Domain: trustedsource.org
Stories and comments across the archive that link to trustedsource.org.
Comments · 12
-
url lookups
I could care less who is doing the categorization. There are going to be mistakes. The important thing is being able to challenge the rating. Most of these content filtering products have URL category lookup and you can report sites that need further review.
McAfee http://www.trustedsource.org/en/feedback/url
BlueCoat http://sitereview.bluecoat.com/sitereview.jsp
The rest are easily found via google or from their respective support sites. -
Re:Great idea, just several years late ;)
IronPort / Cisco are not the only ones doing this. TrustedSource (http://www.trustedsource.org/) has a similar database.
Having used IronPort in a large scale environment for 2 years, I would never go back to plain blacklist + content scanning. Unlike blacklists, reputation filtering can be tuned for your business. If the score is poor, block inbound mail before it even reaches your MTA. Low scores can be throttled or greylisted and senders with a good score can be allowed in with few limits.
In my environment, I block nearly 80% of inbound mail before it even reaches the cpu-intensive content scanners. My only real complaint about the above reputation systems is that while some of the information is publicly available, the scores themselves are reserved for customers only. -
This technology has been around for years
IP Reputation filters are not a new idea by any stretch of the imagination.
CipherTrust TrustedSource -
Spammers are already using it
-
CipherTrust? nothx.
CipherTrust operates a service called "Trusted Source" - it allows anybody to input an IP address, searching CipherTrust's DB to see if any spam has come from that IP recently. Aside from being generally useless, here are some of the funnier results:
http://www.trustedsource.org/query.php?q=255.0.0.0 255.0.0.0 - "Spam"
http://www.trustedsource.org/query.php?q=0.0.0.0 0.0.0.0 - "Spam"
http://www.trustedsource.org/query.php?q=224.0.0.1 224.0.0.1 - "Unverified"
Since they have most of my favorite subnet masks listed as a "Spam" source, I'm not sure that I trust any "research" that comes from these guys.. YMMV. -
CipherTrust? nothx.
CipherTrust operates a service called "Trusted Source" - it allows anybody to input an IP address, searching CipherTrust's DB to see if any spam has come from that IP recently. Aside from being generally useless, here are some of the funnier results:
http://www.trustedsource.org/query.php?q=255.0.0.0 255.0.0.0 - "Spam"
http://www.trustedsource.org/query.php?q=0.0.0.0 0.0.0.0 - "Spam"
http://www.trustedsource.org/query.php?q=224.0.0.1 224.0.0.1 - "Unverified"
Since they have most of my favorite subnet masks listed as a "Spam" source, I'm not sure that I trust any "research" that comes from these guys.. YMMV. -
CipherTrust? nothx.
CipherTrust operates a service called "Trusted Source" - it allows anybody to input an IP address, searching CipherTrust's DB to see if any spam has come from that IP recently. Aside from being generally useless, here are some of the funnier results:
http://www.trustedsource.org/query.php?q=255.0.0.0 255.0.0.0 - "Spam"
http://www.trustedsource.org/query.php?q=0.0.0.0 0.0.0.0 - "Spam"
http://www.trustedsource.org/query.php?q=224.0.0.1 224.0.0.1 - "Unverified"
Since they have most of my favorite subnet masks listed as a "Spam" source, I'm not sure that I trust any "research" that comes from these guys.. YMMV. -
Slashdotted already... been there, done that...
This seems like a service surprisingly similar to what was Slashdotted about two weeks ago:
http://www.trustedsource.org/
Was there really a point in recommending yet another tool which does practically(-ish) the same thing? -
Block the IP space of the USA first...
... according to http://www.trustedsource.org/ featured today in another
./ article the US is the biggest source of spam.
This is a lot easier if you are outside the US.
Greetings from a blue country. -
At least the page confirms domain keys are ~useful
Having a look at the list of domain keys very nicely points out that all the dodgy looking names have got their domain keys well in order to continue the barrage of crap email, but at least you know it is from them...
It also shows a nice, test key when inspecting the spf records for such high quality domains...
http://www.trustedsource.org/dkim.php -
Looks like a great place to find spammers
because most of the domains listed with domainkeys/SPF seem to be websites of a dubious nature, perhaps DK/SPF is more of a sign of a spammer than absence of one, maybe i should change my spamfilter toif(domain.contains("SPF")||doamin.contains("domai
n keys"){
deny>all
return spammer(true)
} -
Fun facts
China has surpassed the US in the zombie race. According to this page: http://www.trustedsource.org/zombiemeter.php China has taken the lead. Still the US zombies are more effective since almost all spam originates from the US. You just wait until the Chineese gets the Dragon CPU up and running.