NYT on Spam Cops

yet another coward writes "The New York Times reports on new measures against spam. (Sperm sample required, sorry ladies) Microsoft has increased efforts to track and prosecute spammers. Hotmail receives 2 billion (2 * 10^9) spam messages per day. In a twist of weirdness, the Direct Marketing Association is funding investigators who cooperate with the FBI on spam investigations. Spamhaus also gets a mention."

Only 2 billion spams a day?

[messiuh]

Jeeze, my Optonline single account gets about that per day.

Come to think of it, I suppose if I got that many free samples of Viagra, I could start my own Pharmaceuticual company.

Too easy to send

[RucasRiot]

The problem with spam is that it's too easy to send. With even a 56k modem you can fire off MANY messages in a matter of minutes. I think a good solution would be on the ISP end of things, and have them throttle connections to port 25 on remote machines. There will always be plenty of open relays, as idiots who just want to allow access to their mail server as quickly as possible will usually just allow relaying from everybody. The spam "hash sites" are great, but the problem with them is not enough people actively submit spam for them to be as effective as possible (not to mention there are numerous, non-centralized ones)

Hopefully, some day people will realize bulk mail isn't effective, but for now, since it is so cheap and easy to send, nothing is going to stop it anytime soon.

Re:Too easy to send

[mikael]

I think a good solution would be on the ISP end of things, and have them throttle connections to port 25 on remote machines.

The problem is, you have to consider the worst case scenario where the spammer is an offshore ISP renting T1 lines from a major backbone provider. Only when you have a solution for this example, can you block spam. Otherwise, the spammers will just adapt to whatever loopholes are available.

Re:Too easy to send

[Jim_Maryland]

Even though TV advertising could be seen as annoying most people, it would still need to be profitable, otherwise companies wouldn't do it. Generally companies don't like to "throw" money away.

People generating SPAM must be making enough money to offset the time/resources involved, otherwise what is their incentive for sending SPAM? I can't imagine that spammers are the charitable type.

Re:Too easy to send

[Not_Wiggins]

Well, actually you don't need a fast connection.

As a matter of fact, it would be undesirable for these slime to leave that much of a trail back to themselves (ie, the IP they've connected to the internet would be included in mail they originated from themselves).

No, instead a lot of them look for open relay mailservers. For the uninitiated, an open relay is a mail server that will accept mail from anybody to anybody.

Then the spammer sends *one* mail to the relay with 10,000 bcc addresses. The victim relay then has the task of sending out the 10,000 messages while the spammer looks for another open relay to send more spam through.

This is where it is even scarier that spammers are "hooking up" with virus writers. Sure, it used to be the virus would just send copies of itself to your friends and family. But, now they're getting sophisticated enough to become open relays for spamming or even *hosting the website* that the spam points to (!).

You're right... it *is* far to easy, but much easier than you even thought. >8(

where have we heard this before?

[berkleyidiot]

In a twist of weirdness, the Direct Marketing Association is funding investigators who cooperate with the FBI on spam investigations.

sounds like phillip morris funding anti-smoking campaigns.

Re:where have we heard this before?

[jfengel]

It actually makes some sense. The DMA wants to be able to send you "legitimate" spam, marketing legal products. They hate being drowned out by Nigerian scam artists and people peddling bogus pills and illegal stock tips, not to mention porn ads sent to four year olds. They think it gives spam a bad name.

Phillip Morris, on the other hand, is unwillingly paying off the results of a lawsuit.

Personally, I'm perfectly happy to make spam safe, legal, and filterable. You send it, my server rejects it without my ever seeing it. The easier it is to filter, the better it is for me. If it comes from the DMA, and clearly so marked, I'm happy with that, and if the thieves' guild wants to punish unlicensed thieves, I'm thrilled.

Re:where have we heard this before?

[gcaseye6677]

In this case, it is being done for different reasons. Some DMA members operate semi-legit email lists. They may annoy people, but at least they are not using some of the most harmful tactics, such as relaying messages through other people's servers and forging headers. Anti spam efforts make it very difficult to operate any kind of mailing lists, as we have discussed on Slashdot before. If the DMA can cut down on the worst offenders and eliminate some of the 'competing spam', their members' marketing campaigns will be a lot more effective. I'm not saying I am a fan of the DMA or anything, but I can understand why it makes sense for them to do this.

