cf13.com · Domains · Slashdot Mirror

Re:DomainKeys will not work. Crypto costs time and by iamcf13 · 2004-09-18 20:14 · Score: 1 · on AOL Will Not Support Sender-ID

It still isn't useful against spammers because the filter rules are too simple and too inflexible.

The 900+ email scoring rules in SpamAssasin are totally irrelevant and unecessary!

I have identified the 8 hallmarks of spam and malware, everything else in such email doesn't matter as the 8 hallmarks are deemed 'unwanted content' as needed by those that use my software.

1. File attachments - if not from expected sources, it is likely malware--usually the latest mass-mail-virus-to-hit-unsuspecting-Windows-users.

2. HTML - a waste of bandwith to send legitimate, plain-text email and a delivery vehicle for spam, phish attempts (ID theft), scams, and malware.

3. Quoted printable content - not needed for 'standard' email. It is used in HTML email and to encode 'incriminating' commerce characters in an attempt to avoid filtering.

4) Percent signs (% - used primarily in commerce and a potentially 'expensive' web browser exploit via HTML)

5) Dollar signs ($ - used primarily in commerce and, to a lesser extent, in assembler source code listings.)

6) Numbers (0123456789) - needed by spammers to create prices, website urls, email addresses, postal addresses, and contact phone numbers. When interacting with first-time correspondents via email, numbers are likely not needed and will only be used by spammers or computer crackers as part of their email 'pitch'.

7) URLs ( http://www.example.com example.com ) - one of the true payloads of spam email--all other content in such email is irrelevant and merely serves as a means to persuade the email recipient to visit the spammer's website(s) mentioned in such email.

8) Email addresses ( user@example.com ) - one of the true payloads of spam email--all other content in such email is irrelevant and merely serves as a means to persuade the email recipient to contact the spammer at the provided email address(es).

The only possible use is against exploits as HTML-mails are converted to plain text. Nice "i can program an email-server"-project but nothing worth to use in daily life.

My mailserver program also does everything possible to prevent spammers from using the SMTP DATA command in the first place and punish them appropriately when they do.

The complete details of this process is available at the bottom of the software's homepage.

SpamAssasin needs a Perl interpreter to run and is not a mailserver.

My mailserver program has simple, effective, built-in email filtering.

Mailservers like Sendmail, Postfix, and qmail are sophisticated and likely consist of 2 or more programs.

My mailserver is a simple, all-in-one, piece of software that was coded for high-performance. All it needs to run is the Windows operating system and a initially empty hard disk subdirectory to 'live' in.

Re:DomainKeys will not work. Crypto costs time and by iamcf13 · 2004-09-18 20:14 · Score: 1 · on AOL Will Not Support Sender-ID

It still isn't useful against spammers because the filter rules are too simple and too inflexible.

The 900+ email scoring rules in SpamAssasin are totally irrelevant and unecessary!

I have identified the 8 hallmarks of spam and malware, everything else in such email doesn't matter as the 8 hallmarks are deemed 'unwanted content' as needed by those that use my software.

1. File attachments - if not from expected sources, it is likely malware--usually the latest mass-mail-virus-to-hit-unsuspecting-Windows-users.

2. HTML - a waste of bandwith to send legitimate, plain-text email and a delivery vehicle for spam, phish attempts (ID theft), scams, and malware.

3. Quoted printable content - not needed for 'standard' email. It is used in HTML email and to encode 'incriminating' commerce characters in an attempt to avoid filtering.

4) Percent signs (% - used primarily in commerce and a potentially 'expensive' web browser exploit via HTML)

5) Dollar signs ($ - used primarily in commerce and, to a lesser extent, in assembler source code listings.)

6) Numbers (0123456789) - needed by spammers to create prices, website urls, email addresses, postal addresses, and contact phone numbers. When interacting with first-time correspondents via email, numbers are likely not needed and will only be used by spammers or computer crackers as part of their email 'pitch'.

7) URLs ( http://www.example.com example.com ) - one of the true payloads of spam email--all other content in such email is irrelevant and merely serves as a means to persuade the email recipient to visit the spammer's website(s) mentioned in such email.

8) Email addresses ( user@example.com ) - one of the true payloads of spam email--all other content in such email is irrelevant and merely serves as a means to persuade the email recipient to contact the spammer at the provided email address(es).

The only possible use is against exploits as HTML-mails are converted to plain text. Nice "i can program an email-server"-project but nothing worth to use in daily life.

My mailserver program also does everything possible to prevent spammers from using the SMTP DATA command in the first place and punish them appropriately when they do.

The complete details of this process is available at the bottom of the software's homepage.

SpamAssasin needs a Perl interpreter to run and is not a mailserver.

My mailserver program has simple, effective, built-in email filtering.

Mailservers like Sendmail, Postfix, and qmail are sophisticated and likely consist of 2 or more programs.

My mailserver is a simple, all-in-one, piece of software that was coded for high-performance. All it needs to run is the Windows operating system and a initially empty hard disk subdirectory to 'live' in.

Re:I just don't understand by iamcf13 · 2004-09-18 16:17 · Score: 1 · on A Visual History of Spam

targo says after a cheap shot at Slashdot, "...you actually have to open and run the attachment yourself in Outlook in order for it to do anything..."

That used to be the case, then those clever people figured out how to do it so you don't have to click on anything.

evil, evil world...

For maximum safety if you must use Outlook for email is to rename or carefully delete the Windows Scripting Host Program.

