Slashdot Mirror
Collateral Damage in the Spam War
MarkedMan writes "The link points to a well researched article on Spam lists and those innocently appended to them. I have seen this myself with MailWasher. A posting will come through as potential spam, with the the bounce already red-flagged, but it is actually from a legitimate source. Only happens once or twice a month but still cause for worry.
" I've found that Spam Assassin has made life easier, but I still have to ban domains like yahoo.com, hotmail.com, mail.com - and *.ru and *.cn. I sort through the spam periodically, but the collateral damage is still there.
I keep sending CmdrTaco email that says 'I LOVE YOU' in the subject, and I think he's filtering it somehow.
No replies yet.
The only people I got spam from was from the e-mail address I used to register domain names with through netsol.
I dumped that address (100 spams a day).
What I've done is registered a domain name (say fatgeeks.com) and when I have to use my e-mail address at a website, I'll append the website to the user name, such as:
dada_slashdot@fatgeeks.com
or
dada_msn@fatgeeks.com
When spam appears, I kill off that user name (very easy to do in any POP3 e-mail program) and then go to the website that sold my address and yell.
This helps track websites that "lie" about reselling your e-mail address.
No spam. No collateral damage.
Several of the more hardcore lists will quite gladly blacklist an entire ISP for hosting spammers. Doesn't matter if you're squeaky clean with a five year contract with the ISP, they'll just say "get a new ISP, they've broken their contract with you"... all in the interests of peer pressure.
I haven't been hit myself by that, but I can sure empathise with the poor bastards that have.
Ban email from EVERYBODY by default, and only ALLOW email from certain people.
but I still have to ban domains like yahoo.com
Does anybody else find it funny that this article is from yahoo.com?
I've found that once I stopped checking my email, I stopped getting spam.
Now, why haven't I heard from my girlfriend while she's been away at school.
Have you hugged your Karma Whore today?
A number of spam filters and spam blocking agents will mark a message as SPAM if it is only Bcc'd or CC'd. If you're going to Bcc -- at least make sure you have 1 To recipient else you may end up in the SPAM Folder.
I've been using spambouncer for quite a long time and I've found that it catches more spam than Spam Assassin does.
As with any anti-spam measure you have to keep an eye on it when you set it up that everything is working and you aren't blocking legitimate mail. Any anti-spam software you use will either let some spam through, or catch legitimate mail. Add some procmail scripts to catch any mailing list mail you are on into thier folders, block To: Friend@Public.com and the like and you have a pretty robust system.
I've also found that blocking messages with malformed headers helps alot on spam... For example, the following Procmail recipe blocks all messages that are HTML only without a charset, which is common on spam mailings, and has never caught a legitimate mail for me:
* ^Content-type: text/html
* ! html; charset=
* ! from hotmail
| ${FORMAIL} -A"X-Spammers: text/html only message"
Your Milage May Vary
Do you Gentoo!?
Since the Klez virus can be sent as if it was from your email address even when it has not come from your computer, is it possible that you could get put on a antiSPAM list because someone else has got the Klez virus?
I see that sending the boys round to Hemo's house for a good beating with the procmail man page worked.
Right ... one down ... anyone know Taco's home address?
Avantslash - View Slashdot cleanly on your mobile phone.
I once, after installing, needed to raise a concern to the author, djb. I e-mailed him, and instantly recieved an automatic response.
The automatic reply stated that djb recieves an enourmous amount of mail, spam, and technical support inquiries. If I really wanted to e-mail him, the letter went on, I would have to reply to the automatic reply and copy in a 12 digit code which the automatic reply included.
I did that, and then recieved a 2nd automatic reply, stating that the code I entered was correct, and that djb would recieve my mail.
I imagine that a mail system setup in that regard would be the most potent weapon a mail server could utilize against spam!
The mail server could keep a database of known senders who entered the code correctly, and thereafter automatically accept their 'friendly' e-mail.
I forsee a potential abuses for this though. Annoying "spam bots" could learn to decipher the first automatic reply containing the code and then automatically send the spam, and contain the code which will allow the mail server to recieve the mail.
I would ask that if anyone knows how to install/administer the add on to qmail which performs this to please let me know! I recieve a tonne of spam, and becuase I get everything sent to the domain 'dmarien.com', I'll sometimes get upwards of 100/day.
Also, if anyone has a qmail server setup in this manner please let me know how satisfied they are with it's performance, and whether they get complaints -- and even if spam get's through -- i'd love to know.
Thanks!
dmarien
If you'll trace the messages 99.9% of the time it's not from the return address (which is usually hotmail or yahoo). So simply blocking yahoo and hotmail seems kind of wasteful. Simply look at the black lists of open relays. They are the problem.
that is an excellent idea! but I think she/he meant to say "after installing qmail..." on the first line.
"If everyone did what they're supposed to do, there'd be no need for lawyers"
-- a lawyer
Most spam I receive has a blank To: header and a forged From: header, so this tactic is not exactly foolproof (I've been using it for a while).
rooooar
SpamAssassin with DCC works real good.. Razor is a little bit buggy at the moment.. I have tuned my spam assassin a bit and have a HIGH count folder.. (any spam that scores over 12) for the past month, it's had a 100% hit rate. No false positives. Then there's my Score of 5 to 11.9999999999 folder.. it's about 80% spam, 20% that would be spam if I didn't actually know the person) "Come to my show my band is playing here 18+" stuff like that.. so my white list is growing.. and spam is going away.
You also have to realize that NOTHING will be perfect. Razor is a good Idea, but when you have ONE person report a CERT advisory, or other mailling lists, the false positives rise.
Even if SpamAssassin/DCC/Razor took one piece of spam out of my mailbox, it would be worth it.
"It's not like your minds are as open as the source you love..." - Me to the majority of Slashdot.
Warning: Stupid "I think I'm l33t and I want the world to know" Buzzword alert!
"Adequacy.org: Where congenital stupidity is not an option, but a requirement."
Anyone who blocks Yahoo.com won't get any mail from me. I like Yahoo's web mail, and use it in preference to the one I actually pay for.
Q. How can the Chinese authorities get around the fact that the Great Firewall of China is doomed to be imperfect?
A. Get all westerners to ban .cn as spam. Then Chinese dissidents will be unable to communicate with the outside world.
For heavy Internet users, having your own domain is wonderful. I do the same thing you describe. I'm hosted at pair.com (no affiliation other than as a customer), and for about $6/month, they host my personal web pages and let me put arbitrary filters on any incoming email address. I've killed off a few that have gotten spam from web sites releasing the address. I've killed off a few that I used when posting to mailing lists that are archived on the web.
But mostly, I've found I just don't get much spam because I protect my email address. For example, when placing my email address on my web page, I use JavaScript to encode it, so a web robot that doesn't parse the script won't see the address. I've never received spam at an address protected that way.
I've been using a beta of Cloudmark's SpamNet for about a month with no false positives. Seems to do a good job, plus you can mark SPAM that you might get and it will update it on everyone's (that is using SpamNet) spam signatures.
We wouldnt need spamassassin, DCC, vipuls razor, etc.