Re:where have we heard this before?

[Pedrito]

In addition to what jfengel said, the DMA is doing what it can to look like a legitimate organization. SPAM has seriously hurt the reputation of the DMA and all its members. If they don't start working to look like a legitimate organization, they're not going to have a chance lobbying congress. It's probably too little too late but they're definitely seeing the writing on the wall.

And a small correction, I don't believe the DMA actually sends SPAM. It's their members that send it...

Re:where have we heard this before?

[jfengel]

You are correct. The DMA does not itself send spam; it's an organization of people who do.

The DMA itself actually predates spam; it started in 1917. Its members are also responsible for junk mail and telemarketing. Any sort of "direct marketing", as opposed to broadcast advertising.

In other words, their purpose is to be irritating, but not so irritating that they get what they do made illegal.

They've always been considered a legitimate, if somewhat unpleasant, business.

Re:Registration site

[swordboy]

No Need - plenty of other sources out there.

Three cheers...

[ideatrack]

for Mr McBride.

Now that's a /. first.

Re:Three cheers...

[betelgeuse-4]

'can we call him "Sterl"?' No, because somebody might get confused and start thinking that SCO is run by Mr. Darling McBride. Which would be a very bad thing.

Becoming A Real Crime

[blueZhift]

Stories like this seem to indicate that spam is becoming more of a "real, get sent to jail" kind of crime with cops and detectives tracking done spammers. Naturally one hopes that violent criminals won't be neglected by this new focus on spammers. Nevertheless, the prospect of real jail time and big fines may deter some from entering the spam market.

Of course, one effect of rounding up the stupid ones will be leaving behind to true spam geniuses. Going after those guys and girls should be real entertaining. Heck, maybe there's a reality based tv show in there somewhere. So you heard it from me first! Anyone got Fox's phone number?

Re: (Sperm sample required, sorry ladies)

[karlandtanya]

What makes you a lady can't acquire sperm samples on demand and in larger quantity than any given gentleman can produce on his own?

He used to be a *what?*

[The+Ultimate+Fartkno]

> When he hunted down escaped prisoners for the United States Marshals Service

"I didn't send that spam!"

"I don't care!"

Damned one-armed spammers...

Re:He used to be a *what?*

[The+Ultimate+Fartkno]

Mods: prepare the "-1 offtopics"

I'd been reading /. and posting AC for a few years, but I'd never bothered to register for some reason. One day I'm reading a -1 flame war between two guys that had just gotten hysterical, and one of them says something along the lines of "Yeah? Well I'm going to go register as 'The Ultimate Fartknocker' and do nothing but mod you down for the rest of your life!" I was on a Beavis & Butthead kick at the time and thought that was *hysterical*, so I did it. What I didn't notice until it was too late, though, was when I backed up to correct some reg info my name got truncated in the "enter your name here" box, leaving me four letters short of comedy gold. And *that's* why I have this stupid handle. Aren't you sorry you asked?

Sperm Sample???

[Sinus0idal]

Oh dear, worse than spam is hundreds of thousands of Slashdotter sperm samples winging their way to NYT...

Re:Sperm Sample???

[Pragmatix]

"sperm samples winging their way to NYT"

Good Lord! What kind of sperm do you freaks have? My sperm SWIM thank you very much.

confuzzled

[bestguruever]

oh man, Mr. McBride and Microsoft in the same story and its actually a good thing? My head hurts.

..they are actually purchasing pills..

[burgburgburg]

Increasingly they are actually purchasing pills and responding to offers of get-rich-quick schemes to track down the spammers.

Of course, they'd probably stop investigating if any of the products actually worked. Then they'd stay at home in their mansions and satisfy their wives and their wives friends and neighbor ladies and ...I'm walking away from the computer now.

So...

[Throat+constant]

If they ever find out who 'Napoleon Talley' is, could someone please tell him that I'm willing to take him out for dinner (before he gets prosecuted)? His spam e-mails changed my life!

Futureproofing Spamhaus

[alanxyzzy]

In related news, Spamhaus has announced a Funding model based on charging large corporate networks a yearly fee for our Data Feed rsync/ixfr service.

