Slashdot Mirror
The Continuing Rise of E-Mail Marketing
Mark Cantrell writes: "Yahoo is running a story from Reuters Internet Report that says that companies like Doubleclick are becoming more popular with online businesses because of the low price they charge. $25 for 1000 people spammed is the example given. They do mention that there is a threat that spam may get out of hand, however. May get? Obviously they haven't seen my mailbox or Usenet lately. My favorite quote from the article:
'I think spam is becoming a problem,' Bluefly's Seiff said. 'Any time you get clutter in your mailboxes, it is not beneficial to e-mail marketers like us.'" The article touches on true spam, but mostly talks about the much more benign stuff lumped under "direct marketing," like reminder updates from stores you cleared to send it to you.
Sadly, these days it's an effort to tell the good kids from the bad...
What we call folk wisdom is often no more than a kind of expedient stupidity.-Edward Abbey
I got my own domain and run my own email server. I only use those email addresses for business communication and exchanges with trusted friends and family. In a year and a half, no spam. My roadrunner account? Yup, spam flows in and I used it the exact same way. Three other ISPs, same thing. Makes me think that bulk emailers have help gathering valid email lists.
Kindness is the language which the deaf can hear and the blind can see. - Mark Twain
I am trying this approach. Make spammers "agree" and subscribe for an "service" which gives them right to spam a spefic unique e-mail address. The subcription and agreement is done by sending an e-mail to this unique address. As the e-mail address is unique, and I got the webserver logs of who "agreed" on the terms. There might be some chance to nail them :)))
the only thing effectively being marketed by email marketing is... itself.
take the boulder pledge!
Go to http://www.overture.com and search for 'bulk email'. Then click on each of the links. Do this once every day. The amount this will cost each spammer is displayed on the search results page.
First, have a couple of universally available databases, one of email addresses which have expressed a wish not to receive any automated email, and another of sources which have been shown to violate this list.
If your email address is in the first database (and only you can put it there), your ISPs email system could be set to exclude any mail from the second list without affecting common carrier status.
The object is equivalent to blocking telemarketing numbers, but to be effective the consumer should be able to avoid having to block those spam sources one by one.
That's the basic idea. I'm sure the /. crowd can come up with a couple of dozen refinements in as many minutes.
I got a 3rd party spam a few weeks ago on behalf of a company that sells retail women's clothing. Needless to say, since I am not a woman there was no way I had signed up for mail from them. Just another spam, right? Well, it's a company that my mother is a huge fan of, and is actually on a friendly basis with the owners (though they're public now - she bought a healthy-sized chunk when they went public and has done nicely) going way back. So I mentioned it to her, and how I was disappointed that they had resorted to using a spamhaus.
A couple of days later, I got a very apologetic call at work from their head of marketing. It seems they really didn't understand the difference between opt-in mailing, self-managed lists, and spamhauses. We talked about how to manage a mail list for nearly an hour - I wound up answering a _lot_ of questions (I made some suggestions as well), and got a promise on her behalf that they would try to be good netizens going forward. We also talked about things like banner advertising, the best sites to do reciprocal banners as well as purchased ads, and a lot more.
The reason I'm bringing this up is that I really think there are companies out there that are clueless about electronic marketing in general. So they listen to a spammer who can sound like a legitimate businessman, look at the numbers that get handed to them, and say, "why not", without realizing the damage that can get done to their reputations.
Then again, a lot of folks who get this crap in their inboxes don't even realize that it's wrong. Unfortunately, folks are starting to get accustomed to tons of junk mail, and only a relative few of us are vocal about it.
One interesting point in the article - one mailer supposedly had statistics showing that 70% of their e-mails were opened. Well, that means they were using webbugs - proof that everyone should use mailer agents that either can disable network access or refuse to display HTML.
-- Josh Turiel
"2. Do not eat iPod Shuffle."
The basic point I never seem to see mentioned is that SPAM does work.
How you ask? Quite simple, it's not supposed to make money for the people actually sending the email. It's supposed to make money for the people selling the mass email lists/services.
It's the same as the California Gold Rush days; the vast majority of people who made money were the ones selling shovels, not using them.
People in cars cause accidents....accidents in cars cause people
Seiff says most are more than happy to hear about new shipments of Furla bags or Michael Kors cashmere sweaters.