/etc/hosts.deny type mechanism, and specifically deny all hosts mailers, except ones in the /etc/hosts.allow. Otherwise, you invite the spammers to easily get around the RBLs by doing dialup, or ip spoofing, or whatnot else. Changing IPs is too easy, and RBLs fundamentally protect based upon that mechanism.
RBLs are like chemotherapy. They are dangerous treatment for a disease, as the damage they inflict can be huge, even significantly disproportionate with the threat.
The only way to make a truly secure RBL based filter is to use the TCP Wrappers
It is time to retire them in preference for the better technology of distributed signature detection. There is too much damage being done to reasonable end users. The policies for entry/exit of these lists are inconsistent, and far too many sysadmins blindly trust these policies <strong>event when they are wrong or inconsistent.</strong>
I have had my systems blacklisted not for having open relays (which I test for) but for being in a range where a spammer was once observed. When I complained in the past about this practice, the various sysadmins grumbled about having to update their lists.
If you are going to grab the authority, you better be prepared to take on the responsibility.
Use the distributed signature systems. Toss the RBLs out.
This is essential if you want to report spam to the sender's ISP. Otherwise, you report addresses being abused by spammers. It's also a useful filtering tool; an e-mail with inconsistent headers is probably spam.
I can't controll the primitive physical urges that I get...
When a perfectly good e-mail address has been gang-spammed.
It's all good.
I get a ton of junk mail. Who doesn't? It usually gets tossed, unopened. Every now and then, I've tossed non-junk mail, as it looked like junk mail. It would be interesting to measure this "cost" of junk-mail.
Stuff like "Casino", "Porn", "u.n.i.v" in the subject and china.com, and .br (since for some reason I've been getting hit from Brazil) in the from line all go to the Trash.
Is blocking entire domains and nations blocking out potential legit e-mail? Yep, sure is! Am I losing sleep? H3ll no! Look, I'm very sorry if you're unable to do some things on the net b/c you're domain is blacklisted, but that's just too bad. Then complain to your ISP to do something. If enough people scream to their providers to do something, the ISPs will HAVE to do something or else lose users and hence - business.
I'm not going to endure the kind of garbage I have in the past. As for legit businesses that get blacklisted, well, as the article said, it was resolved in a day...
One thing that is interesting is Yahoo!s little feature of marking a message as SPAM. Apparently, they review it and use it to update their filters. I'd be interested to know how well it works...
Computer Science is Applied Philosophy
We also use Spam Assassin. It's really nice with
IMAP, because I have a special IMAP folder, and
SA sorts all of the incoming spam right into the spam folder. Once a week I do a quick skim and make sure nothing important got stopped, and then it gets the old dumperoo. You can't do that with POP3, but it really doesn't stop that many that are legit, unless they are mailing list e-mails from crap like Yahoo groups and such. I like the various criteria it uses for what is considered spam, it has to get a certain score before it is considered spam. Combine that with the use of AmaViS for virus filtering, and you're good to go. We've had great luck with it.
I've had a number of people complaining about spam email originating from our server. A quick look at these emails from somebody who knows "a little something" about email shows that the email was an almost guaranteed forgery...the mail servers that relayed the message had nothing to do with us, besides which the user does not exist on our servers and the domain they sent from belongs to developers I know wouldn't fool with this stuff.
And yet, the damage has been done. These users don't trust me as a provider even when I explain how we lock down our server & prevent spam. They don't trust our domains, which means they block the ip -- an ip which may be mapped to 50 or more virtual sites. And all of this because our domain was the root of it all...a simple forgery that no email client really checks for validity because internet mail is designed to bounce anonymously from server to server. I've gotten spam that was "sent" from my own email address...which is silly, because why should I trust a company's services when they try to convince me _I'm_ marketing to myself?
What email needs is a set up like SSL -- a trusted third party to verify the validity of an email from a key generated by the sender when the receiver gets the mail. If the sender proves to be a spammer, the third party drops support...and charges a large fee for breaching a contract. We need this to occur without unwieldy programs (PGP) or user eductation...just some way to get a lock in the corner of a user's screen to let them know for a fact that user X sent message Y, and that if it was unwanted they have a recourse.
This new "Secure mail" could become popular very quickly, as many companies that communicate solely over email could use the security that nobody can send an email as ceo@trustycorp.com without the server's permission. The key is ease...SSL may have its problems (certs kind of expensive, monopoly of cert providers due to reliance on deals with certain monopolistic browsers, slowwww responses) but it has become a mainstay of secure communications for people who understand it (unlike my wife, who despite a BS in chemical anthropology believes that submitting her credit card via SSL over WEP 802.11b means a guy with a ham radio can read her number, so she places orders via cordless phone instead). Mail hasn't significantly changed in ten years...maybe it's time for smail!
Hey freaks: now you're ju
I make multiple accounts (like I'm sure everyone does), one for spam and one for real emails. I'm very cautiouse in where I put my real email address, never anywhere that web crawlers can access. Put the address in an image if you have to put it somewhere (on your webpage).
:)
One thing that you can do to find where some of these spam lists are getting your name is to put a unique name or identifier for the name section when you fill out any online forms (nomel(0), nomel(1), etc). When you get a spam message you will then be able to see who gave it to the spammer from the unique name. Sometimes it's surprising to find who gives out your info...
I talked to a company that uses span, they told me that they use it for ads and I told them B.S.
My e-mail address was recently harvested by a spammer. I started getting SPAM from the listed domains but the only problem was the mail didn't show up as from yahoo, hotmail or mail in my mail log. Turns out the spammer was forging the return address and sending through an open relay. So I learned about how to set up sendmail to filter incoming mail through the Open Relay Database (ORDB). That particular spam problem has now disappeared. It helps when you run your own mail server but if I can figure this out in less than a day then a paid sysadmin at an ISP, company or school should also be able to do it.
You can find out more about the ORDB here and this site has very simple instructions for setting up sendmail to use the ORDB filter. Sendmail.org has quite a bit of additional stuff you can do to filter SPAM and still let legitimate e-mail through. ORDB also has solutions for people who don't run their own mail server and just connect someplace with a mail client to get their mail.
They that can give up essential liberty to obtain a little temporary safety deserve neither safety nor liberty.
Ben
after filtering the Content-Type: for ks_c_5601-1987
(upper and lower case) I havnt recieved an asian spam mail, given that I used to get 20+ asian spam a day this helps a lot. In Outlook you cant(I think) filter on specific headers, but filtring on all Headers should do.
my $0.02
I've been at go.com for years and not had a _single_ piece of spam, while hotmail dishes it up immediately. A lot of this is just protecting your e-mail address.
A LOT of REAL people are using these emails when they are at work! They might emailing you for a good reason.
Linux users were described as 'elitist nerdy shmucks'. Sadly this is true for much of the 'community'. Too many consider themselves better than the rest of the world because they run Linux.
Hotmail users seem to have it tough. They have four levels of junk mail filtering only... from 'none', to 'low', to 'high', to 'exclusive'. If you turn the filter on high, even, you still tend to get 10+ junk mail messages per day. When I turned 'exclusive' on, even the messages from my contact list were deleted immediately, as I set junk mail for immdediate deletion. If only there could be solutions for hotmail... but there don't seem to be, so I use my hotmail address for MSN Messenger Service and an outlook client otherwise. That email address, I don't give out... and I haven't gotten spam on it yet! Perhaps that's a good idea, too. Make sure your email is not easily harvestable. This is a good way to avoid spam without any other programs.