The public DNSBL service will remain free.

Re:Article text. Mod Down; Copyright Infringement

[USAPatriot]

Regardless of whether this was posted for karma or to benefit other users here, it is still copyright infringement.

This notice on their site makes clear what uses of their materials is acceptable. Reposting verbatim to other sites is definitely not.

Moderators should not be encouraging this type of behavior by making them "insightful". Slashdot should respect other peoples copyrights, don't forget how evil violating the GPL is.

Place to start

[hords]

Microsoft has increased efforts to track and prosecute spammers.

Stop letting people use your redirect service to spam. You too Yahoo, you hear me?!!!

http://g.msn.com/0US!s5.31472_315529/HP.1001?http: //POS_SPAM.com

http://rd.yahoo.com/barrage/card/ovum/*http:/POS_S PAM2.com

How about we start prosecuting services that allow people to spam through them, huh?

Remember Everyone...

[nearlygod]

When submitting a story from the NYT, the summary with the wittiest "registration required" comment will be the one that is selected. Who cares if you can offer up any extra insight. Keep this in mind next time you find something /. worthy. Comedy rules, dammit.

NYT Jokes

Sperm sample required, sorry ladies

This is kind of off topic, but does anyone else feel that the New York Times, "registration required," jokes are getting a little out of hand. I mean, the first time someone said, "soul sucking registration," it was pretty funny, but now it's just getting lame. I think it's gone the way of the step 1 step 2 step 3 profit jokes.

No offence intended to whoever posted the article. I'm sure they were just joking around, but a lot of people read /., and that looks a bit unprofessional for the front page.

Re:NYT Jokes

[skaffen42]

No offence intended to whoever posted the article. I'm sure they were just joking around, but a lot of people read /., and that looks a bit unprofessional for the front page.

I'll brush of yet another /. regular: Dude, you must be new here if you are complaining about /. being unprofessional.

Re:NYT Jokes

[yet+another+coward]

For the record, I submitted the article. I did not submit the registration required joke with it. Since Taco posted the story, he probably added it.

Re: (Sperm sample required, sorry ladies)

[lukewarmfusion]

I think the real issue is the poster's assumption that there are females here on Slashdot.

RICO, RICO, RICO

[swb]

It's time for some RICO investigations! Let's throw some people from ISPs and banks into the mix as well -- spamming and scamming really is a racket, and these people need to do some hard jail time. Dragging in people from the "legitimate" business world will go a long way towards making spam hard to do and keep spammers from the support systems they need to do business.

The banking angle is especially important! If these scammers can't do credit cards, they will be hard pressed to run their businesses. While I'm sure there are people dumb enough to send cash, most people can't be bothered to do that much work.

Re:RICO, RICO, RICO

[emtboy9]

That's a brilliant idea. And while we are at it, lets charge the people who work for minimum wage in the factories that make said pills as well. After all, if you can charge the isp (who most likely is in no way responsible for the spam other than having end users with compromized boxen) why not them as well.

Lets take it one step further and prosecute mom and pop and grandma with the compromised boxen for facilitating spam! Oh, and lets prosecute IRCops because IRC is an evil spammer and hacker wonderland, so we all KNOW that they must be somewhat responsible!!

Oh, and while we are prosecuting the banks, lets put a freeze on the nations economy as well! If those damned users cant pay for this crap, then spam will certainly end!!!

This is almost as good as the other post about hiring a special spam chasing branch of the government.

Re:RICO, RICO, RICO

[swb]

After all, if you can charge the isp (who most likely is in no way responsible for the spam other than having end users with compromized boxen) why not them as well.

The crux of my comment (which I apparently didn't make clear) was that spammers get a lot of cooperation from the legitimate business world. If the legitimate business world that supplies them is aware of what the spammer is doing, they *are* part of the conspiracy and a member of an ad-hoc criminal enterprise.

"I didn't know" is only good for so far, until somebody turns (and somebody always turns, even in the Mafia) and squeals about the ISP who gets extra money to mask the spammers efforts, the credit card processor/bank burying customer complaints and refusing to issue chargebacks in exchange for $$$$.