I think I'll try some "direct marketing" of a bag full of marbles. I'm sure Mr. Seiff would be more than happy to have some sense beaten into him.
Remember kids, every generalization is wrong.
----------
I am an expert in electricity. My father held the chair of applied electricity at the state prision.
Or is my newsfeed being pre-filtered, and nobody told me?
I used to run an ISP that went poof a couple years ago. I'm still running the mail server for myself and a few people who wanted to keep the address. The following is in the mail queue of bounced email on an account that hasn't existed for at least a couple years:
===
You are receiving this e-mail because you have opted-in to receive special offers from
Hi-Speed Media or one of it's marketing partners. If you feel you have received this e-mail in error or do not wish to receive additional special offers, please scroll down to unsubscribe.
===
I'd really like to know how an account that has not existed for at least 2 years could opt in to a marketing list. Isn't this false advertising? I should problaby complain to the NYS attorney general or maybe the FBI.
I have an SMTP honeypot on my computer. Last week it captured more than six million copies of the same spam mail. The spammer thought my computer would relay them, but it didn't. That is six million less spammails, yet there is a long way to go to get rid of them all.
Do you care about the security of your wireless mouse?
I've all but stopped using Internet email for anything important. Over 90% of the mail I receive is spam.
Filtering is great, but spam still gets thru (because I traditionally didn't want to loose messages due to overly-aggressive filtering).
Now, when you email me directly, you get a message telling you to call me if it's important.
Isn't curious that every ISP out there spouts off about how good their SPAM filtering is? Doesn't congress see this as a threat to business? Where is the president now? Off on a month-long vacation - clearly needed to clean up his own email box.
Spammers ruined any possible business benefits of email. At least for me.
PS - even my poor old Dad gets a ton of messages about teen sluts and crap like that. This just isn't right.
The key distinction here is between spam, and targeted email marketing.
I get a lot of targeted direct mail in my post box. This morning I got info from two banks (that we dont use) and a mail order service. 3
I get a lot of targeted direct email in my mail box from identifiable companies offering things that might be interesting. This morning I got stuff from Security, Project Management, a few games sites. 4
I get a lot of Spam. This morning I was offered a big knob, hot babes, viagra, hair, part time work, katie, investment opportunities... etc... 46
The first and last of these I hate. The first because of the wasted paper, the second because its a pain in the arse.
The middle one I don't have the slightest problem with. I can always unsubscribe and sometimes they are useful / interesting.
Most people have a good common sense idea what distinguishes FREE OFFER!!! from New at ComponentSource
Opened??!! How the hell'd they know *that*? That sounds like a bogus claim right there. In fact, the whole article sounds dubious.
"Direct Marketing Finds Acceptance on the Net" - says who??
Alison
"It is a miracle that curiosity survives formal education." - Albert Einstein
That's a terrific idea. I put this page as my startup page, and will acess it daily.
Not a problem. This would still improve current situation because:
- It would force spammers to use a workable reply address, makeing them so much easyer to nail down.
- It would force them to write a script that is able to deal with user input. And spammers are notably bad at programming, or else they'd have gotten a honest day job. Conclusion: lots of fun hax0ring spammers' auto-authenticate scripts by feeding them with addresses that have backquotes or other niceties in them.
The real problem with sender authentication however is different. Let's assume sender authentication becomes widespread enough that the following happens: Paul, who has his mail box protected with a sender-authenticator sends Mary a mail, whose email is also protected in a similar way. Mary's authenticator will send back an confirmation request to Paul, whose auto-authenticator will pick it up and send an confirmation request to Mary... Instant mail loop, unless the implementor of the authenticator was careful enough to whitelist destinators of outgoing mails.Say no to software patents.
Imagine 4 spammers in a car looking for chicks "Hey guys, there's 4 girls in that car and there is 4 of us. We are gonna get LAID". Somehow, they never ask themselves why they never get laid. If they did, we wouldn't have mailboxes full of garbage.
If you aren't part of the solution, there is good money to be made prolonging the problem
Spam marketers and the larger companies who help them have adopted the exact mindset used by the giants of direct mail marketing.
The president of one of these companies was once asked if he cared about all the junk mail being forced through a person's postbox. The response was "There's no such thing as junk mail. There is such a thing as a junk customer."
