Spam Archive opening FTP service December 4

Saint Aardvark writes "The FTP archives for spamarchive.org will be opening on December 4, according to this Wired article. But there already appear to be some archives available." I tried saving my spam for awhile just for giggles, but seeing that file grow to 100+ megs made me so angry I had to delete it. Currently getting ~200 spam every day, and now often they attach images so they are 100k+. Yay Internet!

Sigh

[Evil+Adrian]

I think the idea behind their site is nice, but I also think that more and more, people are realizing that the only way to really effectively block spam is to use whitelists -- no fancy schmancy algorithm is going to block spam for long.

It's a shame, because I'm pretty sure that ceaseless, unrelenting, brutal torture of known spammers would be equally effective, but is unfortunately illegal.

Re:Sigh

[m0i]

And even whitelists are not 100% reliable: new viruses/trojans may collect emails from addressbooks and send spam with the From field altered to appear like a friend of yours (likely to be in your addressbook..). Now even your friends will spam you! (or so it will seem).
As long as there's no M(ail)T(ransport)P(rotocol) which get rid of the overly S(implistic), without true authentication of the sender, we will get spam because email is public in the first place.
Maybe something like email cookies would be a first step in trying to establish a pseudo-authentication system.

Re:Sigh

[berzerke]

...If we can get the response rate from spam to drop from a quarter of one percent to maybe a tenth of that, we may start to get close to a position where spam actually becomes uneconomic. It's only by achieving that that we'll see the current volume of spam reduced...

I've been kicking around an idea to reduce the response rate, but don't know how to implement it properly (yet!). My idea is to setup what *APPEARS* to be an open relay. Spammer will try to send their garbage through it, but NOTHING will actually get delivered. That's gotta cut the response rate way down (to zero), plus saving a lot inboxes. If the response rate goes low enough, it becomes uneconomical to send spam and the spammers find a new line of work.

Anyone have any pointers for a Postfix installation?

Re:Sigh

[Jippy_]

Pick a word which will never be in a spam message

A single word might not be enough. Maybe a few words might be best. Here are a few that for sure would never be in any spam message

"Want a smaller penis?"
"Gain 30 lbs NOW!"
"Work from home and make mediocre cash!"
"This is a pyramid scheme and you'd be a gullible fool for joining. Act now!"
"Hi, I'm the Prince of Nigeria, and I'm trying to screw you out of all your money."

Yeah, those should do it..

Best of...

[Shymon]

Maybe we'll get some of the more creative spamers to run a "best of spam" series. coming to a mailbox near you this holiday season.

Re:Best of...

[giminy]

May I make a nomination:

Date: Wed, 16 Oct 2002 13:21:29 -0700
From: Jasjit Fok
To: names remove to protect the innocent
Subject: Do you hava a problem with Spam?

* REMOVES
JUNK EMAIL
* BLOCKS
ADULT CONTENT
* STOPS UNWANTED NEWSLETTERS
* PROTECTS
FROM VIRUSES

Tired of junk email? Now there is a cure!

In just 5 minutes, you'll be getting only the email you want and you'll
shield yourself from all unwanted junk messages. With the leading spam
filtering software SpamCatchers, you will be able to also protect your
family from offensive messages and save valuable business time in your
office.

Simply the best at stopping spam for email programs like Outlook, Outlook
Express, Eudora, Netscape and many others, this must-have protection is
hassle-free and secure.

Go to SpamCatchers!

SPAMCATCHERS IS THE LEADER!
SpamCatchers is the most advanced and accurate content filtering software
on the market. It will protect your legitimate email messages, and it
updates all preinstalled filters automatically. Just install it and
forget it!

You will always have a clutter- and spam-free inbox! Spam email is
quarantined in SpamCatchers' Spamviewer folder where it is later deleted
automatically.

SpamCatchers also:
Monitors and filters multiple email accounts
Lets you easily create your own personal filters
Lets you decide which newsletters you want to receive or block
Updates automatically its filters

INSTALLING SPAMCATCHERS IS EASY, EVEN FOR A NOVICE COMPUTER USER!

THIS IS OUR SPECIAL INTRODUCTORY OFFER FOR YOU:

Put SpamCatchers to work for you - it's simply the easiest, fastest
and most powerful way to stop annoying, intrusive and time wasting email
messages. Order it now: starting $37. Satisfaction guaranteed!

Click here: SpamCatchers

Sincerely,
SpamCatchers Ltd.

__________________________________________________ ______________

You received this email because you signed up at TQM-Internet's website
or you signed up with a party that has contracted with TQM Internet
Direct (ref # 52417). To unsubscribe click here
www.tqm-internet.com/remove.htm. The products and/or services advertised
in this email are the sole responsibility of the advertiser, and
questions about this offer or its product or service content should be
directed to the advertiser. (C) 2002 TQM-Internet, Inc. All rights
reserved.

How about subscriptions?

[Zayin]

I think they should just go ahead and provide a subscription email service. That way, people can get the spam right in their inbox, instead of having to download it through ftp.