As an alternative, you could use my approach to email which is unaffected by any kind of scripting exploit.

Please keep the above in mind while other antispam solutions get coverage on Slashdot and this post is (likely) moderated into oblivion for being an 'ad' and 'just like SpamAssassin'--I tried to offer a clearly effective antispam/antimalware solution to all interested parties....

Re:19000? by iamcf13 · 2004-09-18 16:01 · Score: 1 · on A Visual History of Spam

I've gotten 16000 spams and viruses since *APRIL*. That doesn't count the accounts I've cut off because I was getting nothing but spam.

Then you can delete it all automatically either before or after it gets to your email inbox like I do.

Please keep the above in mind while other antispam solutions get coverage on Slashdot and this post is (likely) moderated into oblivion for being an 'ad' and 'just like SpamAssassin'--I tried to offer a clearly effective antispam/antimalware solution to all interested parties....

Re:Should we rewrite SMTP-No, FILTER THE CRAP OUT! by iamcf13 · 2004-09-18 15:46 · Score: 1 · on A Visual History of Spam

I think this problem will just escalate for as long as we have SMTP in use. So maybe SMTP as a protocol needs a rehaul, or a revision to rewrite it completely (and call it something different). I think it wouldn't be impossible to pull off.

Waste of time.

Every month someone suggests that there's a technological solution to this problem. But there isn't. This isn't a tech problem. It's a law-enforcement/sociological problem.

You can only go so far technologically as long as spammers are allowed to compromise peoples' computers and use them for improper activities.

My approach addresses these issues.

Spammers continue to spam and hijack other people's computers via email to relay their trash and law enforcement does little or nothing unless you are 'big' enough for them to take an interest in your plight.

As an individual email user, I finally got so angry and tired of all the spam, phish attempts, scams, and malware I got by email, I did something about them that made them all go away for good! The only time I ever get spam and (rendered inert) malware now via email is when I have to 'lower my defenses' temporarily for a good reason.

I am trying to share my solution with others here on Slashdot but I am constantly accused of 'advertising' and 'reinventing SpamAssassin'. Yet aren't all the stories posted on Slashdot advertising in the end? The public at large freqenting Slashdot is being told about information, products, and services found noteworthy by the Slashdot editorial staff whether there is a pricetag attached to said information, products, and services or not.

Until the day comes when spammers and scammers finally give up sending out their trash via email (probably never), I will continue to automatically delete it 'on sight' using my approach. Maybe one day, I'll be able to have use of the email mailserver I wrote and then I'll never have to waste time downloading and subsequently deleting this unwanted crap ever again!...

Re:Kept all his spam!?! by iamcf13 · 2004-09-18 14:37 · Score: 1 · on A Visual History of Spam

Man, i couldnt if i wanted too.. i get 10mb a day of the crap..

Then you can delete it all automatically either before or after it gets to your email inbox like I do.

Please keep the above in mind while other antispam solutions get coverage on Slashdot and this post is (likely) moderated into oblivion for being an 'ad' and 'just like SpamAssassin'--I tried to offer a clearly effective antispam/antimalware solution to all interested parties....

Re:How I avoid spam. by iamcf13 · 2004-09-18 14:17 · Score: 1 · on A Visual History of Spam

Your approach will work if the people you correspond with with using this 'secret' email address DO NOT add it to their email client's address book (likely Outlook/Outlook Express) or save it on the computer they connect to the internet with. If they do, you may fall victim to the 'fallout' of a Mass Mail Virus like I was a while back. I was accused of sending malware to people who were total strangers to me that I *never* emailed at all in the first place.

As for me, I filter out all my spam and malware with software I wrote after much research and thought into the spam/malware problem.

Please keep the above in mind while other antispam solutions get coverage on Slashdot and this post is (likely) moderated into oblivion for being an 'ad' and 'just like SpamAssassin'--I tried to offer a clearly effective antispam/antimalware solution to all interested parties....

Re:DomainKeys will not work. Crypto costs time and by iamcf13 · 2004-09-16 21:26 · Score: -1, Redundant · on AOL Will Not Support Sender-ID

Re:DomainKeys will not work. Crypto costs time and (Score:1)
by B2382F29 (742174) on Friday September 17, @04:57AM (#10274977)

Your approach to describe your approach sucks

How does CF13-POP3(TM) work?
1) It is hostile to spammers and computer crackers.
2) It is simple to use and fast.
3) It is extremely reliable when operating under nominal conditions.
Now, how DOES it work? 1. Being hostile is not a proper description of an algorithm. 3. What are the nominal conditions? Not receiving anything?

CONCLUSION: Bullshit-O-Meter says: Stay away from that, it's probably a trojan or something similar.

Detailed explanation to my spam/malware software solution.

This post is mirrored at the bottom of this page.

The explanation is long, detailed, exhaustive, and should contain the information you are looking for.

The webpage is set up in a 'pyramid' fashion--information is revealed/conveyed in as efficient and terse manner as possible. If you need 'all the answers', they are available at the bottom of the page in the mirror copy of the Slashdot post mentioned above.

Re:DomainKeys will not work. Crypto costs time and by iamcf13 · 2004-09-16 21:26 · Score: -1, Redundant · on AOL Will Not Support Sender-ID

Re:DomainKeys will not work. Crypto costs time and (Score:1)
by B2382F29 (742174) on Friday September 17, @04:57AM (#10274977)

Your approach to describe your approach sucks

How does CF13-POP3(TM) work?
1) It is hostile to spammers and computer crackers.
2) It is simple to use and fast.
3) It is extremely reliable when operating under nominal conditions.
Now, how DOES it work? 1. Being hostile is not a proper description of an algorithm. 3. What are the nominal conditions? Not receiving anything?

