Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Next Step in Fighting Spam: Greylisting

Posted by michael on from the ideas-are-a-dime-a-dozen dept.

Evan Harris writes "I've just published a paper on a new and unique spam blocking method called "Greylisting". The best thing about it other than achieving better than 97% effectiveness in blocking spam, is that it practically eliminates the main problem of other solutions: the false-positive. There's even source code for an example implementation written as a perl filter for sendmail, along with instructions for installing, so you can get up and running quickly."

5 of 481 comments (clear)

  1. Time critical by Synithium · · Score: 5, Insightful

    Time critical mailing will go out the window. I can see how this might make any corporate user irate. The same thing goes for challenge-response, the time delay in the business world is unacceptable.

    This would be great for personal mail, but that's about it. ISPs would have the same problems with it because their business-class users most likely use the same servers as their consumer-class users.

  2. spam.....hrmmm by chef_raekwon · · Score: 5, Insightful

    with all of these solutions to spam..and all of the spam now flooding mail servers...

    isn't it time to change the specification (RFC) and possibly the manner in which our current system works? i haven't come up with anything yet, but surely there must be some sort of handshaking/secure type connection that could be used - - some sort of postage (free) that is encrypted into the mail, that states that it is genuine....kind of like the hologram on those windows cds...

    i dunno. file this story under redundant.

    --
    We're like rats, in some experiment! -- George Costanza
  3. Easy for end-users, sure. by Medievalist · · Score: 5, Insightful
    Just encode your e-mail address on web pages & don't sign up to any dubious mailing lists.
    Many of us must maintain contact addresses in the global whois database - so that people can contact us when something is broken.

    Look at it this way: you can stop crank calls by unlisting your phone numbers. But you can't unlist the hospital, the ambulance service, the fire department, etc.

    We're not all end-users. Some of us are the plumbers.
  4. Delaying email by one hour! by pjrc · · Score: 5, Insightful
    From the linked paper:

    An hour is short enough that in most cases, users will not notice the delay.

    I'm wondering how I'm going to explain that to a new customer over the phone who says "I'll just email that file right now so we can go over it together".

    --
    PJRC: Electronic Projects, 8051 Microcontroller Tools
  5. One good point about this proposal by Anonymous Coward · · Score: 5, Insightful

    It deals with spam at the server level. All the wonderful user-level solutions don't do jack to stop spam from being sent. Look at the numbers the spammers show for return rate, and look at how fast spam programs can go, and you'll see that the only solutions that will work are those that make it expensive to send spam. Anything else will just make the spammers send more spam to try and get the hit rate they need.