Re:just wondering

[picz]

Who gets most spam?

People with public e-mail addresses do. Try writing a few usenet articles and have your e-mail address on a web site and wait for the spam to emerge.

Thank God for SpamAssassin

Only 200?

[nurb432]

I get that much on my PERSONAL account, and i also 'manage' spam for a 10K user base..

Somedays, ALL I get done is dealing with spam.

Too bad we cant bill them back for my salary, and lost network resources, like we can do for un-requested faxes.

And arrest them for sending porn with out verifying a person's age. Around here, you would be either fined ( bookstore ) or arrested ( individual ) for trying such a stunt in 'real life'.

Spammers attack archives with copyright threats

[Richard+W.M.+Jones]

As reported in Ask Slashdot (but it didn't make it to the front page), the Great Spam Archive (est. about 3 years ago) has just received a threat of legal action from a spammer over, of all things, copyright infringement.

Rich.

Re:I don't by any means

[odaiwai]

SpamAssassin is rule based and doesn't as yet use this new, dubios, spamarchive. It can use Vipul's Razor, however, as well as SPEWS, SpamCop, etc.

dave

Re:just wondering

[aallan]

who actually gets loads of spam every day? I get about 3 per day (3 too many!). You always hear about these poor suckers getting 200 or so a day, but how many of us actrually have to put up with that much stuff?

According to my filter logs I'm currently getting between 100 and 150 spam messages a day, I'm currently using RBL and SpamAssassin to filter my inbox so I usually only see 2 or 3 a week out of this total. Its still annoying though,

Just because you don't get any spam, doesn't mean everybody else isn't geting any...

If I got that much, I'd just switch email accounts, cos I just wouldn't put up with it.

Some people just don't have that option, you can't change your work email address, I know I certainly can't change mine...

Al.

Allready been done

[burts_here]

They allredy did this once, its located at www.hotmail.com

It doesn't take that much time

[mrneutron]

I also manage email for 10,000+ users. And I do a lot more than that; it simply does not take that much time if you handle things properly.

For corporate-wide spam blocking, sendmail has some great spam filtering features via DNS Black Lists (dnsbl). I use spamhaus.org and relays.osirusoft.com.

Add these lines to your sendmail.mc:

FEATURE(dnsbl, `sbl.spamhaus.org', `"550 Mail from " $&{client_addr} " rejected, see http://www.spamhaus.org/"')dnl

FEATURE(dnsbl, `relays.osirusoft.com', `"550 Mail from " $&{client_addr} " rejected, see http://relays.osirusoft.com"')dnl

There goes 90+% of the problem. After that, spamassassin handles the 10% that trickles through quite nicely.

If you don't use sendmail, all other modern mail relays can handle this problem in similar ways.

What about examples of legit mail?

[afinn]

If people are going to use this archive to automatically induce rules for recognising junk mail (e.g. using naive bayes or ripper), then they will also need at least as many examples of legitimate mail.
Of course it could be useful for evaluating classifiers built using smaller corpora.

Re:Yay Internet ?

[Cheese+Cracker]

It's not the net's fault. Blame (or shoot) the spammer's.

Well, some people ask for it by using their personal email account for signing up on sites, posting on usenet etc. Use an email account for these purposes, and the personal email account for friends and family. I don't receive any spam on my personal email account. :)

Re:Yay Internet ?

[LinuxHam]

Some of us have been on Usenet since long before that meant we were "asking for it". That damage can't be undone.

Re:just wondering

[IamTheRealMike]

Please please please setup Vipuls Razor - that we can all benefit from the spamminess of your account!

osirusoft.com can be overzealous

[__aanonl8035]

Are you sure you investigated exactly
what osirusoft does?
I fint it unfortunate that so many
administrators seem to put in osirusoft
as a blacklist without examing what it
does. Osirusoft combines the blackhole
listing of many many other blackhole
listings, one of which is unfortunately,
SPEWS. SPEWS in my opinion is
overzealous with blacklisting and it
is unfortunate that osirusoft includes
them in its list. To read more about
the problem, read this posting
here

here is a relavent quote...

ii. a grep on osirusoft - which yields about 1/2 the messages -
but.. when there's a false positive, there's a really good chance that
it's in this group - and of this class of false positives, there's a close
to 100% liklihood that it's SPEWS that's given the false positive

You can alos check out antispews.

Blame the Victim

[fmaxwell]

Well, some people ask for it by using their personal email account for signing up on sites, posting on usenet etc.

Yeah, like those rape victims that were asking for it by wearing short skirts.

Nobody 'asked for it'. Don't you even resent the fact that spammers have made it impossible to post on Usenet with a legitimate e-mail address? Doesn't it piss you off that you have to be paranoid if some less-computer-savvy friend tells some web site to mail an article to you or sends you an online greeting card? Don't you get annoyed that every e-mail address that you post, no matter for what reason, get spammed?

Blame the criminals, not the victims.