It's a nice techno-fantasy to believe that all spam is spread by 0wned hosts from rogues running off of DSL living in their parent's basement. But it's naive to think that these spammers aren't living in the real world, using real-world resources to run their crooked enterprises, and that these real-world resources are totally ignorant.

Re:not surprised

[stratjakt]

Not all direct marketing is spam, of course they want to get rid of the idiots who hurt their industry.

Circuit City emails me flyers all the time, because I've bought stuff online from them. That's direct marketing - but it's not spam. I also reasonably believe that if I opted out, they'd stop sending it.

Jason, is that you?

[burgburgburg]

Jason, it's very unlikely that any person on /. is going to be on your jury. Most of us aren't even allowed near the court house except to answer those damn Orders of Protection from Seven of Nine and Subcommander T'Pol. Which are SO UNFAIR!

I'm walking away from the computer now.

Illegal and tricky Spam

[phorm]

I got an interesting one yesterday. It came into my hotmail account, which is set to "only allow users from my contact list." The address, which wasn't in my list, was listed as from microsoft.com. It was a bit hard to read due to heavy obfuscation (to avoid filters), but it seemed to be advertising underage pr0nography.

I'm assuming that it didn't come from an actual MS address... but one must wonder since if hotmail is simply allowing any email claiming to be from @microsoft.com that's pretty dumb. Not sure how to view headers in hotmail either, and I don't really feel like forwarding something so file to my home account to check them.

MS's online contact thing isn't working either, so I can't ask them. Anyone have any ideas?

(normally I wouldn't bother, but the fact that this spam is particularly vile and somehow manages to bypass a whitelist makes it a special case for stomping)

Re:Illegal and tricky Spam

[Noryungi]

Why don't you just forward this to the FBI? I am sure their kiddie porn Dept would be interested.

Finding the relevant @fbi.gov address is left as an exercise for the reader...

Re:Illegal and tricky Spam

[mtenhagen]

Easy: subscribe-kiddieporn@fbi.gov

Tuesday on Cops!

[Prince+Vegeta+SSJ4]

Bad boys, Bad boys . . . Allright here we go

knock, knock, SEARCH WARRANT!

Boom...cop breaks down the door

cop: Freeze Spammer Scum!

spammer: I didn't do anything

cop: allright put your hands on the Monitor and spread 'em

Spammer: looking jittery

Cop: Put down the the mouse, put it down NOW!

Spammer: makes a run for it

Cops: run him down in half a second (you don't think spammers are fit do you?

later in interrogation - Detective: Arey you gonna talk Spammer?

Spammer: Never

Detective: Bring in the logic probe

Maybe I'm missing something here, but...

[the_rajah]

why can't the companies that are paying for spam be targetted for prosecution/persecution? They can't easily hide since they have to engage in commerce, AKA money changing hands, to do their business, thus requiring valid contact information. Just follow the money.

"Do the Right Thing. It will gratify some people and astound the rest." - Mark Twain

"MaxxLength"

[jasoncart]

Microsoft then hired outside investigators to stake out and follow whoever picked up the mail. It turned out to be Jason Cazes, who Mr. McBride said sells "MaxxLength" penis enlargement pills

I wonder how they spotted him!

Re:"MaxxLength"

[Lurker+McLurker]

So you can get arrested for being well-endowed? I'm in trouble, then.

I've never been arrested

Long run? Won't even work in the SHORT run

[Xhad]

Yes, let's pay people to spam. Then a bunch of businesses and individuals who wouldn't even touch spam before now see a business opportunity.

The Abrams Report 5/31

I don't normally watch the Abrams Report on MSNBC but last night as I was surfing through I caught the tail end of the program where he reads viewers emails. His comments last night were regarding the flood of emails he was receiving from suddenly wealthy people in Africa, all needing his help to retrieve their new found wealth. The complete transcript of the show can be found here. Scroll to the end to read his comments.

Obviously these are the wonderful Nigerian, and now apparently Democratic Republic of Congo, email scams but his point was that these were frauds and to never respond to these emails.

My question has always been not why aren't we going after these people (well, not these people because they are in a foreign country) because the products they are pushing are fake but rather why aren't we going after them for using a false identity?

Just a thought.