:)
I've seen a disturbing trend of people getting added to spam databases when someone was spoofing their IP... This recently happened to a friend of mine because their (PacBell mail server!) IP was added to an open-relay list...
Are the maintainers of these databases going to have to start doing more homework on these IPs before they ban them, or are we going to see more and more collateral damage due to unethical spammers?
The problem is that these guys (spammers) keep upping the ante!
--
I've had to create 4 new accounts trying to avoid karma... dammit!
(this is similar to a comment I posted to the other recent fax SPAM story. it has been expanded.)
:)
------
I highly recommend using TMDA on your mail server to defeat SPAM. It works by maintaining a whitelist of valid senders. If someone emails you and they are not in the whitelist, then they receive a confirmation request email. They must reply to it in order to be added to the whitelist (at which point, TMDA will deliver their original message, and allow all new ones to pass through). No having to report SPAMs, no worry of maintaining a never ending blacklist. No blocking of entire domains, no having to "sort through the spam periodically". TMDA does it all for you, putting a minor inconvenience on first-time senders.
The end result is that I get no SPAM. Zero, zlich, nada, not one -- with no effort on my part.
I believe there are other packages out there similar to TMDA that you may want to try. Regardless, I'm convinced that a whitelist-centric strategy is the way to beat SPAM.
Note: You still must take into account mailinglists or other situations where you are going to receive mail from an unknown source that won't be able to process the confirm request (such as some online purchase confirmation), and this is where qmail aliases can come in handy. Ie, justin-linux, justin-sears, etc, and just throw them away if you ever get SPAM. TMDA even has some features to help with this, such as hash-generated addresses that self-destruct after a period of time.
Still, for all other purposes you can keep your normal address. No need for SPAM armoring ever again
-Justin
Maybe we could get a mainstream news source to report that terrorists are using spam to communicate with each other. That would get it banned instantly.
--
E_NOSIG
My mail gets processed by qmail, and it seems to automatically add X-Envelope-To: header lines, so you can see what address received the message.
Your mail server has to know who it is supposed to be delivering the mail to, and in most cases this is made available to mail filters in one form or another. Of course, if you're filtering it on the client side after it's been delivered to your mail box, you may be out of luck. (I've always been of the opinion that filtering should be on the server side, for this and other reasons, but people make do with what they can get.)
I use eMailTrackerPro from VisualWare and Visual Route. ht ml
http://www.visualware.com/emailtrackerpro/index
I get their location (for the non faked emails) and mail their ISP point of contact with the mail, pictures etc.
Nowdays they are FAKING emails to be from YOU to YOU. Alot are faking or creating yahoo emails so you cant block yahoo.com or u block ur friends. Some are using MSN Member services as a fake.
Simple, BLOCK EVERYTHING except those on an OK list (buddy lists etc).
----- Whats wrong with this picture? http://www.revoh.org:1234/whatswrong
If idiotic pricks didn't ...
I'm dreaming of course.
Yes, you're dreaming.
About one in 100 (somewhere between 1 in 50 and one in 200) people in the general population is a psychopath. This is a (set of?) brain disfunction(s) that amounts to "no conscience". (Think "colorblind" but with respect to harm-to-others. But it's not known yet whether it's genetic, foetal insult, or what.) Additionally there are "sociopaths" - similar symptoms but as a result of training and social factors rather than an organic problem.
Some fraction of these people learn a moral, ethical, or legal code to compensate for their affliction. They can become honest, productive, and/or beneficial citizens. In some positions (such as political or military leadership or business administration) they can even excell, because their judgement about actions that will hurt other people is not as biased by immediate emotional concern. But many do not learn a code (or learn a defective one). From these come the bulk of the criminals, scam artists, tyrants, white-collar crooks, and so on.
In the absense of compensation a psychopath will be looking out solely for number one. It's not well correlated with intelligence - some are stupid, some very smart. A significant number will be able to handle spamming tools, and be willing to go for the immediate benefit to them (even if it's small), regardless of the damage to others or even long-term consequences.
Yes, Virgina, there ARE evil people.
Much of the social and legal institutions of all civilizations are dedicated to the problem of this small-but-effective population of psychopaths. In particular, legal systems exist to give them a set of rules to live by, a set of personal bad consequences for violating them (so acts that harm the law-abiding become bad for "number one"), and to remove from circulation those who just don't get it.
Short of genocide against psychopaths we will continue to have a plague of spammers for at least as long as people think there's money to be made (or fun to be had) and it won't get you busted.
Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
It's called the Spamdemic map, but they had to pull the plug due to bandwidth cost issues
"It is a greater offense to steal men's labor, than their clothes"
When I was in university and making web pages and stuff, I used to get tonnes of spam. When I posted to newsgroups I got tonnes of spam. However, these days, I just have two addresses... one for personal email, and the other for work email, and I rarely ever get spammed.
My personal email address is a yahoo account, and work email is provided from the company I work for. I give out my email addresses to friends and lots of contacts from work (and it's printed on my business cards).
I NEVER do these things:
-post to newsgroups with a real address,
-put my personal address on a website,
-give a real address when filling out surveys, etc. online
-sign up for newsletters
-give my email to anyone who asks over the phone ("Sorry, I don't have a computer, but yes, I'd like to order that CD-ROM drive")
-give my email address to Radio Shack
-enter my personal info into my browser
Basically, I just refuse to allow my email address to proliferate. If I do happen to get spammed, I just don't reply, and it tends to go away, but it's really rare anyway.
Of course, if I ran a website, I'd create a unique email address just for that purpose, and I'd expect to have the sh!t spammed out of it, but at least it would be separate from my real addresses.
"I have never let my schooling interfere with my education." - Mark Twain
The mail never arrived, and I later got a call from her, utterly pissed that I'd missed the ceremony, pissed that she'd had to get a ride home with another cadet, and breaking off because after riding home with him, she'd had a grand time and thought it might be better to date someone in the military.
Things were iffy prior to this, owing to the difficulties of a relationship turning into a distance relationship because of her military training. We'd likely have patched things up when we were able to spend time together again, but now I dont' get a chance.
The reason? SpamAssassin flagged her mail as spam for excitedly using too many exclamation marks and similar, and dropped it into the spam folder.
I could still be dating a military chick if it weren't for spammers.
So is Hemos surprised that his approach of blocking two entire countries worth of email addresses resulted in some "collateral damaga?" It's knee-jerk responses like "I'll ban East Asia" that are going to Balkanize the Internet until it looks like a bunch of isolated BBSes again.
Hey, 1994 was a good year for computing; maybe it won't be so bad, after all.
Karma: Good (despite my invention of the Karma: sig)
When one can block and file complaints?
My system contains SpamAssasin and SpamCop.
The assasin takes care of everyone that uses it (i shut off the filing option on it). And then I post the full email to Spamcop to put the spammer on notice... So far its been a effective approach. Since the Great Spam Flood that started earlier this year, my spam has gone fron 12/day to nearly 3/week!