CONCLUSION: Bullshit-O-Meter says: Stay away from that, it's probably a trojan or something similar.

Detailed explanation to my spam/malware software solution.

This post is mirrored at the bottom of this page.

The explanation is long, detailed, exhaustive, and should contain the information you are looking for.

The webpage is set up in a 'pyramid' fashion--information is revealed/conveyed in as efficient and terse manner as possible. If you need 'all the answers', they are available at the bottom of the page in the mirror copy of the Slashdot post mentioned above.

Re:DomainKeys will not work. Crypto costs time and by iamcf13 · 2004-09-16 21:05 · Score: 1 · on AOL Will Not Support Sender-ID

Re:DomainKeys will not work. Crypto costs time and (Score:0)
by Anonymous Coward on Friday September 17, @04:42AM (#10274938)
Your software doesn't appear to give much in the way of details as to how it works. Coupled with the rather childish URL you provide, it's very difficult to take it seriously at all...

Detailed explanation of my solution to unwanted email.

'http://www.cf13.com/i-solved-the-email-spam-and-m alware-problem--seriously--interested.htm' is a 'doorway page'. Click on the link there and scroll down to the bottom of the following page to get to the mirror copy of the Slashdot post above.

Re:DomainKeys will not work. Crypto costs time and by iamcf13 · 2004-09-16 21:05 · Score: 1 · on AOL Will Not Support Sender-ID

Re:DomainKeys will not work. Crypto costs time and (Score:0)
by Anonymous Coward on Friday September 17, @04:42AM (#10274938)
Your software doesn't appear to give much in the way of details as to how it works. Coupled with the rather childish URL you provide, it's very difficult to take it seriously at all...

Detailed explanation of my solution to unwanted email.

'http://www.cf13.com/i-solved-the-email-spam-and-m alware-problem--seriously--interested.htm' is a 'doorway page'. Click on the link there and scroll down to the bottom of the following page to get to the mirror copy of the Slashdot post above.

DomainKeys will not work. Crypto costs time and $! by iamcf13 · 2004-09-16 19:52 · Score: 2, Interesting · on AOL Will Not Support Sender-ID

Someone here on Slashdot mentioned DomainKeys as an antispam solution.

It won't work!

Cryptography costs time and money to use! Just look how long it takes to bring up a secured webpage (HTTPS)....

Now imagine if the entire World Wide Web was that way....

Not everybody on the internet have the fastest systems available for use. Even then, such systems would be overwhelmed by all the crypto they have to do in order to process email using the DomainKeys system.

Instead of time consuming crypto, why not use fast, simple, effective spam filtering like my approach.

Re:Easiest way to stop spammers by iamcf13 · 2004-09-16 18:35 · Score: 1 · on FTC Recommends Bounty on Spammers

Easiest way to stop spammers (Score:0)
by Anonymous Coward on Thursday September 16, @10:58PM (#10273756)
Read their mails and look at their sites... If everyone did that the bandwidth costs alone would cripple their buisness and would more than likely put off anyone hosting them

This would have to be automated to be effective.

But that would waste time, bandwidth and money.

Won't work.

It is best to simply ignore the spam via filtering like I do.

I made spam/malware 'almost impossible'. Seriously by iamcf13 · 2004-09-15 03:33 · Score: 1 · on Spam Turns 100, By One Reckoning

If interested, complete details here.

It is Freeware/Shareware.

I am actively using the Freeware part of my solution.
'Eating my own dogfood.' as it were.

My email address is not obsfucated. It doesn't have to be if virtually all the spam I get is automatically deleted!

I am persecuted at times for even mentioning it like this yet nobody complains about Slashdot stories about established antispam solutions that appear here.

Lately, an Anonymous Coward jeered me for basically re-inventing SpamAssassin. That is not true. Though both programs are email filters, they both take different approaches to the spam/malware problem.

For example:

SpamAssassin has over 900 rules to 'score' email.

My solution only uses 8.

Why so few rules?

My solution attacks the structure of spam and not the content of spam. Hence, hundreds of rules are not needed.

My solution 'renames' all known potentially hostile HTML tags and all file attachments that appear in the recipient's email.

By doing this:

1) Privacy is preserved.
2) No one is exposed to offensive images.
3) Malware is prevented from running and compromising the computer system.

1 and 3 above will prevent the increased spread of spam and malware if the system has not been compromised first and the recipient is cautious when handling emails with inert (but still hostile) content. As a bonus, 2 will prevent allegations of sexual harassment as pornographic images sent/linked via email and the IMG SRC HTML tag are simply not displayed by HTML-aware email clients.

Lastly, SpamAssassin is solely an email filter and requires Perl to run.

My Shareware solution is a complete email and antispam/antimalware solution, no other software is needed to be effectively free of spam and malware. Widespread, proper use of this program would eliminate most email spam and render all emailed malware 'useless'.

Ironically, I could tout my solution by email spam and possibly 'make a bundle' because it actually works!

But by doing that, I would be no better than the spammers that are already out there abusing the internet email system.

As it has been said in the past, email spam is ultimately a sociological problem. Since the hardcore spammers won't stop their abuse, filter them out for good!