Re:Article text. Mod Down; Copyright Infringement

[the_Bionic_lemming]

Regardless of whether this was posted for karma or to benefit other users here, it is still copyright infringement.

Cool - then just do it this way then.

Made from This Page.

The DMA hates spammers (true)

[Random+BedHead+Ed]

In a twist of weirdness, the Direct Marketing Association is funding investigators who cooperate with the FBI on spam investigations.

Not much of a twist at all, despite many of the above comments. Just grok this: the DMA hates spammers. No, really. I know someone who works for a company that's part of the DMA, and spam is her biggest headache. While we all hate commercial e-mail in general, the DMA is made up of companies who want to play by the rules. True, they want to have a hand in writing the rules as well, but the rules are pretty good ones. No faking your source IP addresses or From: fields. Always have an Unsubscribe feature that actually works. And so forth.

Spammers make the DMA's life a living hell. It's impossible to have a conversation with most people about legitimate commercial e-mail because illegitmate spam is such a pain (I just deleted 20 spams, vs. three real messages in my Lycos mail). With an annoyance like spam, no one even wants to hear the DMA's side of the story. So the DMA's members get blocked from sending e-mail by many sysadmins (like me).

If all commercial mail conformed to the rules that the DMA advocates, no one would complain to ISPs about commercial mail because the power to prevent it would be in the hands of the recipient. Just click Unsubscribe and you're free and clear. Until spammers go away, that's impossible because no one trusts Unsubscribe links. It shouldn't surprise us that the DMA will do anything they can to prevent spam.

Re:The DMA hates spammers (true)

[Steve+B]

While we all hate commercial e-mail in general, the DMA is made up of companies who want to play by the rules. True, they want to have a hand in writing the rules as well, but the rules are pretty good ones.

Not unless and until they accept that the rules must be based on opt-in, not opt-out. Unfortunately, it has become clear that the only way there is any chance of getting them to accept this is to make it clear that an unsolicited opt-out advertisement from a "legitimate" business will be considered equivalent to the sleaziest "p3n!s pill" spewing.

Re:The DMA hates spammers (true)

[Scutter]

Just click Unsubscribe and you're free and clear.

I don't even want "legitimate" spam. Why should I have to unsubscribe from dozens or hundreds or thousands of marketing mailing lists that I never suscribed to in the first place? The DMA should be advocating opt-in rather than opt-out. I have no sympathy for their headaches.

I recently had a long conversation with the guy who runs the spamvertisements for a certain motel chain that sounds like FlooperBait. He said "We process thousands of unsubscribe requests per week!" For some reason, that little tidbit failed to clue him in that he's doing something wrong.

Re:The DMA hates spammers (true)

[StormyMonday]

The problem with "legitimate" spam is that there would be 'way too much of it. Let's say that there are 100,000 "legitimate" spam senders, each of whom sends me one spam per year. That's almost 300/day -- worse than I have now. 100,000 is very definately a lowball estimate, and one per year is simply silly.

The "unsubscribe" business is a con -- you will have to unsubscribe to every company and mailing list provider that might want you to buy something. I'll also bet that most of them will be set up as obfuscated web pages that will actually subscribe you to extra lists (unsubscribe to List A, be automatically subscribed to Lists B through Z unless you find the Magic Button).

Let's face it. There is *no* *such* *thing* as "legitamate" spam -- if we want to keep e-mail as a useful means of communication.

Re:The DMA hates spammers (true)

[homer_ca]

"the DMA is made up of companies who want to play by the rules. True, they want to have a hand in writing the rules as well, but the rules are pretty good ones. No faking your source IP addresses or From: fields. Always have an Unsubscribe feature that actually works."

The problem is that email addresses eventually leak out from the more legit DMA members to shadier and shadier spammers, whether it's through "affiliates", bankruptcy sales, or corrupt employees. See the story of Nadine for an excellent example of how this happens.