Now only if someone would take out those idiot Level 3 spammers, my day would be made..
First rule of holes; When in one, stop digging.
This might not lead to any practical solutions, but just for the hell of it, it would be cool to see just how far AI can go in distinguishing between spam and legitimate email. For example, someone might experiment with genetic algorithms, feeding his normal daily email to the programs as input and manually "grading" the responses, and see how well they learn to detect spam. The results might be surprising and interesting.
--- Brian
The only viable legislative solution I see is to require all senders to pay a small fee for every message they send out. No bulk deals, also.
It would not eliminate spam, but may greatly reduce it.
The fee should not affect the cost of services if you are not a spammer ISP because you will get the senders' revunue to pay for accounting efforts.
Table-ized A.I.
Absolutely. Without pitting customers of ISPs against each other, i.e., the legitimate ones against the spammers, the ISPs will be happy to serve both. I'd suggest that if an ISP allows any spamming, block it -- wholesale. Either you have an agressive policy against SPAM or you lose your privilege to send mail to my servers. Your customers don't like it? Tough. Make your network spam-unfriendly.
The last thing the ISPs want is for their regular customers to be aware that they are allowing spammers to use their network. It's kind of like the phone company selling caller ID block to telemarketers and caller ID and privacy manager to residential customers. If the spam blacklists cause users to confront the reality that their ISP is knowingly hosting spammers or not bothering to monitor people sending out 10e+06 emails at a time, then they might just demand that their ISP get out of the spam business. Because unlike (most) telcos, ISPs don't have monopolies, and customers can switch.
I think the solution to this is something we have implemented with care in the real world regarding our mail, but somehow failed to do in our e-mail.
Think of a real world companies mailroom. Say it's a big company that gets thousands of letters each day. Some of it is business related and is important, some 'thank you's and 'well done's from customers, some 'your stuff sucks' also from customers and lots and lots of junk/spam/flame that is only good for recycling.
Sorting out all the mail takes time, so how do you make sure that the legit mail gets to you quick and the Spam stays in the Spam basket? Well you send registered mail. See, we know that certain mail is important when someone takes the trouble to take it to the post office and register it and pay more for it's delivery or call a courier to do the same. It's all barcoded so we can scan it, see who it's from and build a "trusted" mail list and rush it through.
Sound familiar? You bet! But the trouble is almost nobody beliefs in PGP signing their e-mail. All our mail programs can do it, but we just don't. Imagine, if it were that every piece of mail sent is signed, all we need is a simple filter to see what is spam and sort it out, dead on, with no legit mail getting junked.
Sometimes I wish I was a plumber, then I'd know how to deal with other people's shit.
If they have to pay out money, they may clean up their act.
Fight Spammers!
but I still have to ban domains like yahoo.com
funny you mentioned that. A few weeks ago my company was shopping for a wed developer and I was exnchanging email with lots of salesmen. I kept getting bounce messages on my replies to one of them. At first Ifigured that it was a mail header problem and resent the message to his real address, but that bounced too. Then I actually read the bounce message: "Remote host said: 550 5.0.0 spam not accepted here".
It was quite convenient really... I had been looking for a way to pare down the vendow list without having to sit through a dozen demos.
if you run your own linux server, just edit /etc/alias with something like:
ebay: me
then save, and run "newaliases"
on the web form for ebay, then type in:
ebay@mydomain.net
What are we going to do tonight Brain?
Fight Spammers!
Why is this surprising - First off NO ANTI-SPAM SOFTWARE IS PERFECT - don't get me wrong - spamassassin, block lists, and junk mail folders are great tools, but they are not going to be 100% accurate 100% of the time - get real. The programs are meant to help filter MOST of the junk out - BUT occasionally you WILL have legitimate email that gets flagged as spam for BEING IN ALL CAPS (because your grandma just got email and couldn't find the aps lock key) or maybe its from a foreign site *.ru, *.uk (A friend on vacation is using there new russian friends email to send you a note) who knows SOMETHING CAN AND WILL OCCASIONALLY GO WRONG - it happens all the time - until we are perfect creatures of pure thought provoking goo as in EVA we will have missed emails and spam - it might not always be AS BAD but it WILL NEVER BE PERFECT
Ave Molech Setting
It seems to me that most spam leverages flaws in the email protocol. The ability to spoof an email address and the lack of built-in and automatic digital signing both enable spam to flourish.
Perhaps its time to write a completely new email protocol that supports these features.
I don't think it's so much to ask that when an email header says its from joe_blow@yahoo.com that it really is from that address. I understand that this would cause anonymous email to be impossible, but it should be the recipient's choice as to whether they want to use an email protocol that allows spam and anonymous mail or not.
Don't blame the spam filters for not being perfect. No matter how intelligent these programs get they will never be perfect. Even if you hired someone to go through your mail box every day, that person wouldn't know what you consider spam and what you want to read. For example, if an old friend you hadn't talked to in years sent you a job offer, that would kind of look like spam, but you would still want to read it. Anyway, these spam blocking programs are much better than nothing.
I personally check my spam folder many times a day, so it's no big deal if I get a false positive from spamassassin. "But what's the point in a spam filter at all if you check it all the time", you ask? For me, the annoyance of spam is getting interrupted by the delicate chimes that announce your new mail, and then racing excitedly to your mail app only to discover that a HOT TEEN is waiting for YOU! I don't mind sorting my spam folder, so long as it's on my time and not interrupting something important. I usually do it anytime I get any legitimate mail, so it's rare that there's more than 1 or 2 emails in the folder. A false positive will usually just result in delaying me from reading someone's mail for a few hours.
./ editors claim.
If I got so much spam that this system became unwieldy, I would probably set up several spam folders corresponding to the spam level assigned by spamassassin. Anything between 2-5 would go in a folder that I check whenever I get a real email, because a false positive is almost guaranteed to be below 5. Anything over 5 is pretty much guaranteed to be legitimate spam, and I would check that every few days. I don't do this, however, because I simply don't get the 100+ spam emails a day that the
"Will the message get through"?
Message delivery is not guaranteed. Even in the RFC's it is considered a best effort delivery. It works so much of the time, people assume it is 100%. It is not. So send your email, if it doesn't make it, send it again. If it still doesn't make it, then break out 35 cents (or whatever it is now) and mail it. You will have just as good a chance of it making it. The only thing I guarantee is that there are no guarantees.
Even if you do everything right and aren't blacklisted it still may fail at Joe Blow's Excellent SMTP server.
Flame on.
Bottom line -- Spam (and the tools required to fight spam) are the biggest reasons we will still be using stamps and snail mail in the years to come. Spam has taken the "killer app" of the information age -- and crippled it beyond use.
/dev/null. I would go into more detail -- but one look into most mail boxes that have been around the internet for long would speak louder than a thousand words.
It's a catch 22 because if you don't filter spam the signal to noise ratio is way to high to make email a valid source of legit communication. If you do filter -- the better you filter, the higher the chance of important bits going to
(+1 Funny) only if I laugh out loud.
IMHO, in rough order of value:
SpamCop - Catches by far the most spam. Falses rarely, though yahoo shows up from time to time.