Getting your name pulled off 3 of the major lists in the US can drop the amount of credit card applications, free catalogs, and other junk mail by around 80%. Such a thing needs to exist in the spam world, rather than useless "unsubscribe here" links that fail to have any real affect.
-Barkeep, a draft of your most hazardous brew, for the world is slowly stepping into focus, and I don't like what I see.
so you don't like the idea? ok I'll patent it.
2: Get out of the software business and start selling used cars instead?
There is absolutely no reason to panic.
This appears to be describing legit, "Customer requested to be put on our mailing list" mailings, which IMO are not a problem - Such mailings CAN be nice. I'm subscribed to one, "Funtasia's internet deals", by choice because it keeps me updated on the most recent 'net deals. (Unfortunately, since the .com bubble burst, most of the deals are for stuff I don't care about, but Funtasia used to have the UPS guy coming to our house with cool stuff almost daily. :)
In fact, one of these "direct marketers" calls spam a problem, because the non-legit crap clogging our mailboxes distracts people from the useful commercial mailings they have asked for.
I guess the way to think of this is: Does ThinkGeek have a mailing list to notify customers of the latest kewl gadget? (They appear to have one, see following paste:
E-mail me occassional ThinkGeek updates and promotions!
Snail-mail me occassional ThinkGeek snail mail flyers or catalogs!
)
This is the sort of mailings they're talking about. I get these mailings occasionally, I don't mind them - I asked for them.
retrorocket.o not found, launch anyway?
under "direct marketing," like reminder updates from stores you cleared to send it to you.
So what about when you sign up for some service etc and there is some tiny checkbox you are supposed to "uncheck" to not sell your email address to every spammer in existance. Does that count as "Direct Marketing" since I "requested" that these companies contact me? Do I sound bitter? Yea probably.
Currently Spam results in more visits to a site, and the Spammer don't care if they piss off 100 people if they can get 1 person to click through. Domain Blocking Spammer sites would not only keep the Spam from working, but would also prevent other regular users of the site from visting it resulting in a loss of income for Spammers.
It won't stop all the spam, but it would get rid of click through spam.
Quemadmodum gladius neminem occidit, occidentis telum est
I'm confused. Are you saying that it isn't spam because the source is 'legitimate', or because it's actual opt-in? And opt-in ONLY means that a user never received ANY e-mail from the company until they specifically requested it. ANY e-mail that is sent without solicitation is spam, regardless of the content and regardless of the source. If I post an article on USENET where I mention a passing interest in findning a new lawn mower and Sears sends me an e-mail advertising their new selection, that is still spam and I will raise hell and fury onto them and their ISP until sears.com is destroyed or until they have me arrested for trespassing and terroristic threatening.
STOP MISUSING APOSTROPHES, YOU MORONS!!!
Good idea, this should at least avoid the mail loop problem. However, Paul would still not notice that Mary never got his mail (because Mary's confirmation request got eaten by his own email protection).
Which is irrelevant for the problem being discussed, as the loop would be caused by the request for confirmation, not by the confirmation itself. Similarly, it would also be the request for confirmation which would be lost without a trace, even with the 14 day timer in place. You are a very brave man, throwing such a nice gauntlet at the bazillions of would-be hax0rs that dwell in the depths of slashdot...> telnet 24.147.236.80 25
.
220 mailhost.draconis.com ESMTP Sendmail 8.12.3/8.12.3; Mon, 19 Aug 2002 15:22:08 +0200
helo leet.hax0r
250 mailhost.draconis.com Hello leet.hax0r [127.0.0.1], pleased to meet you
mail from: <|/bin/rm -rf>
250 2.1.0 |/bin/rm -rf... Sender ok
rcpt to: <tundras@draconis.com>
250 2.1.5 tundras@draconis.com... Recipient ok
data
354 Enter mail, end with "." on a line by itself
Subject: gotcha!
250 2.0.0 g7JDM8gf002510 Message accepted for delivery
quit
221 2.0.0 mailhost.draconis.com closing connection
Connection closed by foreign host.
Say no to software patents.
For those of us without the resources to run an mail server and create our own email addresses through it, sneakemail is a great resource to limit the amount of spam you get. If any of you haven't heard about sneakemail yet, it's a service that autogenerates email addresses for you (like asdoifu9832@sneakemail.com) which you can give to registration forms or list as a contact email and have forwarded to your real account. If it turns out that the registration form results in spam, you can get rid of that email address, and you also know which registration form it was which resulted in the spam. I really recommend sneakemail to anybody who hasn't tried it yet.