Re:The DMA hates spammers (true)

[keraneuology]

So long as the marketing target bears the costs not only should the lists be opt-in but they should be excluded from any sales. Selling a physical mailing address is one thing, selling a cellphone #, an SMS ID or an email address is something entirely different. Along a tangential line, anybody who responds to a lead generated by unsolicited email should be required to honor any promises made in that email. This means that I should be able to get a $200,000 loan at $350/month - the spam specifically said "you have been approved" at those rates. By the same token, any loan officer to responds to my response to an email that reads "your lo.an app.lication has been denied" should either provide, in writing, the reason for the decline or lose their license for participating in fraud. I'll take 5 of those $200,000 loans, please - a $1,000,000 mortgage for just $1,750/month isn't such a bad deal. And the loan officer will think twice about purchasing spam-source leads again in the future.

Re:The DMA hates spammers (true)

[JuggleGeek]

Just grok this: the DMA hates spammers. No, really. I know someone who works for a company that's part of the DMA, and spam is her biggest headache. While we all hate commercial e-mail in general, the DMA is made up of companies who want to play by the rules. True, they want to have a hand in writing the rules as well, but the rules are pretty good ones.

The DMA wrote the Can-Spam law, which doesn't outlaw spam. That is because they want to send spam. They sued the US government over the recently enacted Do Not Call list, because they want to telemarket to people that don't want to hear it.

Yes, the DMA would love to chase all of the small time spammers away so that they can spam to their hearts content without the problems that they have in todays email environment - but anyone who thinks they are "good guys" or that they are "on our side" is totally, completely, whacked out crazy.

If all commercial mail conformed to the rules that the DMA advocates, no one would complain to ISPs about commercial mail because the power to prevent it would be in the hands of the recipient. Just click Unsubscribe and you're free and clear.

How many legitimate businesses are there in the US alone? Under the rules the DMA wants, every one of those gets to spam you until you beg them to stop. If 10% of the legitimate businesses in the US send 1 email per year, you'll spend hours every day jumping through their "opt out" hoops. Fuck that. I shouldn't have to tell them "I have no interest in doing business with you, which is why I have never contacted you."

It shouldn't surprise us that the DMA will do anything they can to prevent spam.

They won't tell their users "Do not send spam". They won't lobby for laws to make spamming illegal, and actively fight any that are proposed. They want to do anything they can to prevent spam by people outside the DMA, while preserving what they see as their "right" to send spam.

Re:Article text. Mod Down; Copyright Infringement

[LiquidCoooled]

How come I can read the exact same article by simply going in via another entrance.

The common google affiliated link to all NYT stories is a gaping hole in their DNA sample taking policy.

I do however agree about posting the whole article, but news is news, and it should not change depending upon where you read it.

Same subject - if a story is submitted to slash, and it includes a link to an NYT story obtained from google - a perfectly valid news linking service, would Slashdot editors remove the google portion of the link and try to force us to signup?

Re:we need...

[cheekyboy]

Just tell em that the spams with random characters are really secret encrypted messages by terrorists ,and that will quickly get the spammers a 12 year holiday at Camp Xray.

Follow the money, find the spammer

[Chatmag]

At some point, the spam wants money, mainly by a credit card. Why not set up a credit card account only to be used to purchase whatever product the spam is touting, and follow the trail to the account collecting the funds.
Its done for drug busts, so I know the Feds have cash, at least, they have a lot of mine. Put it to use!

OpenBSD + spamd

[Santana]

Actually spamd on OpenBSDdoes a great job stopping spam

I used to get around 300 messages daily, all of them spam. Now I only get 1 or 2 every two days.

Re:Registration site

[arturogatti]

If you don't wish to register you might consider visiting here also.

1000's of spams

[KaiBeezy]

OK, this is tangential to the topic, but... My spam has increased by almost 10x just in the last couple of weeks. Now, well over 1000 a day! Many are the same message over and over and over. The only thing I did recently was upgrade to the new version of SpamKiller... coincidence? Anyone else seeing this?

Microsoft wants to dominate spam market

[funkytwig]

Of course Microsoft wants to fight spam, or more accuratly spam where the spam 'provider' has not paid Microsoft. Now MS has set up there white list system where spammers (sorry, advertisers) pay MS for sending spam (sorry, adverts) they want anyone who sends unsolicited email to pay them - that way they dominate the spam (cant get the hang of this, sorry advertising) market. By fighting non-MS spam they are simply increasing there dominence on the world in yet another way.

I'll help the FBI out with catching them.