Spews - Known spam sources. Never falses.
ORDB - Fair false rate, and a lot of overlap with SpamCop.
People who disagree with you are not automatically evil, greedy, or stupid.
"Recent complaints about blocklists have come from companies and organizations, including British Telecom, the Libertarian Party and News.com publisher CNET Networks, among others."
btinternet is complaining about getting blocked because they don't bother to nuke their spammers. CNET doesn't verify e-mailed subscriptions, so just about anyone can sign someone else up.
Is it any wonder that they're complaining about being blocked?
"Well-researched" my ass.
Specialization is for insects. - R.A.H.
I've been using this procmail script for quite a while now. Basically, it implements an "accept list" as described in this OSOpinion article, whereby only people that respond to an auto-reply are added to the accept list, which means that none of the automated spam apps can get their crap through to you. I can't remember the last time I got any spam.
As for dissident email, I never received any and don't expect to. I'm sure the few Chinese dissidents are beaten down quickly and probably communicate with others who can help.
Hopefully, the Chinese will wake up and realize that to be responsible Netizens, they shouldn't be spam generators for the rest of the world.
I just wanted to point that out b/c I have learned more than I ever wanted to know about email in an attempt to migrate my email servers from Exchange/Winblows to Qmail/Linux. I would have tried BSD (since that is what it was developed on) but I have more experience with Linux.
...). If you take it slow the first time it works quite well.
Since I really DIDNT want to be an open relay I tested and tried a load of configurations. Sadly I was open for about 1/2 of a day (and of course some jackass sent about 20 messages through my server).
I've found the best way to setup QMail is to combine 3 sources (Life with Qmail, his book (which contains significantly more info and is DEFINATELY worth the price), and reading EVERY PROGRAMS file/man page to see how they are implemented (uscpi, daemontools, checkpassword, qmail, relay-ctrl,
Now just to get Courier/Horde/IMP installed.
My former university is using QMail for their Sooner Information Network On-line Mail. It seems pretty cool.
All that said, I think that collateral damage is acceptable in most cases. I think there's a reason behind it that some don't grasp right away. When you've LARTed an ISP a dozen times over one IP or one of their customers and they haven't done jack about it, you'll understand the usefulness of collateral damage.
My $.02
I was stupid enough a few years back to give my e-mail address at the Jack in the Box website. The Jack e-mails started after awhile and they were annoying, but I knew I only had myself to blame. So I set up the filter on Outlook to send the Jack e-mail straight to the trash. Which it did. Along with every other e-mail that began with the letter "J". Penance sucks.
If brevity is the soul of wit, then how does one explain Twitter?
just get off your lazy arse and delete spam yourself.
In corporate america, your definition of a psychopath is pretty much held up as the example to follow. They used to use war euphemisms in business, until that became unpopular. Now it's sports euphemisms. I think the idea being that games of sport are tactical and emotionless like war is supposed to be. To give you an idea where I'm coming from, I find it truly amazing that we've been wasting time on this system of chasing little green pieces of paper around the planet (blatant douglas plagerism) instead of working together to expand our understanding of that whole universe out there. It's sad that we have a system of reward based on material possession and creature comfort. The goal of which is have so many pieces of paper, you don't have to do anything, and you can control others. Surprisingly, more often than not it's those people that make decisions for all of us. Survive at all costs. It's a model mirrored in nature by lesser lifeforms. We should be better than that. Considering we are our own worst natural preditor, I'd rather have someone making decisions that is intelligent and sympathetic, rather than someone that is an expert survivalist and game fixer. I don't hate the player mind you, I hate the game. We should take these people out of power, and get them the help they need. And yes, I AM dreaming. But everyone that has bought into the system in place might be dreaming someone else's dream.
The most important thing any republican needs to know.
Subject: *****SPAM***** ZDNET NEWS: Spam blocklists going too far?
Date: Fri, 12 Jul 2002 06:21:05 -0700 (PDT)
From: "ZDNet News E-mail Alert"
SPAM: -------------------- Start SpamAssassin results
SPAM: This mail is probably spam. The original message has been altered
SPAM: so you can recognise or block similar unwanted mail in future.
SPAM: See http://spamassassin.org/tag/ for more details.
SPAM:
SPAM: Content analysis details: (6.1 hits, 5 required)
SPAM: SUBJ_ENDS_IN_Q_MARK (-0.1 points) Subject: ends in a question mark
SPAM: FROM_HAS_MIXED_NUMS (2.6 points) From: contains numbers mixed in with letters
SPAM: GAPPY_TEXT (0.4 points) BODY: Contains 'G.a.p.p.y-T.e.x.t'
SPAM: DOUBLE_CAPSWORD (1.1 points) BODY: A word in all caps repeated on the line
SPAM: CLICK_BELOW (1.5 points) BODY: Asks you to click below
SPAM: LINES_OF_YELLING (-0.0 points) BODY: A WHOLE LINE OF YELLING DETECTED
SPAM: LINES_OF_YELLING_3 (0.5 points) BODY: 3 WHOLE LINES OF YELLING DETECTED
SPAM: LINES_OF_YELLING_2 (0.1 points) BODY: 2 WHOLE LINES OF YELLING DETECTED
SPAM:
SPAM: -------------------- End of SpamAssassin results
Killing of all mail from yahoo/hotmail is pretty severe. Many, many people (who might have other legit addresses) maintain yahoo/hotmail addresses for when they're on the road. Many other people who want to keep the same address, regardless of what ISP they're using at the moment also use Yahoo/Hotmail. I recently did a search through a client's newsletter subscription database (to compile a list to send the newsletter out to) and over 50% of the addresses were either yahoo or hotmail domains.
... fine, but that's not SPAM.
I don't see why (with SpamAssassin) you would need to be so draconian. SpamAssassin catches all my spam, regardless of where it originated. If your installation isn't catching what you consider spam, adjust the rules a bit. There's a lot of good documentation on how to do this and it isn't real hard (mine seems to be working fine, out-of-the-box). Now, its very possible that a person would get legit email from yahoo/hotmail addresses that they simply don't *want* to get
I am going to forward all of the spam I recieve to my states Congressional Representatives. If anyone else thinks this is a good idea, here is a web page that has contact info.
t me .cf m
:-)
http://www.house.gov/house/MemberWWW_by_State.h
http://www.senate.gov/senators/senator_by_stat
If I get way too much spam and you get way too much spam, just think how much spam they will get if 5% of us do this
Hey, tough shit.
My personal solution to SPAM is to ban all e-mails from anyone I don't know. If I get an e-mail from someone not on my address book or accepted e-mails list, its automatically deleted before I see it.
This requires actively maintaining a list of e-mails, but it is fool-proof for elminating spam, and won't filter out many legitimate messages from people you WANT to get messages from.
social sciences can never use experience to verify their statemen
Buy a new domain. Start receiving 60 spams per day on each email, even though you have not posted them anywhere yet. Start reporting them to spamcop.net for some reason spamcop decides that it is a good idea to check the box next to *your* service providers name automatically. Sends report to my service provider. My service provider in getting so many of these all the time, don't bother to look at them and realize I am the one reporting this crap. My domain hosting is turned off without warning or even an email explaination of why. Total time.. one week. On a bright note, I talked with them and they went and looked a the reports and realized the error and turned my account back on within one hour. But still.. this should *not* have happened.. Yea.. Collateral damage (to myself)
anime+manga together at last.. in real time.
