Turing Tests to Stop Spam

cexy writes "The Register has a story about how Hotmail and Yahoo! are using Carnegie Mellon developed captcha technology (completely automated public Turing tests to tell computers and humans apart) to stop spammers from automating signups for accounts from which they can send spam. These guys are using captcha too, but to stop incoming spam."

CAPTCHA project

[nekdut]

For those who dont know, The CMU developed captcha project is great. Check out their work here:

http://www.captcha.net/

Re:CAPTCHA project

[fgodfrey]

Err, so from what I understand (my brother worked on this project briefly) this is basically an academic research project, that has some commercial uses. As such, CMU's CS department is interested in publishing papers, not code. The code for projects like this gets written more as a proof of concept than as a production ready set of code. So, if you want to use their code, it's going to be harder than just typing "make install". Remeber, this is code coming from the CS research department at CMU (which is quite good, I might add!), not the people who do Andrew (the academic computing environment that is more like "production code" - see the Cyrus mail system as an example of their code).

Re:CAPTCHA project

[js7a]

what are the terms of their license?

First of all, the largest sole source of CAPTCHA funding is the National Science Foundation, so if you are a U.S. taxpayer, you are paying for this work.

Having said that, the rights to and interests in NSF-sponsored work are very much up in the air, nowhere moreso than the Carnegie Mellon School of Computer Science. The Dean is said to have a somewhat different view than the Provost, who is probably not in agreement with the President, and the Board of Trustees are clearly all over the map on the issue, too. CMU is a study in contrasts when it comes to intellectual property opinions. CMU switched intellectual property policies exactly three days after I entered (yeay for freshman camp -- I knew it was worth the extra few bucks!) and the new (1985) one is draconian yet astoundingly vague. So, the authors might not even know the actual rights under which they are allowed to distribute their software. Noboday may know -- often an ajudication committee is required to make an arbitrary decision on a case-by-case basis.

However, principles of academic freedom have repeatedly trumped the Intellectual property policy, and that means that the researchers have the right to publish their code as sceintific research results, without restriction which is what they have apparently done. The scientific method requires absolutly no restrictions on such results (so as to allow for unimpeded replication), which means that the code is in the public domain. Even if it is released under copyright or GPL later, it is still in the public domain.

I am not a lawer, but years ago I paid a lawyer to answer a related question and I am faithfully repeating his answer above.

I find Yahoo to work much better though...

[saskboy]

I've only had my Yahoo account since last year and my Hotmail account since 1997, so this may not be a fair comparison:
Yahoo spam today:
0

Hotmail spam today:
18

Which is doing a better job at stopping spam you say?

Re:Yahoo works, hotmail not

[EmagGeek]

I've run the "Hotmail Test" several times and every time, I get spam within 4-5 days of opening the account. Even if I never ever send an email, the amount of spam grows approximately linearly with time... it only takes about 2 months to exhaust your 2MB quota daily....

At least that was the case the last time I ran this little experiment...

It's no secret, at least it shouldn't be, that Micro$oft is making money selling your hotmail address (yet then they spam you with advertisements for their spam-blocking software)...

*sigh*

****** SPAM ****** SpamAssassin Plug

[sulli]

I have SpamAssassin at my isp (Verio) and it kicks ass. Probably a false positive per week (and that's often a slashdot Daily Stories email), and a false negative every 3-4 days. Pretty damn good. Cut inbox crapola from 10-20 per day to, well, zero.

Think the editors could pass a no-repeat test?

[Froze]

Now if they could just come up with a turing test for slashdot
repeats!

http://developers.slashdot.org/article.pl?sid=02 /1 2/30/1740211&mode=thread&tid=111

Granted this is not a direct repeat but the articles are just different sources for the same story.

Re:Yahoo works, hotmail not

[b0r1s]

Even if I never ever send an email, the amount of spam grows approximately linearly with time... it only takes about 2 months to exhaust your 2MB quota daily....

You must have some bad luck. I've got a hotmail account I've used consistently for two years, and I'm typically around ~10% of my quota.

Either you're advertising your email address, or you've got some really easy to guess address, because the behavior you describe is far from typical.

Re:The first step is stopping it from getting ther

[geekoid]

click mail options:
go to
"Enter email address (or domain) to block:"
enter domain in text baox, such as
whatever.com

click, add block

Re:In Mozilla News..

[TheBishop]

I have been building the 1.3 from source routinely just to get access to the mozilla spam filter.

I have this to say about it

GET IT.

I trained it on a corpus of spam I've been keeping around for just such a purpose (about 300 messages, not a lot really). Since then I have been giving it minor corrections to tag new spam and it is nearly perfect. No false positives. The interface is easy to use.

If you use Mozilla now for Mail, you owe it to yourself to start using the 1.3a. If you're using something else, it's worth looking at Mozilla.

REALLY old news

[quintessent]

Turing test is a bit of an exaggeration. They have you look at some garbled text and type what you see. And it's been going on for a very long time.

The Register article had absolutely nothing of value to add. As you were.