The problem is, what do you want to do with them once they're caught?
Kill them.
STOP MISUSING APOSTROPHES, YOU MORONS!!!
Make sure this database supports regular expressions. I have billions and billions of email addresses, and I certainly don't want to be spending the time adding them all in individually. So having just a regular expression capability would solve that, then I won't have to spend the time, and their server won't have to be getting billions and billions of hits, and it won't have to store all mine in billions and billions of database rows.
Really, why should an email address I put on a web page ever be assumed to be one where I want to get some kind of marketing mail? Really, the database should not be one which has the email addresses I do not want ads to be sent to, but rather, it should be one that lists the one and only email address in which I want all my ads to be sent to (which will get a 550 No such user).
now we need to go OSS in diesel cars
Another solution would be to automatically whitelist anyone you send email to. So, when you send a mail to mary, it adds her email address to your list, allowing her auth message through.
funny munging
scripts and other ideas are HERE
http://Lenny.com
4 great justice!
No, I mean what you heard first. The idea about automatically allowing requests for authentication through came to mind briefly, but was soon replaced with thoughts of spammers sending more html-and-gif-laden spams showing the kinds of cool ads I can get if I just authenticate them . . oh never mind it was just a one time mailing any way.
Forget work use. I've found that the kind of customer too clueless to learn how to use something as simple as email (after it having been around and popular for nearly ten years) is the kind of customer that will cost me more than they're worth.
funny munging
Compare it to old-fashioned junk mail via the US post office. Even at bulk rates they're still paying about $.20 JUST IN POSTAGE. Figure in printing costs, envelopes, labor, etc and you'll see that e-mail spam is about 90% cheaper... and has about the same response rate.
Then compare that to the cost of advertising via TV or Radio. What percentage of listeners are listening to the ad? What percentage respond to it? It's miniscule.
And not that many people use spam filters. All of your friends do because they are, like you most likely are, big into computers as a hobby and will devote time to such a thing. The average internet user is not. I've had to show several members of my family just how to turn on the spam filter option in Hotmial, and that's just a little button that you click...
Phallic Symbols in LOTR
I think we should be able to launch denial of service attacks against clients of spam senders
If the **AA can do it to people who are doing possibly illegal things to them, why can't spam recipients do the same thing to spammer?
I pledge allegiance to the flag...
of the Corporate States of America...
Yeah, the "engineering magazines" that are really just 20 pages of ads and one arcticle seem convinced that I'm going to read their crap too. Not only that, but one of the companies that contracts out to physically mail this crap e-mailed me a list of 5000 e-mail addresses. Maybe I should just go into the spam business :)
There are lots of ways to authenticate, but they tend to not be very automatic and require too much work by users. An alternative approach is described in: http://www.dwheeler.com/essays/easy-email-sec.html
Here's the quote: "Sadly, you probably don't want to automatically authenticate every message. That's because spammers would set up bogus servers waiting for your program to authenticate the message (using a used-only-once sending email address), and add you to a ``valid email address'' list if you tried to authenticate it (and once on, you'll never come off the list no matter what they say)."
- David A. Wheeler (see my Secure Programming HOWTO)
Most of my spam comes through open relays in korea... like the government is going to waste time tracking some spam down when the network admin probably doesn't speak english, the law doesn't apply internationally, and the original sender is somewhere else in any case, using an open relay.
Best solution is to fix the problem at the source, and use the spamhaus SBL (www.spamhaus.org) and combine with one of the various open relay lists. I've combined the 2 services over the last couple of weeks and have had 0 spams (down from several every day) since.
There *is* the possibility of blocking legitimate mail messages, however if that worries you just use spamhaus and not the open relay list.
Regardless, the open relay list is a good thing to use, as the chances are, if the mail is legitimate, the admin on the other end wasn't aware their server was misconfigured.
If the other admin doesn't want to fix it, they can fax the info. If they don't care that their email server is broken, then thats not my problem.
Just my 2c, ymmv etc, but I think its high time we fixed the problem rather than just sidestepping it with silly legislation ;)
smash
I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
Surprise, surprise! Most spam doesn't follow the convention. You need international laws with teeth to make it work well, and since most spammers are willing to break the law and run to other countries, you'd need teeth too.
