Slashdot Mirror

← Back to Stories (view on slashdot.org)

Spam and the Law Conference Report

Posted by CowboyNeal on from the frank-and-open-exchanges dept.

Cowards Anonymous writes "The Guardian has a story about a spam and law conference, recently held by the Institute for Spam and Internet Public Policy, in San Francisco. The conferences are usually attended by anti-spammers, from the major ISPs, and spammers; and are an attempt to bring the two sides together. The article's author notes 'It's oddly intimate, watching the spammers and the anti-spammers mill around each other like this. It feels like a temporary ceasefire in a vicious war that to most of us seems to be a stalemate.' Also in attendance was infamous spammer Scott Richter, or 'high volume email deployer' as he wished to be called on his recent Daily Show appearance. Surprisingly the anti-spammers didn't tear Richter to pieces with their bare hands."

14 of 145 comments (clear)

  1. I've got lots of ammo.... by Jason+Straight · · Score: 4, Funny

    And I'm waiting for spammer season! :)

  2. "High Volume Email Deployer" by Slashdot+Hivemind · · Score: 4, Funny

    Wow. Spam AND bullshit management speak. How many reasons to kill(sorry, terminate with extreme prejudice) him do we need?

  3. Scott Richter: A "Good" Spammer? by LostCluster · · Score: 4, Interesting

    Well, true, spammers are among the lowest forms of human life and deserve the status. However, at least Scott Richter is willing to do something that most other spammers won't... admit that he does it and is willing to talk about it.

    Let's face it, he's willing to explain his motivations and disclose his tactics. Most spammers take great lengths to hide their identity, and are scared to even tell their family what they do for a living. Even if we don't like what he does, at least he's willing to help us attempt to understand the problem. If anybody proposes an anti-spam system, he'll at least do us the favor of pointing out how it's not going to work before we waste our time on it.

    1. Re:Scott Richter: A "Good" Spammer? by Jade+E.+2 · · Score: 4, Funny
      Most spammers take great lengths to hide their identity, and are scared to even tell their family what they do for a living.
      <<Cue violins>>

      Man: Mom... I... I'm sorry. I can't hide it anymore. I... I'm a spammer.

      Mom: I... was afraid of that. I mean, I suspected but... I just didn't want to find out. Didn't want to be sure. I had hoped... it would never come to this. I'm sorry.

      <<She reaches into her handbag, pulls out a revolver>>

      Man: Mom! No! NO!

      <<BANG>>

  4. The first step to getting rid of spam by Slashdot+Hivemind · · Score: 5, Interesting

    Is admitting it comes from America. A quick glance at any spammer blacklist shows a clear majority of them live in Florida, but American politicians and lawmakers still push the line that it's an African and Asian problem.

    1. Re:The first step to getting rid of spam by LostCluster · · Score: 4, Interesting

      Florida has an interesting power of attracting rich-yet-lowlife characters who have managed to be declared scum yet have avoided being put in jail.

      The key is that unlike other states, Florida has no value limit on what you can claim has your "homestead" when you are claiming bankruptcy. That is to say, you could own a multi-million dollar home and have billions in unpaid debt. You won't be able to own much else in your own name, but you can keep your homestead. With only a few exceptions, creditors simply can't force you to sell your homestead in that state.

      That's why spammers live in Florida. Pass all the civil liabity laws you want... you can't touch anything they have. You have to make spamming a crime in order for them to be worried.

  5. Where's the fuzz? by k4_pacific · · Score: 4, Insightful

    If spammers have connections to virus writers and do all these malicious things, why weren't there cops waiting to arrest them when they showed up? Were they granted immunity to visit the conference or something?

    --
    Unknown host pong.
  6. Re:What i do with spam by ObjetDart · · Score: 5, Informative

    I don't understand...what good does this do? Virtually all reply-to email addresses in spam are bogus. The only thing in the entire message that is real is the link to the site they are promoting. If you want to DOS the spammer, go after the site, not the bogus email address.