Re:Those coders have to do SOMETHING - I did. by iamcf13 · 2004-09-12 17:08 · Score: 1 · on 20,000 Zombie PCs -- $3000

My approach curbs the onslaught of spam and malware spewed from compromized 'Wintel' zombie PCs.

Full details here.

For what its worth, I use the software I wrote myself to protect my PC from compromise via email.

Re:Spammers will go elsewhere-try my solution... by iamcf13 · 2004-09-08 07:04 · Score: 1 · on Savvis Grudgingly Get Savvy About Spam

Until there is a universal anti-spam framework in place across the internet, this move won't help anyone.

My software addresses this issue by:

1) Making it 'almost impossible' to spam.
2) Any spam that 'gets into the system' is clearly marked as such on the email message subject line.
3) Emails sent to recipient accounts serviced by my software containing user-unwanted content are automatically 'deleted' and never appear in their inboxes.
4) Any emails containing any 'hostile' content whatsoever is rendered inert and safe to handle and scan for malware.

Full details here.

Wide usage of my software will put into place the 'universal anti-spam framework' that you seek.

Re:Spammers will go elsewhere-try my solution... by iamcf13 · 2004-09-08 07:04 · Score: 1 · on Savvis Grudgingly Get Savvy About Spam

Until there is a universal anti-spam framework in place across the internet, this move won't help anyone.

My software addresses this issue by:

1) Making it 'almost impossible' to spam.
2) Any spam that 'gets into the system' is clearly marked as such on the email message subject line.
3) Emails sent to recipient accounts serviced by my software containing user-unwanted content are automatically 'deleted' and never appear in their inboxes.
4) Any emails containing any 'hostile' content whatsoever is rendered inert and safe to handle and scan for malware.

Full details here.

Wide usage of my software will put into place the 'universal anti-spam framework' that you seek.

Re:THIS IS JUST THE THING-try my solution.... by iamcf13 · 2004-09-07 18:15 · Score: 1 · on OSI And Microsoft Negotiating Over Sender ID

It autodeletes spam based on simple, user-specified criteria.

It is fast.

It is not Bayesian filtering and doesn't requre the resources of that method of spam filtering.

I use it to check my own email. I am genuinely surprised when I get a email that got past my filtering program. The last email I got that 'beat' the filter and wasn't autodeleted was a legitimate email.

If you are interested, complete details are here.

Re:THIS IS JUST THE THING-try my solution.... by iamcf13 · 2004-09-07 18:15 · Score: 1 · on OSI And Microsoft Negotiating Over Sender ID

It autodeletes spam based on simple, user-specified criteria.

It is fast.

It is not Bayesian filtering and doesn't requre the resources of that method of spam filtering.

I use it to check my own email. I am genuinely surprised when I get a email that got past my filtering program. The last email I got that 'beat' the filter and wasn't autodeleted was a legitimate email.

If you are interested, complete details are here.

My 'ounce of prevention' solution... by iamcf13 · 2004-09-07 10:49 · Score: 1 · on Day in the Life of the Internet Storm Center

is at this URL.

Why use products like DeepFreeze after the malware has run and (irreperable?) damage is done when you can stop the malware from running in the first place.

Since malware by email is extremely popular, my approach simply treats all file attachments as 'text files'. 'Running' a text file on an uncompromised machine will cause the file to be loaded into another (trusted?) program.

These 'text files' can be safely handled, scanned for malware by trusted antivirus software, then deleted if infected or renamed back to their original extention.

As the old saying says:

An ounce of prevention is worth a pound of cure.

Why not focus on malware that doesn't use email to spread itself around and solve that problem instead?

SPF is redundant and unneeded. Use IP and DNS. by iamcf13 · 2004-09-03 15:12 · Score: 1 · on Spammers Are Early Adopters of SPF Standard

If everybody on the internet stopped running 'hidden' SMTP mailservers and logged them properly with the DNS system, spam would effectively disappear from the internet. By only talking with fellow DNS-verified SMTP servers, you eliminate the bulk of email spam and malware that is spewed by (ususally) 'compromised Windows boxen' and the 'chickenboner' blasting out spam from a stolen/throwaway dialup account.

After that, to block, tag, and/or delete the remaing spam would require a comprehensive, multifaceted approach such as the one I came up with.

I am 'eating my own dog food' and using my own software to filter out the junk sent to me at iamcf13@hotpop.com Recently, I got a reminder notice from a website I did business with quite a while back. I got the email because it contained no 'spammy' content. You see, spammers need 'spammy content' to hawk their wares--by filtering with that criteria in mind, it becomes (almost) impossible for spammers to communicate (and computer crackers to spread their malware). The ease of use and the connectivity of the internet via email is taken away from spammers. They can still spam but it will be effectively pointless as it is too inconvenient to 'decode' URLs and email addresses and type them into webbrowsers and email clients for further use--the ultimate aim of email spam laden with HTML, quoted printable content, %s, $s, numbers, URLs, and email addresses. As an added bonus, the computer crackers are silenced by filtering all malware out that come in the form of email attachments, or hostile HTML presented to HTML-aware email clients. By doing this, the spread of malware by email is minimized.

Since this post could be ultimately construed as spam, I offer these closing words:

Good ideas are not adopted automatically. They must be driven into practice with courageous patience.
-- Admiral Hyman G. Rickover

Perhaps the greatest compliment paid to Admiral Rickover is the U. S. Navy submarine that bears his name

Bayesian redux. 0wned by spammers. Not mine. by iamcf13 · 2004-08-27 22:04 · Score: 1 · on Revolutionary Spam Firewall Developed

My software attacks the structure of spam, not the content of it.
It allows the user to select the level of filtering desired. All email containing content unwanted by the user is treated as spam. At SpamByte code 0 (which is displayed along with your email address and a notice that 'all email content containing unwanted email will be summarily deleted or reported as spam'), the only spam that gets through will look something like this....