I am one of those admins that is dealing with "collateral damage".
While I understand the needs of the community and will work for them, some of this outright vigilante action has to stop. I am willing to work with these people and my persistence internal to my company has paid off, but I get nothing but jeers and flames from a majority. This has left me pretty demoralized, and it's really not appreciated.
Granted, I understand why these people bear such enmity to my company, and I know that this fight has become extremely polarized, but don't make life harder for me. The treatment of myself as I plead is irrelevant; I was already working on changing the internal climate towards abuse.
The one positive thing of being blacklisted is that it helped my case as the CEO is very customer service oriented. My case was furthered greatly when we had a few complaining customers (note: even then, most of the customers were pissed at the companies subscribing, not us).
So, in a bittersweet way, I'd like to thank some of those people, but I would also like to question the larger companies that subscribe to this list: do you really want to risk commerce for the sake of reducing spam?
-- youll.ngo.who.I.am.if.youre.in.the.ngo
I'm not sure if there are any laws against DoS but I'm sure people have been prosecuted for it already. And as far as I'm concerned if my mailbox gets full of spam while I'm away and my account is closed, I can accurately claim that my email account has been DoS'ed by any definition of a DoS attack. It's true that the perpetrators are ipossible to find and sue (overseas), but each piece of spam comes with a link or telephone number identifying the company that paid the spammer to do what he did. Now if you knowingly buy a stolen item you're going to jail because you effectively paid the thief to steal it for you. Then why isn't anyone suing the companies linked in spam for knowingly and directly financing a global DoS attack on everyone's email accounts, even though someone else is executing it (the thief)?
I'm not sure about everyone else, but a good 90% (or more) of my SPAM comes from Asia Pacific networks. In order to combat this, I have used the access_db feature of Sendmail to block these off.
Over the past week since I've done this, I've blocked in excess of 100 pieces of SPAM from my INBOX. It seems to be working very, very well. You can read the article I wrote on how to accomplish this right here. The article just discusses the access_db file, but the comment right below lists the networks that I blocked.
I'm well aware this solution will not work for everyone, but for my needs, it has been a godsend.
--It's Pimptastic!--
Until I required a password in the subject of mail for anyone not in my contact list. I haven't recieved a single spam mail in one year.
According to a usenet post from what seems to be the only China admin who has been taking the issue seriously, China Telecom is finally waking up to the fact that SPAM IS BAD. Evidently it took legal papers from overseas delivered to their headquarters before they decided to take a look at the problem. Whether this means that they'll do something about the spam is another issue...
What is the best email filter that you guys have found? The one that I am under is SublimeMail. It works great! It's pretty new, but it has hit some pretty important milestones for messages caught. Any other good ones?
Is listed here: http://ftp.apnic.net/stats/apnic/apnic-2002-07-01
Michael Loves Me!
If you insist on using the terms "incest", "enlarge your penis", "make money fast", or "you requested to receive e-mail" in your personal correspondence then use encryption and sign your email so you don't get filtered out. If you are on a node that is blacklisted then either complain to your provider or move to a more responsible one.
It is by the juice of the coffee bean that thoughts acquire speed, the teeth acquire stains. The stains become a warning
Someone mentioned TMDA, which is basically similar to the system I use.
Here's my system.
1. Make a comprehensive address book, listing all known contacts and companies you want information from.
2. Set up a filter to let any e-mail through which is in your address book or allowed senders list, OR to allow any e-mail through which has your "ok password" on it (i.e., anything with "32dje573hkjd3k:" is let through), unless an exception is noted.
3. Set up a web page which displays your "ok password" as a GRAPHIC IMAGE, not a text image.
4. Set up a filter such that any e-mail not from a known contact or without your "ok password" on it is automatically deleted, and a message sent back to the originator, "Your e-mail has been automatically deleted from that person's account, as you are not a trusted source. If you want to sent that person a message, go to http://www.persons-webpage.com and find his 'ok password'. Put his 'ok password' on your message title followed by a colon and the rest of the title, then re-send the message. The person you are trying to e-mail will then receive your message and evaluate whether or not your are a trust-worthy source. If he decides you are a spammer, flamer, or anything else of the kind, he'll take further measures to avoid getting e-mail from you".
5. Anyone who's a legit e-mail sender will do this. Then you can get their messages and add their e-mails to either your address book or "accepted e-mails list". Some spammers may do it to, but these will be few and far between; and then you can filter them out specifically.
APPENDIX: A note on your "ok password". Your "ok password" should NOT be static. It should change daily; and there should be multiple "ok passwords" daily which will be randomly displayed to each different user who enters the site. Use a random password generator to generate different passwords at various intervals, convert the text to a jpg graphic, and post it on your web-page.
social sciences can never use experience to verify their statemen
One claim made in the article seemed particularly erroneous to me: ``Blacklists are as old as the Internet.''
It wasn't until the late 80s, maybe even '90 or '91, that I got my first spam. I knew one person who was starting to get spammed somewhat regularly -- he ran a pretty large mailing list for a free software development project. Canter and Siegel -- the ``first spammers'' -- didn't start their Green Card Spam until 1994 -- not even 10 years ago!
MAPS RBL (started in 1997) is what I recall as being the first organized blacklist. Somewhere between my first spam and C&S I'd started my own personal list, as had lots of folks, but throughout the 80's I can't imagine that most internet users would have seen the point.
What options do us Windows users (i.e. non-Unix zealots) have?
Right now some poor guy named "HomerSimpson@aol.com" is getting pounded with spam.
It is by the juice of the coffee bean that thoughts acquire speed, the teeth acquire stains. The stains become a warning
Lots of people are blocking all of asia. Before I blocked them, I never saw a single legit packet come from Asia. All I saw from there was spam and scans. I used to send abuse reports to asain admins, but I would never get an answer (which is ok), but I would never see any results either. Just more spam and scans.
Michael Loves Me!
If you don't get spam how will you ever learn how to "MAKE MONEY FAST!" or how to "ENLARGE YOUR PENIS!"?
It is by the juice of the coffee bean that thoughts acquire speed, the teeth acquire stains. The stains become a warning
I have a yahoo account for spam, a personal account for friends/family/important personal business, and a work email account.
I get maybe, MAYBE, one or two spams a day...mostly in the bulk mail of my yahoo account. I register online in a ton of places...and it just isn't an issue for me to once in a while get an unregistered unsolicited email or two. What's the big deal?
man rtfm
Yeah, I get stuff like that too, but I strongly suspect that it's smoke and mirrors, an attempt to make it look like it got sent to me by mistake --- in other words, they they supposedly typoed the "real" address (the database barfed, or the secretary hit paste and bobbled the address string) and "accidentally" ended up sending it to me in addition to the "real" recipient.
Sleazeballs.
Need a Linux consultant in New Orleans?
