Slashdot Mirror

← Back to Stories (view on slashdot.org)

FTC vs. Open Relays, round 2

Posted by michael on from the drop-in-the-bucket dept.

mbrain writes "PC World is reporting on a new federal program run by the FTC to close relays and proxies that serve as spam gateways. It's called 'Operation Secure Your Server'. The FTC will publicize this program by... sending tens of thousands of emails." I think it's a continuation of this program.

21 of 255 comments (clear)

  1. How many can they find? by digitalvengeance · · Score: 4, Interesting

    I have to wonder how many owners they will be able to successfully contact. It has been a long time since I've actually seen a WHOIS record listing a valid email address. Plus, popular registration services like Dotster now offer email masking as a standard part of domain registration.

    I think this is mostly due to the trend of spammers attempting to "steal" domain registrations by doing thousands of WHOIS searches and contacting domain owners.

    --
    How many roads must a man walk down? 42.
    1. Re:How many can they find? by ericspinder · · Score: 2, Interesting

      Why not postmaster@[offending IP ADDRESS] (or a nslookup of that IP address) or simular role accounts. Also, the registars do have their contact information. I doubt if most registars would not honor a FTC "request" (if they know what's good for them). ISPs would stand in line to give up contact information for Open Relays on their network, as they are a network problem.

      --
      The grass is only greener, if you don't take care of your own lawn.
    2. Re:How many can they find? by kyndig · · Score: 3, Interesting

      I host a domain name which has been rumpled for the past 3 years. I developed a script to detect open relays and block them. This list is currently 25,000+ entries in my fire wall. They don't need to send out emails, just ask for a list of open relays from host providers. Just a basic website with a frontend to a database storage would suffice. This would allow host providers to input lists of open relays which can be verified by automated scripts.

      --
      My Thoughts, Kyndig
  2. I foresee some problems with this... by bc90021 · · Score: 4, Interesting

    People who have open relays (in most instances) are either too stressed or too ignorant to understand what that means, and getting a letter from the FTC won't change that (in most instances.)

    The FTC can only suggest that the relays be closed. Until they have some form of enforcement, there is nothing preventing those with open relays from ignoring the emails (assuming this is the rare situation where the above does not apply).

    This doesn't take into account that some of those relays may be there on purpose, as in ISPs possibly colluding with, and also possibly profiting from, spam.

    --
    libertarianswag.com
    1. Re:I foresee some problems with this... by duncanatlk · · Score: 2, Interesting

      There is nothing to prevent me from operating an open relay, intentionally or accidentally. There is nothing to stop you from blocking mail from my relay, by using a trustworthy, and hopefully accurate RBL.
      We need a new, or better, or replacement for, the current protocols.
      The whole internet experience is being ruined by the barrage of SPAM, adware, spyware, popups. Why the heck should we have to deal with this?
      A brand new (Windows) computer is polluted all to hell within an hour of connecting to the net. This is outrageous!
      I can clean up this crap in no time, but what about the average user - no chance!
      Frankly, I'm sick of it.
      I don't know what the answer is, but I do know there are people out there who do.

    2. Re:I foresee some problems with this... by dev11 · · Score: 4, Interesting
      This doesn't take into account that some of those relays may be there on purpose, as in ISPs possibly colluding with, and also possibly profiting from, spam.

      Just a minor nit. There probably still are ISP's that profit from so called pink contracts, but I don't see a spammer purposely running an open relay. Spammers are more interested in finding open relays and servers than running them. Operating an open relay serves no purpose to a spammer, and would likely draw attention. One of the reasons (aside from free bandwidth) of using an open relay is to hide your identity.

    3. Re:I foresee some problems with this... by lonesome+phreak · · Score: 2, Interesting

      lol...the FTC email bombs offending open relays so they can't send any spam out until they fix the problem...

      when all you have is a hammer, everything looks like a nail.

      --
      Maybe we DID take the blue pill. You wouldn't remember anyway.
  3. Shouldn't the FCC be handling this? by Anonymous Coward · · Score: 2, Interesting

    Should the U.S. government be "handling" it at all?

  4. Problem... by The+Master+Control+P · · Score: 3, Interesting

    Once all/most/many of the relays that they can use without *overtly* breaking the law close up, spammers will simply turn to *overtly* breaking the law, as in creating zombie networks. And as soon as those poorly maintained computers are cleaned up, they will simply use the same virus/worm/exploit to 0wn more poorly maintained computers (These computers will coincedently tend to be crawling with malware already).