Visit my spam site
http : / / spamsite . example . com
spammer @ spamsite . example . com

It is spam that got past my program's filtering routine but is inconvenient for the user to use. Because it is written like this to evade the filters (in spite of the email sender warning above), the sender must be a spammer and the message can be reported as spam and deleted without further thought. Once this task becomes overwhelming, 'close' your inbox for a while then 'reopen' it later--Let the spammers deal with the bounces of 'unavailable' mailboxes.

And anyway, the one misclassified message mentioned in the article could have been a real email treated as spam, unacceptiable performance in a business or otherwise mission-critical environment.

It was press released on 2004-08-16, one week before the 2004-08-23 date in the article

An earlier version of one of the software programs using a different (now discarded) approach was submitted as a Slashdot story but was rejected.

How I stopped mass-mailing worms on Windows.... by iamcf13 · 2004-08-25 15:20 · Score: 1 · on HP Shelves Virus Throttler Program

From the article:

"Worm solutions are an all-or-nothing thing. If your worm defense is going to work and work evidently, so your CEO doesn't notice, it can't be piecemeal or incremental,"

-- Tom Ptacek, product manager at Arbor Networks of Lexington, Massachusetts, a network security technology company.

My approach filters out or 'renders harmless' ALL mass-mailing email malware. It only has 2 flaws:

1) The Windows registry setting affecting '.txt files' must not be compromised.
2) The user must not rename decoded email file attachments unless they know for sure the file is not malware. If the attachment is/contains malware, renaming it (and clicking on it) will run the malware and compromise the computer system.

Ahhh.... Reg-free NYT article and spam free inbox. by iamcf13 · 2004-08-25 12:02 · Score: 0 · on Dozens Charged in Spam Crackdown

Finally.

Nobody here is bellyaching about registering to read a New York Times article for a change! As for me, I finally got tired of the few spams I got, so I set my SpamByte code to 0 to shut the spammers up effectively for good!

The end of the article mentioned Russia as becoming the new 'capital of spam' in the wake of the crackdown on spammers here in the USA. To that I say: "Spam away. I'll just automatically delete it anyway after I download and scan it for 'spammines' and I'll never see it." If my SpamByte-enabled mailserver program was in widespread use on the internet, such spam wouldn't be in people's inboxes in the first place so no time is wasted downloading spam email messages only to waste more time (and money) later deleting them by hand.

Re:I solved the spam problem. Seriously. Intereste by iamcf13 · 2004-08-23 20:45 · Score: 1 · on A Day In The Life Of A Spammer

Re:I solved the spam problem. Seriously. Intereste (Score:1)
by ShepyNCL (740977) on Monday August 23, @12:33PM (#10046155)
Yo quote your site: How does CF13-POP3(TM) work? 1) It is hostile to spammers and computer crackers. 2) It is simple to use and fast. 3) It is extremely reliable when operating under nominal conditions. Doesnt exactly answer how this works? I am interested in your software, and if its as good as you claim, then count me as a buyer / donator / whatever you classify it as.

Thank you very much for your interest in CF13-POP3(TM), ShepyNCL. Below, I answer your questions about the program. If the information below lives up to your expectations, please by all means spread the word about both programs and give others the URL to this post. I *HATE* email spam and malware and tried to make it 'almost impossible' to spread. My solution is, I belive, the best possible, least complicated, and least expensive solution to the spam/malware problem that I am using it myself to check my own POP3 accounts.

How does CF13-POP3(TM) work?

1) It is hostile to spammers and computer crackers.

This is done by the use of the SpamByte code, by 'neutralizing' unsafe HTML content, and by 'renaming' all incoming file attachments to 'text files'. Allow me to explain these points in further detail:

The SpamByte code is a number from 0 to 255 that is calculated for all messages that are processed. It represents the presence or absence of the eight 'halmarks' of spam. They are, in decreasing order of 'spamminess':

1) File attachments
2) HTML
3) Quoted printable content (usually used with HTML to encode 'unprintable' characters)
4) Percent signs (% - used in commerce and a potentially 'expensive' web browser exploit)
5) Dollar signs ($ - used in commerce and in assembler source code listings)
6) Numbers (0123456789)
7) URLs ( http://www.example.com example.com )
8) Email addresses ( user@example.com )

These attributes are assigned a numeric value like so:

128-attachments wanted 64-html wanted
32-quoted printable wanted 16-percent signs wanted
8-dollar signs wanted 4-numbers wanted
2-URLs wanted 1-email addresses wanted

Therefore, my SpamByte code of 7 indicates I want emails with numbers, URLs and email addresses in them. If you add up the numerical values assigned to these three attributes, you get the sum of 7. The SpamByte scanner 'scores' all email using the above information. The SpamByte of the email is compared with the user-defined SpamByte code using this one simple rule:

All email containing content unwanted by the user is treated as spam.