How else can you boycott the ISP w/o collateral damage? SPEWS does not list the ISP, and hence, no collateral damage, until the ISP has had plenty of time to cut off the spammer. In order to increase the level of pressure on the ISP, more of their address space has to be listed to "encourage" them to cut off the spammer. The usual first listing is the whole /24 the spammer is in (if they weren't doing it from the whole /24 in the first place). Maybe they will start listening once their own customers complain (and that's the proper place for the customers to complain to, their ISP). If they continue to ignore the problem, then eventually the whole ISP will be listed. If it's a multi-level ISP, their upstream starts to get listed, too.
The philosophy SPEWS appears to be using, and one I now agree with (previously I did not, but sometimes my opinions do change ... hey, I'm open minded), is that the spam problem will not go away by blocking only the spammers. ISPs have to play a part by not signing up known spammers, and cutting off spammers that got signed up because they were not known at first. Blocking spammers alone will be a never-ending battle because then there is no incentive for any ISP to turn them away and they just keep moving around to evade the blocking. To end spamming, the ISPs have to quit offering them services, or we have to quit accepting traffic from the set of ISPs that do harbor spammers.
It looks like collateral damage, but it's just another form of boycott. If I organize a boycott against my local newspaper, then the advertisers suffer because fewer people read their ads. And such boycotts are known to even extend to boycotting the advertisers if things get bad (and spam right has gotten very bad already). Is that fair to the advertisers? Of course not. But that's the nature of the activity; it is, among other things, trying to encourage the advertisers to cease advertising there. So in the same way, by boycotting a whole ISP address space, the idea is to encourage their customers to change to another ISP, until the ISP changes their ways.
now we need to go OSS in diesel cars
Spammers could modify their spam software of choice to automate replying to TDMA messages...
These big companies are on those lists because they risk commerce by not reducing spam.
Dude, see my previous post. The problem isn't that you're being victimized by the blacklists, you're being victimized by the customers who get you put on those lists.
Make the lists work for you: put your own dynamic IP's on the lists so that spammers can't use your dial-up accounts as throw-aways, and when you assign static IP's to a customer, make sure those IP's resolve either to a domain of yours which you have voluntarily blacklisted, or to the customer's domain so that they can be listed without taking down your other customers.
If one of your customers has an open relay, and you get a warning from the blacklist maintainers, don't wait around and let them add you to their lists, send them your customers' IP block and let your customer fight to get off.
In the States, the federal trade commission has set up a special "spam-fighting" email address (uce@ftc.gov) to forward your spam to. Now it's not like I expect my single emails to really do much, so I take a different approach... You'll notice that almost all spam emails have a "click here to unsubscribe" link. Rather than click on that link directly, I copy it to the clipboard, and tweak it so that instead of linking *my* email address, it contains the FTC's address. So while the sites that honor their unsub requests have no trouble, the ones that use the request as a confirmation flag now pipe their spam directly into the FTC's anti-spam taskforce. For the same reason, any webform email request gets that same uce@ftc.gov address. I'll also track down the "I'd like to subscribe" forms for spammers (online casinos especially) that don't have an "opt-out" link. If my tax money is going to go towards fighting this stuff, I might as well give the good guys the cleanest data possible :)
I suspect that one of these choices is incorrect. Correct.
http://www.clifto.com/8345.html
That's why spamming has to be destroyed NOW and not when it REALLY becomes a problem.
Proletariat of the world, unite to kill spammers!
In Soviet Russia, I ruled you
Hey, at least MailWasher lets you check what's tagged, and does it before you download. Nobody else that I'm aware of does this.
I've been running MailWasher on my Windows box, and I've reduced my spam by about 75%, due to MailWasher's bounce feature. My name is getting deleted from the spam lists, by the spammers. This is the best solution yet.
First, actually read what I wrote.
Two, we don't do dial-up or DSL. We're a ds1+ circuit provider.
Three, I wrote that I understand why we ended up there in the first place. I came back to this company after having setup several years ago. I came back to an unmaintained abuse box. The problem is, as I fought to change the culture, I was earning more and more punitive damages against just more than one class c. I don't claim to be a victim, but I got very little understanding as I tried to communicate with the maintainers of the list and I felt the communication actually earned us MORE action.
I also don't take kindly to people who leave a polite note at the front door if they are riding in the same car as the people who threw the beer bottle.
We all agree that spammers are scum and should be expunged from the net. No argument.
Let's say I'm trying to set up shop somewhere where I don't really have my choice of ISPs. If I want to connect to the net, I have one or two real options. And that option happens to be with an ISP that isn't tough enough on spam for the liking of some of the more aggressive (belligerent?) blacklisters, so they not only block the spammer they don't like, but the spammer's upstream provider... which happens to be my upstream provider, too. The blacklisters are basically saying it's OK for them to DoS ME because someone else on the network did something they don't like.
Now let's kick it up a notch, because you're probably thinking that if it's just me setting up through a small, remote ISP, it's not a big deal. Let's say I'm in a small city where I have my choice of ISPs, but there are only one or two regional providers who connect those small ISPs to the larger net. When one of those regional ISPs gets blacklisted, you effectively DoS a large, large area. Yes, you put pressure on the ISP to remove the spammer... but in the meantime, you've DoSed a lot more people than the spammer did.
So: at what point does the collateral damage become too expensive to put up with?
People are never as simple as their stereotypes. This applies equally to Christians, Muslims, and Emacs-lovers.
What amazes me about the spam fight is how much it has led people to promote the idea of punishing the innocent in order to get at the guilty.
People who would have fought with vigour against punishing the innocent in other fields seem willing to give it up, in of all places, the free speech question of who can email whom.
Yikes. We are willing to let murderers go to make sure we don't punish the innocent. Yet for some reason spam makes people think it's OK to trample on the free speech rights of the innocent to get not a murderer, but a spammer. I hate spammers as much as anybody -- I get 120 per day -- but let's keep them in perspective.
The most common justification is the canard that it's not about speech it's about property. Problem is all use of the internet involves using somebody else's property. On the internet there is no speech without the use of other people's property, and thus no unsolicited communication without the unsolicited use of somebody else's property. This makes it very tough to solve by thinking of it as a property issue.
There are other, better methods that don't generate false positives or generate extremely few. I've written extensively on them.
Has it been over a year since you last donated to the Electronic Frontier Foundation
There's no filtering or anything, they require senders to verify themselves, then the mail gets forwarded to you (you use them as your pop server).
Seems to work pretty well, at least it stops anyone using a fake from address or any automated systems.
I did have to go in there and add things like orders@amazon.com, and a couple others, and all my friends.
they have a free trial right now, so it might be worth a shot.
It's nice to not have to filter out spam manually anymore. It's so nice I don't even care about the few people who can't figure out how to get through the whitelist confirmation.
Build stuff. Stuff that walks, stuff that rolls, whatever.
comes from one source, and I tracked it down over months. Its ICQ.
You enter you mail address there, and I was getting 5-6 a day from them, I removed it, and I'm down to 1 every other day, but I know they are still from ICQ lists, as its the same types of emails.
You can trust most companies and websites, you can't publize the address on a message board, website, or any place that can be automatically stolen by some program.