[khasim]

#1. Buy the pills (in the article, they're already saying that they do that) and pay with a CHECK.

#2. Find the bank that accepted the check.

#3. Call the local field office and have them meet with the bank manager.

#4. Local agent picks up the name, address and social security number of the person who has the account that deposited that check.

#5. Profit?

Re:I'll help the FBI out with catching them.

[br0ck]

#6. In retribution, identity stolen by Russian mafia spammers who you just gave your name, address, email, signature, account number, banking institution, and check appearance/layout.

#7. Credit cards created in your name and used destroying credit rating

#8. Bank account emptied when they use information on your check along with the routing number at your bank to open a paypal account

#9. House burned down

Re:I'll help the FBI out with catching them.

[scrytch]

#1. Buy the pills (in the article, they're already saying that they do that) and pay with a CHECK.

#2. Find the bank that accepted the check.

#3. Call the local field office

, leave a voicemail, spammer cashes your check, you get herbal pills full of lawn clippings, never hear from either again. You're an in-duh-vidual. You really think the FBI gives a shit?

Re:Article text. Mod Down; Copyright Infringement

[garcia]

Join the Constitution Party in its work to restore our government to its Constitutional limits and our law to its Biblical foundation.

No thanks. I'd rather not continue to allow for the "Chosen One" attitude that both GWB and our beloved RWR felt the need to indulge in.

Scary thought

[Rick+Zeman]

By filing lawsuits known as "John Doe" suits, in which the identity of the defendant is not known, Internet providers are able to subpoena records from banks and others to determine the identity of spammers.

Someone tell me how this is different than what the RIAA has been trying to do with the ISPs getting John Doe warrants to find out who's behind the P2P violations?

Re:Scary thought

[Steve+B]

Someone tell me how this is different than what the RIAA has been trying to do with the ISPs getting John Doe warrants to find out who's behind the P2P violations?

Because the RIAA fights tooth and nail against being held to antiquated legal concepts like having to prove that somebody is a violator before having his anonymity breached, as opposed to the illegal spam investigators who are willing to work within the rule of law set forth by the Constitution.

ya gotta lovva the marketing onomatopoeia

[sentientbeing]

Project Slam-Spam?
Does this mean project CAN-SPAM has be canned by the slam spam plan?

i cant beleive its been panned. man. i was its biggest fan.

Obligatory

[jonfelder]

Your post advocates a

(*) technical ( ) legislative ( ) market-based ( ) vigilante ( ) lack of an

approach to fighting spam. Your idea will not work. Here is why it won't work. (One or more of the following may apply to your particular idea, and it may have other flaws which used to vary from state to state before a bad federal law was passed.)

( ) Spammers can easily use it to harvest email addresses
(*) Mailing lists and other legitimate email uses would be affected
( ) No one will be able to find the guy or collect the money
( ) It is defenseless against brute force attacks
( ) It will stop spam for two weeks and then we'll be stuck with it
(*) Users of email will not put up with it
( ) Microsoft will not put up with it
( ) The police will not put up with it
(*) Requires too much cooperation from spammers
(*) Requires immediate total cooperation from everybody at once
( ) Many email users cannot afford to lose business or alienate potential employers
( ) Spammers don't care about invalid addresses in their lists
( ) Anyone could anonymously destroy anyone else's career or business

Specifically, your plan fails to account for

( ) Laws expressly prohibiting it
( ) Lack of centrally controlling authority for email
(*) Open relays in foreign countries
( ) Ease of searching tiny alphanumeric address space of all email addresses
( ) Asshats
( ) Jurisdictional problems
( ) Unpopularity of weird new taxes
( ) Public reluctance to accept weird new forms of money
( ) Huge existing software investment in SMTP
( ) Susceptibility of protocols other than SMTP to attack
( ) Willingness of users to install OS patches received by email
( ) Armies of worm riddled broadband-connected Windows boxes
(*) Eternal arms race involved in all filtering approaches
(*) Extreme profitability of spam
( ) Joe jobs and/or identity theft
( ) Technically illiterate politicians
(*) Extreme stupidity on the part of people who do business with spammers
( ) Dishonesty on the part of spammers themselves
( ) Bandwidth costs that are unaffected by client filtering
( ) Outlook

and the following philosophical objections may also apply:

