Slashdot Mirror

← Back to Stories (view on slashdot.org)

Turing Tests to Stop Spam

Posted by CowboyNeal on from the human-authentication dept.

cexy writes "The Register has a story about how Hotmail and Yahoo! are using Carnegie Mellon developed captcha technology (completely automated public Turing tests to tell computers and humans apart) to stop spammers from automating signups for accounts from which they can send spam. These guys are using captcha too, but to stop incoming spam."

17 of 279 comments (clear)

  1. CAPTCHA project by nekdut · · Score: 5, Informative

    For those who dont know, The CMU developed captcha project is great. Check out their work here:

    http://www.captcha.net/

    1. Re:CAPTCHA project by fgodfrey · · Score: 4, Informative

      Err, so from what I understand (my brother worked on this project briefly) this is basically an academic research project, that has some commercial uses. As such, CMU's CS department is interested in publishing papers, not code. The code for projects like this gets written more as a proof of concept than as a production ready set of code. So, if you want to use their code, it's going to be harder than just typing "make install". Remeber, this is code coming from the CS research department at CMU (which is quite good, I might add!), not the people who do Andrew (the academic computing environment that is more like "production code" - see the Cyrus mail system as an example of their code).

      --
      Go Badgers! -- #include "std/disclaimer.h"
    2. Re:CAPTCHA project by js7a · · Score: 5, Informative
      what are the terms of their license?

      First of all, the largest sole source of CAPTCHA funding is the National Science Foundation, so if you are a U.S. taxpayer, you are paying for this work.

      Having said that, the rights to and interests in NSF-sponsored work are very much up in the air, nowhere moreso than the Carnegie Mellon School of Computer Science. The Dean is said to have a somewhat different view than the Provost, who is probably not in agreement with the President, and the Board of Trustees are clearly all over the map on the issue, too. CMU is a study in contrasts when it comes to intellectual property opinions. CMU switched intellectual property policies exactly three days after I entered (yeay for freshman camp -- I knew it was worth the extra few bucks!) and the new (1985) one is draconian yet astoundingly vague. So, the authors might not even know the actual rights under which they are allowed to distribute their software. Noboday may know -- often an ajudication committee is required to make an arbitrary decision on a case-by-case basis.

      However, principles of academic freedom have repeatedly trumped the Intellectual property policy, and that means that the researchers have the right to publish their code as sceintific research results, without restriction which is what they have apparently done. The scientific method requires absolutly no restrictions on such results (so as to allow for unimpeded replication), which means that the code is in the public domain. Even if it is released under copyright or GPL later, it is still in the public domain.

      I am not a lawer, but years ago I paid a lawyer to answer a related question and I am faithfully repeating his answer above.

  2. I find Yahoo to work much better though... by saskboy · · Score: 5, Informative

    I've only had my Yahoo account since last year and my Hotmail account since 1997, so this may not be a fair comparison:
    Yahoo spam today:
    0

    Hotmail spam today:
    18

    Which is doing a better job at stopping spam you say?

    --
    Saskboy's blog is good. 9 out of 10 dentists agree.
  3. Re:Yahoo works, hotmail not by EmagGeek · · Score: 4, Informative

    I've run the "Hotmail Test" several times and every time, I get spam within 4-5 days of opening the account. Even if I never ever send an email, the amount of spam grows approximately linearly with time... it only takes about 2 months to exhaust your 2MB quota daily....

    At least that was the case the last time I ran this little experiment...

    It's no secret, at least it shouldn't be, that Micro$oft is making money selling your hotmail address (yet then they spam you with advertisements for their spam-blocking software)...

    *sigh*

  4. ****** SPAM ****** SpamAssassin Plug by sulli · · Score: 5, Informative

    I have SpamAssassin at my isp (Verio) and it kicks ass. Probably a false positive per week (and that's often a slashdot Daily Stories email), and a false negative every 3-4 days. Pretty damn good. Cut inbox crapola from 10-20 per day to, well, zero.

    --

    sulli
    RTFJ.
  5. Think the editors could pass a no-repeat test? by Froze · · Score: 5, Informative

    Now if they could just come up with a turing test for slashdot
    repeats!

    http://developers.slashdot.org/article.pl?sid=02 /1 2/30/1740211&mode=thread&tid=111

    Granted this is not a direct repeat but the articles are just different sources for the same story.

    --
    -- The morphemes of your disquisition are ascertainable, but they have eschewed an ambit of transpicuous exposition.
  6. Re:Yahoo works, hotmail not by b0r1s · · Score: 5, Informative

    Even if I never ever send an email, the amount of spam grows approximately linearly with time... it only takes about 2 months to exhaust your 2MB quota daily....

    You must have some bad luck. I've got a hotmail account I've used consistently for two years, and I'm typically around ~10% of my quota.

    Either you're advertising your email address, or you've got some really easy to guess address, because the behavior you describe is far from typical.

    --
    Mooniacs for iOS and Android
  7. Re:The first step is stopping it from getting ther by geekoid · · Score: 5, Informative

    click mail options:
    go to
    "Enter email address (or domain) to block:"
    enter domain in text baox, such as
    whatever.com

    click, add block

    --
    The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
  8. Re:Yahoo works, hotmail not by Andorion · · Score: 3, Informative

    When you sign up, if I remember correctly, hotmail used to have an ENABLED option to share your email address... you had to go into options and disable it. Also, make sure you're not signed up for any newsletters or other crap. I've created multiple hotmail accounts, and never get spammed until I use that address somewhere.

    -Berj

  9. In Mozilla News.. by bahwi · · Score: 3, Informative

    Well, it's not, but you know...

    Mozilla now comes with it's own Spam Filter starting with 1.3Alpha. Anyone know how well it works? I haven't had a chance to try it.

    Think this is off topic? Read the last line of the slashdot story and click the link, where you can take a "Free 30-Day Trial!!"

    =)

    1. Re:In Mozilla News.. by TheBishop · · Score: 5, Informative
      I have been building the 1.3 from source routinely just to get access to the mozilla spam filter.

      I have this to say about it

      GET IT.

      I trained it on a corpus of spam I've been keeping around for just such a purpose (about 300 messages, not a lot really). Since then I have been giving it minor corrections to tag new spam and it is nearly perfect. No false positives. The interface is easy to use.

      If you use Mozilla now for Mail, you owe it to yourself to start using the 1.3a. If you're using something else, it's worth looking at Mozilla.

  10. Shameless OS X Plug by Galahad2 · · Score: 3, Informative

    Mail.app's filtering is fantastic. I only look at around one spam message every two weeks, and I've only had one false positive (which was adveritising something, as it was) in the year and a half that I've been using it. The filter is probably too CPU intensive to use on any large scale, though.

  11. Links to previous Slashdot stories on CAPTCHA by yerricde · · Score: 3, Informative
    See also:
    --
    Will I retire or break 10K?
  12. REALLY old news by quintessent · · Score: 4, Informative

    Turing test is a bit of an exaggeration. They have you look at some garbled text and type what you see. And it's been going on for a very long time.

    The Register article had absolutely nothing of value to add. As you were.

    --
    Donate background CPU time to fight cancer.
  13. the mousetrap race continues... by dwoolridge · · Score: 3, Informative

    Some people have already produced excellent results in breaking visual CAPTCHAs.

  14. Re:captcha stops blind people too by leob · · Score: 3, Informative

    They know that. The blind people can call a phone number and assert that they are blind. An ALT tag that explains the purpose of the picture and mentions the phone number will be enough.