On my personal email, I get no spam at all, and my web email, I just get the odd one now, it isn't hard, just don't give your address away. I am sure some of it is due to my ISPs filtering techniques, as I can not receive a legit email from someone in russia.
is to start charging per e-mail from the sender. Once this occurs, then watch spam die out.
....Until either or both of two things happens: One, spam stops; or Two, filters become foolproof. Neither is likely to happen in the forseeable future. Speaking from the standpoint of someone on the very front line of the spam wars, I can tell you that things would be a HELL of a lot worse if it weren't for blacklists. The only language a spam-friendly provider speaks is money-- he isn't interested in your frea speach rights, or even the spammer's-- he's only interested in collecting the checks every month. The usual method of fighting spam is to complain to the rogue ISP, but when that doesn't work (and I could list a number of 'mainstream' providers and backbones where it doesn't) then you have to escalate things. Anti-spammers and the blacklists they maintain are the internet's immune system. They are a natural consequence of how yours and my email boxes have become nearly unuseable because of bulk mail. The only way to bring rogue ISPs into line is by economic pressure, applied by lists such as spews.org and a vanishing subscriber base.
The problem with requiring a pass phrase is that people need to then remember it. And they won't. Second, if I want email from certain companies (and I do) then they won't remember it. So... I'd get email from no one! (re-thinks.... oh yeah, it DOES work! :P)
We should have a block list.. (in existance)
then an allow list to cover errors to the block list, then another block list, then another allow list... and on and on..
The idea is that everyone will appeal the denial list, but then the people who do spam will be put back on it really quickly.
Please use [ informative / summarizing ] SUBJECT LINES
Flame me here
I don't necessarily disagree, I just want to know where I can find the numbers, I might want to cite them some time.
Short of genocide against psychopaths we will continue to have a plague of spammers for at least
Why not limit the genocide to repeat spammers?Or simply remove all the civil rights of repeat spammers and let Darwin deal with them.
Tech Public Policy stuff
Danny.
I have written over 900 book reviews
What do you know, I use TMDA too... Now, will our TMDA's get into an infinite loop asking each other for acknowledgements? If not, then I forge spam to look like a TMDA acknowledgement. And, tough luck.
Another thing about this that bugs me is that it doesn't save any time or solve any problems, it just pushes the problem onto someone else. That is not a solution.
I refuse to respond to any TMDA or other robot autoreply. You use it, and you're immediately added onto my blacklist and bitbucketed.. A blacklist of people who value other people so little that they should be ignored.. A blacklist that is public.
People learn the way of the wise spam killelr..
The spammers wil try to fake your ISP header, the one where they list version of mail package and etc..
Waht I do is compare that to the real header that my isp produces..
It eliminates 90% of spam
How? Is real person who actually needs to get a hold of you going to go to all that trouble of faking your isp mail header? NO!
Another tactic that wokrs sometimes..is if the actual person doing the spamming is reachable.. send them a polite note that you charge for UCe messages and that you are posting theri email with full headers for full viewership on the web..:)
Don't Tread on OpenSource
Unless there is collateral damage,
there is no pressure on ISPs that host
spammers.
If we could block spam from sprintlink 100%
accuracy without blocking sprint as a whole, then
that frees sprint to sell to more spammers while
we take on the cost. (Or uunet, etc....)
It's only when sprint loses customers because they
lose connectivity that it will take action.
as the one you registered with your domain, just set up your filters to deny any direct mailings with "if To doesn't contain @yourdomain.com, deliver to junk"
It's a myth that banning .cn spam is hurting dissidents. They can still surf the web and use 3rd-party web- based email. I ban all email from all Chinese, Hong Kong, Japan, and South Korean IP address blocks. I still get email from Chinese asking for technical help (Solaris on Intel and what not), which I answer.
So I thought people ignored my mail because they were assholes (I live in Hong Kong, therefore I must use a HK ISP). Instead, it's worse, they're blocking mail from 6 million people because some American MLM turd routes spam through some naive ISP here.
I've been experimenting with a few different filtering techniques at work, trying to slow down an increasing flow of spam coming in to some of our users. I thought I had finally hit upon the perfect combination, using ORBS, Dorkslayer, and other RBL's, combined with some Exim filters I cobbled together. All was well, no spam at all, until I began getting complaints about customer emails getting bounced. We're a software company who sells personalization software, and (imagine this), more than one of our customers or potential customers are blacklisted spammers. Our sales folks were none too happy with my explanation that "targeted mailings" or "personalized marketing" are marketing-speak for spam, soooo.... I added logic to my filters to allow everything to pass through for all the sales staff addresses. Kinda hard to fight spam when your employer is trying to make spam "better".
[insert witty comment here]
Do you know what an ironic sentence is?
IANAL but write like a drunk one.
I suggested keeping the passphrase in one of the fields in their address book. I also suggested automatically passing e-mail from e-mail addresses when necessecary. It's not a good idea to do so for individual's e-mail addresses, but you are not likely to be getting spam or viruses from companies. Just make sure you minimize the number of addresses passed through unchecked. Otherwise, spammers and e-mail viri may just spoof a source address (like support@microsoft.com) that many people allow through.
"The SPEWS system is unapologetic about false positives and even regards them as a plus. They've taken the 'ends justify the means' argument way farther than I've seen anyone else take it," Donea said.
Absolutely. I work as the Technical Support Manager at a web hosting company, and handling abuse complaints falls into my realm of responsibility. I have a team of employees who handle the complaints themselves, and I work closely with them and our Network Operations staff to make sure we keep our network as spam-free as possible. I am known to be very militant about getting rid of spam and spammers from our network, as is our Network Operations Manager. We shut down as much as possible, and respond as quickly as possible to complaints.
But that didn't stop us from getting placed on the SPEWS blacklist for several days recently. The reason? Because we "ignored" complaint emails about a spammer. The fact that we had already acted upon the complaint emails was irrelevant to the SPEWS people, apparently.
Thousands of our customers were affected by this blacklisting, as SPEWS decided to block our entire IP range.
And when we politely asked to be removed (and provided legitimate justification for our removal) it was suggested by someone on the newsgroup that we should remain on the blacklist for at least a month as punishment. Thankfully, someone at SPEWS disagreed, and removed us.
We would have had no recourse if they'd chosen to punish us in the manner suggested.
I would love nothing more than to remove spam completely from the Internet. I would love nothing more than to see the people who spam get punished. But how is it fair that an anonymous group of people can completely shut down a portion of our business without reason? And how is it fair that if they do blacklist us, the only way we can get in the clear again is to beg on a newsgroup and pray that the anonymous people on the other end are in a good mood? At least with SpamCop and the like, hosting companies have the opportunity to respond to complaints.
Lots of people have commented that hosting companies and ISPs have a responsibility to keep their network free of open relays and evil spammers, and I agree. But I also believe that we should have the right to explain our actions, instead of being deemed guilty - and punished accordingly - until proven innocent.
Non-response from a hosting company and/or ISP when it comes to a spam complaint is unacceptable. But I believe that blocking a hosting company and/or ISP without consulting with them first is just as bad. We talk of spam being the equivalent of a DOS attack and about how terrible it is, and then fight back with pretty much the same tactics? It just makes no sense.
If only the SPEWS people agreed..