CF13-POP3(TM) is a command line program. Here is the relavant part of the programs 'startup blurb':

usage: cf13pop3 svr port login pw SpamByte wantspam

svr - server address (e.g. 127.0.0.1 or mail.example.com)
port - server listening port (usually 110)
login - user login (e.g. user@example.com)
pw - user password (e.g. secretpassword)
SpamByte - numeric sum of all email content wanted by user (e.g. 7)
128-attachments wanted 64-html wanted
32-quoted printable wanted 16-percent signs wanted
8-dollar signs wanted 4-numbers wanted
2-URLs wanted 1-email addresses wanted
Some content may be inaccurately identified due
to improper content or formatting.
IMPORTANT: ANY EMAIL CONTAINING ANY UNWANTED CONTENT
WILL BE DELETED IF WANTSPAM=N!
wantspam - Y=User wants spam without attachment extracted.
N=Spam email is deleted.
Use with care as non-spam messages could be deleted.

Sample command line parameters would look like this:

I solved the spam problem. Seriously. Interested? by iamcf13 · 2004-08-21 07:56 · Score: 2, Interesting · on A Day In The Life Of A Spammer

Because of posts like this and this, as well as my own exasperation at the email spam/malware problem, I wrote these two programs that make email spam/malware 'almost impossible'. One of them is 100% freeware because the end user email recipient needs an effective, efficient solution to their email spam/malware problems. The companion program, a shareware SMTP mailserver contains the same spam/malware filter as the freeware POP3 email client. The press release for these two programs have yielded at last count the following:

PRESS RELEASE STATISITCS

SpamByte: Game Over, Spammers/Computer Crackers....

BASIC STATISTICS

Statistic Count Description

Reads: 10,688 - This number tells you how many times your press release was accessed from our site and other distribution points where we have the ability to measure a click through. This number does not include the number of journalists that have received your release through email. In addition there are online distribution points that we currently have no ability to track.

Estimated Pickup: 117 - This number estimates the number of times your press release was picked up by a media outlet. This does not tell you how many times your story appears in the media. It simply attempts to estimate media interest of your release.

Prints: 1 - This is the number of times that someone has printed your press release. We measure this by the number of times that the "printer friendly version" link is pressed. In reality, only a small percentage of users actually click this link before printing a release.

Forwards: 0 - This is the number of times that someone has forwarded your press release to a third party using the link on your press release.

Because of the Boulder Pledge and my unwillingness to become a spammer myself to promote these two programs, I ask you all this question: Will you reward my efforts and purchase my shareware mailserver program after trying it out first? When properly installed and configured, see for yourself how it blocks spammers altogether or 'safes' hostile email content and clearly and symbolically identifies the message's 'spamlike' attributes on the email message 'Subject: 'line. Email containing content unwanted by the recipient is automatically 'deleted' and *NEVER* appears in their inbox! In doing so, you will help reduce email spam and malware and reward my efforts to provide you the tools to do so. If both programs were in wide use on the internet, spam and malware would be 'almost impossible' to distribute.

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
http://www.cf13.com/press-release.htm
All email containing unwanted content will be summarily deleted or reported as spam.

How to slow down spammers deluging your systems... by iamcf13 · 2004-08-20 06:25 · Score: 1 · on RPOW - Reusable Proofs of Work

Re:Umm (Score:4, Informative)
by Anonymous Coward on Wednesday August 18, @11:16AM (#10001854)
Spammers send millions of email a second, imagine if for every email they had to do some sums that took 2 seconds, before the server would accept the email...suddenly the rate of emails per second falls.....

Without changing/breaking the SMTP email standard, my mailserver program scores incoming messages for 'spamminess' and delays processing of the message appropriately. If the spammer disconnects before the delay expires, their message(s) are *NOT* processed!

This applies to all messages process by my mailserver. All 'non-spammy' messages will have little or no delay and will be process immediately.

The 'delay factor' is user settable and the default suggested value will result in an approximately one minute delay for an incomming email message with 'maximum spammage' (any longer and Outlook will 'complain').

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
http://www.cf13.com/press-release.htm
All email containing unwanted content will be summarily deleted or reported as spam.

Stop, identify, and delete your spam automatically by iamcf13 · 2004-08-13 08:43 · Score: 1 · on Spam's U.S. Roots

My freeware/shareware programs at:

http://www.cf13.com/game-over-spammers.htm

will do just that.

(x) Bandwidth costs that are unaffected by client filtering
[The spam has been delivered and the bandwidth has been wasted. In response to this, some of the spammer's time
is wasted by the CF13-SMTP(TM) / CF13-POP3(TM) program, unwanted spam is filtered out by the user's SpamByte
code and never appears in their inbox. The remaining spam that isn't filtered out gets a SpamByte code tag in
the message subject line. In case of bad SpamByte code tags due to corrupted messages or spammers using rogue
software impersonating CF13-SMTP(TM) / CF13-POP3(TM), use the CF13-POP3(TM) email client to filter out such
improperly tagged messages via message file deletion.]

Therefore:

SpamByte: Game Over, Spammers/Computer Crackers...

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
All email containing unwanted content will be summarily deleted or reported as spam.

Re:O.W. Culture/Nobility - a counterexample... by iamcf13 · 2004-08-11 12:25 · Score: 1 · on Fewer Computer Science Majors

clambrac (722059): You need a degree to become a paid, hired code monkey for a company.

I don't have a degree.

I was ultimately hired as a computer programmer years ago due to what computer related information I knew at the time and this old MS-DOS program.

Today, I still don't have a degree now yet I wrote the two freeware/shareware programs on this page that solve a major problem that has been plaguing the Internet since May 1, 1978 or March 5, 1994 depending on who is doing the counting.

Now then, what is really more important when hiring your next computer programmer?