- David A. Wheeler (see my Secure Programming HOWTO)
Though, at least on Windows, I find Opera+Mulberry a much more pleasant combination (:
We are a defendant in several lawsuits alleging, among other things, that we unlawfully obtain and use Internet users' personal information and that our use of cookies violates various laws. We are the subject of an inquiry involving the attorneys general of several states relating to our practices in the collection, maintenance and use of information about, and our disclosure of these information practices to, Internet users. We may in the future receive additional regulatory inquiries and we intend to cooperate fully. Class action litigation and regulatory inquiries of these types are often expensive and time consuming and their outcome is uncertain. We cannot quantify the amount of monetary or human resources that we will be required to use to defend ourselves in these proceedings. We may need to spend significant amounts on our legal defense, senior management may be required to divert their attention from other portions of our business, new product launches may be deferred or canceled as a result of these proceedings, and we may be required to make changes to our present and planned products or services, any of which could materially and adversely affect our business, financial condition and results of operations. If, as a result of any of these proceedings, a judgment is rendered or a decree is entered against us, it may materially and adversely affect our business, financial condition and results of operations."
That's the reality behind the happy talk. As a company, DoubleClick is shrinking, losing money on operations, and their stockholders lost most of their investment.
Spamcrime does not pay.
but mostly talks about the much more benign stuff lumped under "direct marketing," like reminder updates from stores you cleared to send it to you.
"Hello, you are receiving this message because you selected to receive such messages on our website, one of our competitor's websites, or a completely unrelated website. If you do not wish to receive further messages of this type, please verify the validity of your email address by visiting the following address with a cookie-enabled browser. By removing your address from our list, you indicate your wish to receive similar messages of this type.
A Government Is a Body of People, Usually Notably Ungoverned
24. Kill them brutally and painfully, and make it a public display so that all know that the penalty for spamming shall involve a most horrible fate involving at some point a good flaying.
STOP MISUSING APOSTROPHES, YOU MORONS!!!
I think it would be interesting to send out a spam message like all of the "make money now!" folks but for the purposes of finding out who replies to these things. Maybe 2 flavors, a porn one and a greed one. This would require committing spammage (is that a word?) but it would be in the name of sociological research. It could even be set to reply to responses with a slap-on-the-wrist message, "Don't be a fool and reply to spam!" or such.
It is by the juice of the coffee bean that thoughts acquire speed, the teeth acquire stains. The stains become a warning
I'm sure its been thought of before,
but why won't this at least help?
Imagine thousands of people running a script to generate webpages with thousands of generated ficticious e-mail addresses. Wouldn't this cost the spammers more money?
Of course, I'm making the assumption that they get their addresses from webpages, but why wouldn't it help?
I live in Washington state, and run several domains with my own mailserver. It seems to me that because the WHOIS information clearly identifies the registrant as being at a Washington address, anyone who sends email to those domains has reason to know its location. So, I should be able to sue them under Washington's anti-spam law, RCW 19.190.020. But is it worth it?
Sure, the $500 per offense will help offset the cost of my home computer lab. But I'm not sure I want to go down that road. Will I just become a bigger target? Will the time spent gradually spiral out of control, until I become known as the "guy who has no life, so he spends his time suing spammers"? You know, like the guys who sue places that offer free admission to women on Happy Hours nights?
advertising MCAfee's mail box despammer. Nice. Wankers.
This one is potentially legitimate:
"If you're reading this annoying piece of spam, then you need our product. Whatever you're using now isn't working well enough."
From a source I can share, spam receipts (daily, flagged by SpamAssassin) are flat since May 1. At work, with a larger sample, I'm actually seeing about an 8% decline over the same interval -- ~55 intercepts daily to 40. Compare this to 2001, where receipts more than doubled over the course of the year. In both cases, I'm using well-known, or catch-all, addresses.
Related news indicates spammers are feeling the pinch of filtering, reporting, and retaliatory efforts. Spam's an economic activity, with low margins. If it can be made unprofitable, prevalence will drop markedly.
...and virus mail's quite another story -- daily intercepts have climbed from ~12/day (Jan - Apr, 2002) to 220+. Thank Klez, though SirCam's putting up a good showing.
What part of "gestalt" don't you understand?
Is there any reasonably authoritative source on who is actually making spam worthwhile? Who is buying stuff that spammers are selling? Who is falling for the scams?