    Though any such move would doubtlessly be controversial, I suggest writing a "white hat" virus what would:

    1) Check if a machine was unpatched/0wned (Probably meaning "it could infect it in the first place")
    2) Once loading itself, download and run anti-spyware/-adware/-spamware/-malware applications to clean up the computer
    3) Contact and infect other hosts, but NOT at such a rate as to bring down networks.

    I omitted suggesting that it download the latest patches, because (as is oft pointed out) one reason many people and organizations DON'T download the latest patches for Windows is that they often break other things.

    Although, again, this would be extremely controversial, I am suprised at never having seen it suggested before.

  5. Re:Legal action against open relays would be wrong by Anonymous Coward · · Score: 1, Interesting

    Is that you, John? :)

  6. open relays today, licensed email tomorrow? by twitter · · Score: 3, Interesting
    Can someone tell me the difference between an internet with open relays and one of peer machines where everyone is free to run mail transport agents. ? If my open MTA records your IP address, don't I know who hijacked me to spam? Isn't that the same as being spammed in the first place? Is this just another step towards an internet of legaly privileged "servers" broadcasting emsil and the rest of us "clients" soaking up whatever Corporate America decides we should? What's the practical benifit of cracking down on open relays when the world is full of hijacked Windoze boxes on cable modems that are serving kiddie porn while blasting us all with DDoS and spam attacks?

    --

    Friends don't help friends install M$ junk.

  7. Good news for ISPs by Spazmania · · Score: 4, Interesting

    As a sysadmin at an ISP, this is good news for me. Getting customers to close their open relays has always been a hassle. "We really need you to take care of this; its against our terms of service" is often followed by "Well, maybe we'll just find another ISP."

    "We expect you to take care of this; you're operating in violation of Federal Trade Commission policy" has a much nicer ring to it. One less likely to generate argument.

    --
    Moderating "-1, Disagree" is simple censorship. Have the guts to post your opinion.
  8. you can by frovingslosh · · Score: 2, Interesting

    file a freedom of information act request.

    --
    I'm an American. I love this country and the freedoms that we used to have.
  9. protocol by Sase · · Score: 2, Interesting

    I'm wondering. Was there talk about changing the SMTP protocol a while back? I know it would a major overhaul, something along the lines of revamping IPv4 to IPv6 (well, not that major..)

    This flys right around there with 'taxing every email' which would be an interesting debate indeed.

    I've noticed that a bunch of mail servers out there are now doing creative mail filtering, making sure that the mx record corresponds to the actual relay that the mail is coming through. But not everyone has smtp auth over pop..

    For instance, my new favourite is AOLmail.. almost any external mail to any aol servers, now takes up to several hours to actually get through their systems. I'm not sure if this is a creative filtering process, or that their servers are just so bogged down?

    hrm?

    --
    ------------
    Sase
    "It's the opposite of that."
  10. E-mail needs to be "closed" by LostCluster · · Score: 3, Interesting

    The Internet's greatest strength is also its greatest weakness. At a technical level, everything with an IP address is a peer to all other devices with IP addresses... no special license is needed to make somebody a server. When it comes to e-mail, the same SMTP protocol that your favorite e-mail program uses to reach your outgoing mail server is the same SMTP that server is going to use to relay the message to the next server. You don't need anything special if you want to set up a mail server for your organization... but that also means nothing prevents a virus-infected PC from being an e-mail relay that starts spewing Spam on behalf of the virus writer.

    Any "secure" system needs a "root of trust", someone or something that is a trustworthy party from which all other relationships can be traced back to. Most things on the Internet don't have a central authority, and that's by design to prevent censorship. However, e-mail is one thing that we want censorship for... we want abusers of the system thrown out.

    However, to reliably kick out abusers, there needs to be a central authority. In short, there needs to be some sort of approval body for e-mail servers to prove that they're trustworthy operators, so that any e-mail that passes through them is sure to not be spam, with reprocussions for the server operators who do let spam through their system. In short, a closed system, where membership for servers is by approval, and therefore those who operate e-mail services have to enforce limits on their customers.

    Unfortunately, that's so incompatable with the e-mail system we have today... any dreams of creating a No-Spam-Allowed e-mail system can go sit between IPv6 and the Devorak keyboard design in the pile of ideas that look good on the drawing board but will never be put into widespread use.