A degree and no real-world experience.

or

No degree and lots of real-world experience.

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
All email containing unwanted content will be summarily deleted or reported as spam.

Re:Computers are 'commodity' by iamcf13 · 2004-08-11 04:09 · Score: 1 · on Fewer Computer Science Majors

cubicledrone: Businesses want to treat people like replaceable parts.

Or as an unavoidable drag on their bottom line.

Wake up people! To most companies, the employees are ultimately treated like the annoying drain on their corporate bottom line they (likely) are no matter how hard, efficiently, or conscientiously they work. In some cases, companies are paid to hire someone to work for them via some form of (corporate) welfare [such as a tax-deductable expense account to wine and dine clients at taxpayer expense. I find this almost as bad as letting 'professional gamblers' write off their gambling losses as 'tax deductions']!

The only true way out of this mess is self-employment. Find a real need and come up with an effective, irresistable solution to that need and then the sales of the solution should follow and garner the solution creator their financial reward....

Of course the chances of success are (likely) slim to almost none but with success, the sky's the limit!

A 'profit is all, [forget] the workers' mentality in a corporate-fueled work environment leads ultimately to an unhappy, vindictive, possibly homicidal workforce....

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
All email containing unwanted content will be summarily deleted or reported as spam.

My solution to your problem.... by iamcf13 · 2004-08-11 00:57 · Score: 1 · on Fewer Computer Science Majors

Quoth the parent:

It's hard to justify two to five years of education when most jobs have disappeared or have such extensive requirements that a college graduate has little or no hope of finding an entry level position to obtain the experience required to get a good job.

What I did while looking for another computer programming job:

1) Find a problem.
2) Solve the problem.
3) Benefit from the solution.
4) Cite the solution on your resume.

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
All email containing unwanted content will be summarily deleted or reported as spam.

My solution to your problem.... by iamcf13 · 2004-08-11 00:57 · Score: 1 · on Fewer Computer Science Majors

Quoth the parent:

It's hard to justify two to five years of education when most jobs have disappeared or have such extensive requirements that a college graduate has little or no hope of finding an entry level position to obtain the experience required to get a good job.

What I did while looking for another computer programming job:

1) Find a problem.
2) Solve the problem.
3) Benefit from the solution.
4) Cite the solution on your resume.

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
All email containing unwanted content will be summarily deleted or reported as spam.

Your Bayesian filtering is dead. Instead, do this by iamcf13 · 2004-08-10 22:01 · Score: 1 · on Net Phone Customers Brace For 'VoIP Spam'

Paul Graham said it best back in August, 2002:

I think it's possible to stop spam, and that content-based filters are the way to do it. The Achilles heel of the spammers is their message. They can circumvent any other barrier you set up. They have so far, at least. But they have to deliver their message, whatever it is. If we can write software that recognizes their messages, there is no way they can get around that.

It is August, 2004 as of this writing. Two years later, spammers have made his approach to filtering email spam almost worthless. As a replacement, I offer the following:

SpamByte: Game Over Spammers/Computer Crackers...

Delete your email spam/malware automatically. I do

While you are at it....

How to secure your system against spam/malware...

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
All email containing unwanted content will be summarily deleted or reported as spam.

Delete your email spam/malware automatically. I do by iamcf13 · 2004-08-10 21:25 · Score: 1 · on Net Phone Customers Brace For 'VoIP Spam'

'From' http://www.craphound.com/spamsolutions.txt

(X) Users of email will not put up with it

They pay for their internet already, why pay extra to send email?

Instead, delete your email spam/malware automatically. I do with a fast, effective freeware, POP3 email checker I wrote called CF13-POP3(TM). To effectively eradicate all email spam/malware, consider using my shareware all-in-one mailserver program at the above URL.

Bryan Taylor
iamcf13@hotpop.com
SpamByte code: 7
(see http://www.cf13.com/game-over-spammers.htm )
All email containing unwanted content will be summarily deleted or reported as spam.

How to secure your system against spam/malware... by iamcf13 · 2004-08-10 11:09 · Score: 2, Interesting · on FTC Bars Popup Backdoor Ads

Secure IE against ActiveX/JavaScript/VBScript/IFRAME exploits

Stop the 'unblockable' Messenger service

To further minimize the possibility of malware invading your system, use antivirus and firewall products. I use:

AVG antivirus by Grisoft.
Sysclean by Trend Micro
Outpost Firewall by Agnitum.

Filter spam/malware out of your email. I use CF13-POP3(TM). It is a freeware program I wrote to crush the email spam/malware menace. It is very effective.

A companion shareware program I wrote at the above URL is an all-in-one software mail server that makes it pratically impossible to accept and deliver email spam/malware.

My freeware fights your email spam/malware & w by iamcf13 · 2004-08-08 02:44 · Score: 1 · on CAN-SPAM Is A Bust

Spam is getting to be such BS (Score:5, Interesting)
by ghettoboy22 (723339) * on Saturday August 07, @01:31PM (#9909132)
( http://akghetto.com/ )
I run a small home server off my cable modem for myself only - no big commercial operation. Been doing this for about 5 years or so... finally gave up last week after my spam flow increased from ~100/day up to ~100,000 (yes, one hundred thousand) per week in the past month or so.... Tried RBL's, Razor, SpamAssassin, DSPAM, Apple's Mail.app client.... stuff only helped so much. Constanting having to fine-tweak filters, re-train Bayes. It's too much of a hassle. Now I've given up. Set Postfix to forward all my mail to my Gmail account. Has helped quite a bit, plus when I do get a message that makes it into my Inbox, Gmail's UI makes it pretty easy to mark it as spam. I'll try this for a while.