    --
    I read Usenet for the articles.
  7. Sometimes... by Bishop,+Martin · · Score: 4, Insightful

    Sometimes I wonder just how much money these spammers really make from the spam. I've never even looked at a piece of spam in serious contemplation of buying whatever "product" they are selling

    --
    Setec Astronomy
  8. Re:What i do with spam by Deraj+DeZine · · Score: 5, Insightful

    You do realize that it's easy for spammers to forge the From address, right? So you might be spamming innocents.

    --
    True story.
  9. Bittorrent of Daily Show Stuffs by ticklemeozmo · · Score: 4, Informative

    The Daily Show - 03.30.04 (Xvid) [87 MB] Torrent

    --
    When modding "Informative", please make sure it both has a source and IS actually informative.
  10. Next time by azav · · Score: 4, Interesting

    Next time we know a meeting like this is coming up, we send a representative and photograph each of the spammers and post a "Most wanted" web page with each spammer's photograph and address.

    Then put up forms that can be printed out ala "wanted poster" style and have volunteers post the wanted posters all over the spammers' towns.

    Expose them and run them out of where they live. Make their lives as hard as they make ours.

    --
    - Zav - Imagine a Beowulf cluster of insensitive clods...
  11. Making it expensive for spammers by KalvinB · · Score: 4, Interesting

    Aside from from the bandwidth (which who knows what kind of bulk rates they get on that) the most expensive part of spamming is buying domains.

    And the kicker is that HTML doesn't allow you to obfuscate an URL. The best you can do is character codes but that's one to one so not effective.

    What I do is harvest URLs from spams and then add them to the rule file for my mail server. It's a mostly automated process to avoid accidently filtering out non spam domains like w3c.org or yahoo or whatever that occasionally end up in spam e-mails along with real spam domains.

    You can click the link on my sig and then there's a link from there to see the current rule file my server uses. Since I added in web-mail with spam reporting, this is going to be even easier since spams will have a unique subject line and a to address that has no legitimate uses.

    Instead of trying to sort out which e-mails to my real addresses were spam or not, I just log in, report them and then it's a simple sort by to address to find all the spam to filter links out of. There's probably around a thousand filtered domains which equals several thousand dollars worth of domains.

    If you're worried about people snooping around on your connection, OpenSSL is comming soon for web-access.

    If you have a fully TLS enabled e-mail client you can do secure POP3 and SMTP already. Thunderbird has TLS capabilities for SMTP but not POP3 for some reason. Pegasus Mail is fully compatible. Apparently there's no clear standard as to whether the client should just use the standard 110,25 ports with encyption (what my server supports) or use alternate ports. Thunderbird is quite convinced you absolutely must use a fixed alternate port for POP3.

    For most people, it'll probably end up that the web access is the most secure way to use Indie-Mail.

    Ben

    --
    Work Safe Porn
  12. Re:Jesus Christ People. by shostiru · · Score: 4, Informative
    The first amendment does not guarantee that I have the right to say what I wish to you and make you pay for it. The cost of junk mail, telemarketing, etc. is paid by the sender. The cost of email is paid primarily by the recipient (and her or his ISP). And, of course, there is substantial precedent that limiting commercial speech is constitutional.

    Oh, and your estimates of the waste of energy involved in spam are off by several orders of magnitude. Back of envelope calculations based on incoming mail volume, power consumption (which I've measured), and cluster size has 100,000 emails per day costing at least 10KWhr, and that's just on the receiving mail server cluster (it would be lower without redundancy, of course). Once you add in the sender and all intermediate hops I wouldn't be surprised if that figure doubled. And that's just the beginning; of all network services we run, email is by far the greatest suck of money, brains, and time.

    Before you claim free speech in defense of spam again, perhaps you should spend some quality time with systems and network engineers, and see how un-free this "free speech" really is. I'd be glad to do so myself over the telephone ... I assume given your argument you do take collect calls from everyone, right?