd for static content by cpghost · 2005-08-04 07:40 · Score: 1 · on Why I Hate the Apache Web Server

How about thttpd? It is used by a lot of companies to serve static content where Apache would be overwhelmed.

As a consultant by phaze3000 · 2005-07-22 19:03 · Score: 2, Interesting · on Why I Hate the Apache Web Server

As a consultant, can I take this oportunity to thank the Apache foundation for this confusing syntax, etc? Without it, I fear my earnings would be far less.

Seriously though, for a lot of tasks these days I use the more lightweight thttpd daemon. Uber-simple config files, very low overhead, supports per-URL throttling out of the box. It's superb for image servers, or pretty much any application where you don't need dynamic pages - and believe me, there are still plenty of places you don't need dynamic code.

"Power-hungry weenies" by slavemowgli · 2005-06-16 07:54 · Score: 5, Interesting · on Paul Graham Describes Dangers of Spam Blacklists

Interestingly enough, the owner of the acme.com domain who was recently featured in a story due to his getting more than a million spam mails (well, attempts to send spam) a day, agrees:

DNS-RBLs - Domain Name System Realtime Black Lists. In theory the idea is fine. You have a set of sites that you blacklist, and you want to let other folks use the same list so you distribute it using DNS, which is a nice efficient de-centralized database. What's not to like?

Well, I don't know why, but in practice every single DNS-RBL eventually comes under the control of power-hungry weenies. They start listing sites unreliably, and if you complain you find yourself listed. And there's usually no way to get off the list.

A lot of people tell me I'm wrong about this. They say that certain DNS-RBLs are ok, with objective criteria for inclusion and simple procedures for getting off the list. The thing is, they give conflicting recommendations for which lists are good and which are bad. Some of these folks recommend lists which I know from personal experience are bad.

This problem is really inherent in the way DNS-RBLs are set up. You cede control of your mail system to a third party, with no real possibility of checking how they are doing. The people running the lists get overwhelmed with bogus feedback from spammers and/or idiots, to the point where they assume all their mail about the lists is from spammers and/or idiots.

If the lists you use have not yet descended into corruption and chaos, consider yourself temporarily lucky.

Do not use DNS-RBLs.

(from http://www.acme.com/mail_filtering/shame_frameset. html)

Get Slashdot to post your CV! by Hack+Jandy · 2005-06-08 14:21 · Score: 1 · on I am the Most Spammed Person in the World

BS Detector is going off.

From http://www.acme.com/mail_filtering/background_fram eset.html

Acme.com's web site is fairly popular - we get about 25,000 visitors per day. That means our web pages are cached on a lot of people's disks. Well, one way that spammers and viruses find addresses to send to is by looking in those web cache files on machines they have taken over.

Hah. My corporate website averages 200,000 to 220,000 IPs per day. Total number of emails on any given day is about 20,000 emails - of which probably only a few hundred are legitimate. Not only is his statistic probably made up, but if 25,000 people per day are going to acme.com to read his incredibly insightful articles?? How many of you have heard of *evil* websites reading your email addresses?

Let's be realistic, if he really things the W3C specification is the reason why he gets "1 million spasm per day" - then why has his traffic only increased in the last few months? (he claims on the same link above that he was only getting 150,000 spams per day in mid 2004).

So the important thing to remember here is to post your shameless, made up, website with a CV to Slashdot to get a no-brain job interview.

no idea of false positives by jmason · 2005-06-08 11:09 · Score: 1 · on I am the Most Spammed Person in the World

Like many schemes that reject mail during the SMTP phase, this talks about false positives, but with little idea about the true rate. This can be dangerous.

For example, http://www.acme.com/mail_filtering/blackmilter_fra meset.html discusses "Wormy", an 'early & cheap blacklist that is still accurate.' It works by grepping out IPs of hosts that delivered mail that ClamAV said was malware, and then turning those IPs into a blacklist for "a day or two".

This initially seems to work, but if you try it out and *measure it with real mail, including ham*, what you'll discover is that large ISP mail gateways show up on the list very quickly. I know of other occasions where it's been tried, and abandoned, due to this issue.

However, Blackmilter, the component that uses Wormy, is listed as having "low" false positives in this document.

"Spammer" is vulnerable to the same problem.

"Persistent" will additionally have a similar problem, in that if you measure spam volume without also measuring overall (ham+spam) volume, you'll unfairly penalise hosts that send a lot of mail in general -- even if only 0.5% of that is spam.

In general, I think jef is probably justified in taking a hardline approach at those volumes -- but if you're thinking of trying out some of these approaches, be sure to apply a pinch of NaCl.

Re:Close second. by yppiz · 2005-06-08 11:06 · Score: 1 · on I am the Most Spammed Person in the World

Jef P (of acme.com fame) probably runs one of his own servers, like thttpd. It's actually quite robust. If he's slashdotted, I suspect it'shis T1 being overwhelmed.

--Pat

Re:What hardware is your site running on, Jef? by jefp · 2005-06-08 10:00 · Score: 5, Informative · on I am the Most Spammed Person in the World

Hardware info here. It's a 3.2 GHz P4. I was struggling along on a 450 MHz box until only a year ago, but finally had to upgrade.

Re:email link in post by rduke15 · 2005-06-08 08:19 · Score: 1 · on I am the Most Spammed Person in the World

Turns out it answers sometimes, as others have noted, and sometimes not:

$ telnet acme.com 25 Trying 216.27.178.28... telnet: Unable to connect to remote host: Connection refused $ telnet acme.com 25 Trying 216.27.178.28... Connected to gate.acme.com. Escape character is '^]'. 220 gate.acme.com ESMTP Sendmail; Wed, 8 Jun 2005 12:07:39 -0700 (PDT)

BTW, the article is worth reading. And the site also has a very nice bandwidth table.