This is why I wrote CF13-SMTP(TM) and CF13-POP3(TM)

Using CF13-POP3(TM), I have been malware free and effectively spam free since 2004-07-06. As proof, my email address is shown on all my Slashdot posts without obsfucation 'the way it should be'. Any spam I get is summarily deleted by the program's SpamByte filtering system. Any spam that gets through, I complain about. I could be '100%' spam free but it would be difficult to send me URLs and email addresses in email messages.

(x) Eternal arms race involved in all filtering approaches
[Use SpamByte code 0 to silence all potential spam-like content. Email communications can continue but it will be extremely difficult and painfully obvious for the spammers to get their message across.]

If ghettoboy22 ran my shareware CF13-SMTP(TM) mailserver program, his influx of spam and malware would disappear. His inbox would only contain the types of messages he wants to receive. All other spam and malware sent to a properly configured copy of CF13-SMTP(TM) would be rejected before the SMTP DATA command or be logged into one file or summarily deleted after the SMTP DATA command.

(x) Bandwidth costs that are unaffected by client filtering
[The spam has been delivered and the bandwidth has been wasted. In response to this, some of the spammer's time is wasted by the CF13-SMTP(TM) / CF13-POP3(TM) program, unwanted spam is filtered out by the user's SpamByte code and never appears in their inbox. The remaining spam that isn't filtered out gets a SpamByte code tag in the message subject line. In case of bad SpamByte code tags due to corrupted messages or spammers using rogue software impersonating SMTP(TM) / CF13-POP3(TM), use the CF13-POP3(TM) email client to filter out such improperly tagged messages via message file deletion.]

CF13-SMTP(TM) and CF13-POP3(TM) were designed and coded from beginning to end for high-performance email processing and to fight email spam/malware and win!

Therefore, I stand by my claim of:

SpamByte: Game Over Spammers/Computer Crackers

Though CF13-SMTP(TM) is shareware, CF13-POP3(TM) is freeware--free for all to use and benefit from its email filtering capabilities....

My freeware fights your email spam/malware & w by iamcf13 · 2004-08-08 02:44 · Score: 1 · on CAN-SPAM Is A Bust

Spam is getting to be such BS (Score:5, Interesting)
by ghettoboy22 (723339) * on Saturday August 07, @01:31PM (#9909132)
( http://akghetto.com/ )
I run a small home server off my cable modem for myself only - no big commercial operation. Been doing this for about 5 years or so... finally gave up last week after my spam flow increased from ~100/day up to ~100,000 (yes, one hundred thousand) per week in the past month or so.... Tried RBL's, Razor, SpamAssassin, DSPAM, Apple's Mail.app client.... stuff only helped so much. Constanting having to fine-tweak filters, re-train Bayes. It's too much of a hassle. Now I've given up. Set Postfix to forward all my mail to my Gmail account. Has helped quite a bit, plus when I do get a message that makes it into my Inbox, Gmail's UI makes it pretty easy to mark it as spam. I'll try this for a while.

This is why I wrote CF13-SMTP(TM) and CF13-POP3(TM)

Using CF13-POP3(TM), I have been malware free and effectively spam free since 2004-07-06. As proof, my email address is shown on all my Slashdot posts without obsfucation 'the way it should be'. Any spam I get is summarily deleted by the program's SpamByte filtering system. Any spam that gets through, I complain about. I could be '100%' spam free but it would be difficult to send me URLs and email addresses in email messages.

(x) Eternal arms race involved in all filtering approaches
[Use SpamByte code 0 to silence all potential spam-like content. Email communications can continue but it will be extremely difficult and painfully obvious for the spammers to get their message across.]

If ghettoboy22 ran my shareware CF13-SMTP(TM) mailserver program, his influx of spam and malware would disappear. His inbox would only contain the types of messages he wants to receive. All other spam and malware sent to a properly configured copy of CF13-SMTP(TM) would be rejected before the SMTP DATA command or be logged into one file or summarily deleted after the SMTP DATA command.

(x) Bandwidth costs that are unaffected by client filtering
[The spam has been delivered and the bandwidth has been wasted. In response to this, some of the spammer's time is wasted by the CF13-SMTP(TM) / CF13-POP3(TM) program, unwanted spam is filtered out by the user's SpamByte code and never appears in their inbox. The remaining spam that isn't filtered out gets a SpamByte code tag in the message subject line. In case of bad SpamByte code tags due to corrupted messages or spammers using rogue software impersonating SMTP(TM) / CF13-POP3(TM), use the CF13-POP3(TM) email client to filter out such improperly tagged messages via message file deletion.]

CF13-SMTP(TM) and CF13-POP3(TM) were designed and coded from beginning to end for high-performance email processing and to fight email spam/malware and win!

Therefore, I stand by my claim of:

SpamByte: Game Over Spammers/Computer Crackers

Though CF13-SMTP(TM) is shareware, CF13-POP3(TM) is freeware--free for all to use and benefit from its email filtering capabilities....

Per Ghulam Sediq Wardak, here's my contribution... by iamcf13 · 2004-07-08 01:26 · Score: 1 · on On Afghanistan's Thomas Edison

I want to render a service to my countrymen and to all people in the world.
-- Ghulam Sediq Wardak

Ok, here is my contribution back to the internet community:

SpamByte: Game Over, Spammers/Computer Crackers...