  11. Does anyone recall that MS Exchange patch... by myowntrueself · · Score: 2, Interesting

    the one that when you apply the security update, it turns your server into an open relay?

    IIRC, even if you went to the trouble to ensure that it was *not* an open relay, the patch would change the settings and, voila, open relay.

    --
    In the free world the media isn't government run; the government is media run.
  12. China by certsoft · · Score: 2, Interesting

    I noticed the conspicuous absence of China in their list of countries participating.

  13. Re:Oxymoronic by RedSynapse · · Score: 2, Interesting

    Ok I'm going to give up my mod points to nit pick.

    Fighting for peace is a PARADOX not an oxymoron.

    PARADOX: a : a statement that is seemingly contradictory or opposed to common sense and yet is perhaps true.

    Sometimes you really do have to fight to achieve peace. Sometimes you have to kill to save lives. For example, it's posssible that by dropping atomic bombs on Hiroshima and Nagasaki that more lives were saved overall because the Japanese were forced to caputulate immedately instead of fight a long drawn out amphibious assault.

    Fucking for virginity is an oxymoron because fucking will never achieve virginity

    OXYMORON: something (as a concept) that is made up of contradictory or incongruous elements.

  14. not all open relays are abuseable by David+Jao · · Score: 2, Interesting
    John Gilmore (founder of the EFF) has for a long time been running an open relay which is not abuseable by spammers. It works by rate limiting each user of the relay.

    I am very sympathetic to the complaints of harming innocent third parties, and indeed I used to be very supportive of anti-spam efforts. But these days I find that the anti-spammers are doing just as much harm to innocent parties as the spammers themselves. Real time blacklists are some of the worst offenders, since many of them (e.g. SPEWS) actively promote collateral damage as a mechanism for encouraging change.

    I don't see how open relay blacklists like orbs or SPEWS can say with a straight face that they care about innocent third party damage from open relays. I consider the damage inflicted by one lost legitimate mail to be far worse than the damage inflicted by one unwanted spam mail.

  15. FTC misses the point by swb · · Score: 2, Interesting

    Open relays, while enabling spamming, aren't the real problem. The real problem is the total unwillingness of the FTC to crack down on email based crime. Almost all spam is pretty much openly fraudulent -- either the products don't work, you don't get a product, or you're not supposed to get the product in the first place.

    Why hasn't the government initiated a crackdown on the crime WITHIN the spam? Why is their such a willingness to accept that but be mad that someone is spamming about it? I sometimes wonder if most Americans (and I'm one as well) don't have some kind of built-in huckster or a total absence of ethics that they don't have a problem with the fact people are committing fraud.

    If the government would bother following the money trail over some spam transactions, they'd not only get a much better idea what's "behind" spam (my theory is a fairly small number of people are responsible for a lot of it), as well as catch the same people comitting the same fraud, over and over, which becomes a possible RICO prosecution -- lots of jail time for anyone even tangentally involved. Which might actually do more to end spam by getting rid of its clients than some lame relay closing enterprise -- haven't they moved a lot of their operations to zombies and cracked proxies anyway?

  16. Waste of time and effort... by Kjella · · Score: 3, Interesting

    There'll be more than enough hosts compromised somewhere, instead try to fix the damn system with proper certificates, "soft" blocking like hashcash or similar, easy feedback of SPAM, easy whitelisting of mailing lists etc.

    Hell, I just recently discovered that my RHL9 box has been somehow compromised. Don't ask me how, but those sendmail spam zombie processes weren't mine. And on this Win2k PC I run anti-virus, firewall, the works. Still, a few things slips through the cracks, at least for a time.

    But see how, my Linux box if routed shouldn't get a domain. It would be @[IP] @???.bb.online.no (dns of that IP) or @[spammer-provided domain], not @aol.com. And even if I wanted to run a mailserver here on a residential DSL - it's reasonable to limit my delivery speed by hashcash or some such measure.

    If I wanted to do mass mailings (opt-in, the good kind, they exist, remember?) there should be a whitelisting system. Some kind of cryptographic token or similar, as proof of the opt-in. But noone seem to be doing anything like that.

    Damage control is the way to go. Running around chasing the latest compromising trojan and whatever is futile, at least to cure the problem, not just the symptoms.

    Kjella

    --
    Live today, because you never know what tomorrow brings