(*) Ideas similar to yours are easy to come up with, yet none have ever
been shown practical
( ) Any scheme based on opt-out is unacceptable
( ) SMTP headers should not be the subject of legislation
( ) Blacklists suck
( ) Whitelists suck
( ) No-lists suck
( ) We should be able to talk about Viagra without being censored
( ) Countermeasures should not involve wire fraud or credit card fraud
( ) Countermeasures should not involve sabotage of public networks
(*) Countermeasures must work if phased in gradually
( ) Sending email should be free
( ) Why should we have to trust you and your servers?
( ) Incompatiblity with open source or open source licenses
( ) Feel-good measures do nothing to solve the problem
( ) Temporary/one-time email addresses are cumbersome
( ) I don't want the government reading my email
( ) Killing them that way is not slow and painful enough

Furthermore, this is what I think about you:

(*) Sorry dude, but I don't think it would work.
( ) This is a stupid idea, and you're a stupid person for suggesting it.
( ) Nice try, assh0le! I'm going to find out where you live and burn your
house down!

The problem with spam

[SkeptAck]

Well, I guess there are a lot of problems with spam. My problem with spam is that I receive hundreds of spams a day. Our company uses a very nice spam filter, and almost of these things get labeled as spam, buried in an attachment, and a local filter moves them to a 'probably spam' folder. But since there are hundreds of them per day, and in order to read them I have to open the attached email, I don't read any of them, I just delete them. So, my email used to be 100%, but the spam's gotten so bad that now its only about 99%. Small chance there, but if you send me an email, I might not get it. Meanwhile, I have to make it less convenient for everyone, everywhere to send me email. I used to have my email address (a different one, it was overwhelmed with spam long ago) right on my web page. That thing got so many spams that I had to quit using it. So now I have a gmail address on my web page, but not a convenient 'click here to email me' sort of thing. Rather just a description of what my email address might sound like, and if you can figure it out, launch your email client, type in the solution to this little puzzle, *then* you can email me, and... then I might get it, because if it doesn't make it past gmails spam filters I'll never see it. I've found myself relying on web-board forum postings and the like for that sort of non-spammed email communications. The best way to reach me now is to post on a forum I visit with "HEY YOU, READ THIS!" as the title. Crazy. To the point though, is email, as a concept, just fundamentally flawed? I've thought about putting a convenient clickable email address on my webpage that requires an occassionally changing subject-title 'password' in order to actually be delivered. i.e. The first time you send me an email, you have to put [password] in the subject. If you don't, then I won't ever see the email. Once I receive the email, then I'll add you to a contact list which allows you to email me without the password. Then if I ever get spam with the password for the subject, then I'll change the password. If you are in my contact list and I get spam from you, then I'll delete you from it. But that still wouldn't work, would it? I mean, I'd still get whatever viruses-spawned emails spoof your email address or use contact lists for distribution... And I'd never be able to use the email address for things like registering accounts with online newspapers. I'm making the assumption that most spammers get their email lists from those guys, no matter what they say. If they're sharing my email address with anyone, they're sharing it with everyone. Anyway, this battle with spam seems like a lost cause. I'm thinking the problem is with email. Like, we need something else.

Re:My ISP blocks ALL port 25 traffic.

[jonfelder]

Filtering port 25 keeps users from using their own machines to send spam, or from spammers using the machines that have been infected with some worm to send spam.

The SMTP server doesn't need to require authentication because your ISP (should) only allow relaying from IP addresses administered by your ISP. It would be nice if they offered it though, but it's not necessary from their point of view.

All of your Internet traffic goes through your ISP. This means they can monitor ALL your traffic, not just mail...if you're concerned that your ISP is reading your mail, encrypt it before you send it. Even if your ISP supported authentication, since they control the server they could still monitor your email.

That goes for any of your other traffic too...if you don't want them to view it, encrypt it.

Re:What's so weird, my friend?

[Steve+B]

They want the spammers gone so that email marketing can lose the stigma it has aquired and actually be useful to consumer and distributor.

If they want to shed the stigma of e-mail marketing, they must embrace opt-in. End of discussion.