Slashdot Mirror

← Back to Stories (view on slashdot.org)

Impoverish a Spammer Today

Posted by michael on from the lose-money-fast dept.

esj at harvee writes "Recently the Camram project released its latest version of a hybrid sender-pays anti-spam system. The project has proven that sender-pays works and has demonstrated how to make it work with existing e-mail systems. Camram has developed hybrid sender-pays techniques that scale down to the desktop and up to the enterprise. It's a completely decentralized system that can put spam-fighting power in the hands of individuals. It gives you control of not only the current generation of spam, but also any future commercial spam -- why replace Viagra ads from a scam artist with Viagra ads from Pfizer?"

13 of 343 comments (clear)

  1. When do I get a shock-the-spammer protcol? by gevmage · · Score: 5, Insightful
    An interesting concept. Stamping of the mail is computationally intensive, verifying it isn't. I think that it's impressive for something that's calling itself an 0.3 version.

    This could really change the way e-mail is distributed.

    --
    Craig Steffen
    http://www.craigsteffen.net
  2. One Idea by th1ckasabr1ck · · Score: 5, Insightful
    One thing they should look towards doing is maybe circumventing the payment if you are sending to someone else in the same domain. Then businesses wouldn't have to pay for all internal e-mail.

    Or maybe businesses should find a new way to communicate internally?

  3. Impoverished or not by darth_MALL · · Score: 5, Funny

    they should be able to survive just fine according to the SPAM nutrition fact sheet

  4. 30% Larger! by Anonymous Coward · · Score: 5, Funny

    why replace Viagra ads from a scam artist with Viagra ads from Pfizer?

    Because I only trust my penis to professionals.

  5. Re:Two Words by skiflyer · · Score: 5, Informative

    RTFA, it handles mailing lists fine. You whitelist the sender and then they don't need to stamp the mail.

    The technology is a hybrid solution to avoid the problem of universal adoption... a nice side-effect of this is you don't demand stamps from your white-list.

    I have to say, I think it's quite an interesting combination of concepts, but still requires mass adoption to be useful.

  6. Re:The problem is... by The0retical · · Score: 5, Informative

    The FAQ says that there is a white list. I assume from reading it that it means that they do not have to pay.

  7. I will save you one step... by TuringTest · · Score: 5, Informative

    They have a page with Frequently Raised Objections. Now I've made redundant 40% of the remaining posts to this article.

    --
    Singularity: a belief in the "God" idea with the "demiurge" relation inverted.
  8. There is no problem here. by Jim+McCoy · · Score: 5, Informative

    Why is this a problem? If what you are expected to pay depends on volume then it means that a non-spammer who only sends a few emails a day will have almost nothing to pay while a spammer will be unable to afford the work required to send thousands of emails. Since this is based upon proof of work and not an actual monetary amount, it will not be a cost that is difficult to bear.

    Yes, some people who run email lists out of their account will be inconvenienced, but not as much as they claim. They will just need to change the signup message to say "this is a mailing list that you signed up for, so add us to your whitelist because we will not be performing proof of work challenges and will drop you from the list when the first proof of work request arrives."

    Some will claim that the hordes of spam zombies out there will be able to do the work on the spammer's behalf so this is not a solution, but it will at least provide some rate limiting for that zombie and it will also make it much more likely that the zombie will be noticed by the user when it starts to chew up CPU cycles.

  9. Re:The problem is... by Kenja · · Score: 5, Interesting

    I dont consider a white list to be a "good" method. For one thing, most spam I get is claiming to be from a known source (ie someone who knows me has a worm and is spamming from their address book). So you cant just filter by sender. Also, white lists dont deal with the fact that a lot of email is from first time corresponders such as online retail outlets.

    --

    "Have you ever thought about just turning off the TV, sitting down with your kids, and hitting them?"
  10. Re:Hobbiests by Jim+McCoy · · Score: 5, Informative

    You will have to change your signup mechanism to notify the user that they have to add you to the whitelist, and you will need to change the list admin email to first send a message to a user reminding them of this fact and only after they reply to this standard response to all complaints message will the message filter up to your mailbox. This is a couple of hours of coding for anyone maintaining a mailing list package.

    READ THE PROPOSAL FIRST PLEASE!

    This is not asking you to spend money, it is asking you to perform a proof of work. This is hashcash, not real money.

  11. Re:The problem is... by the_mad_poster · · Score: 5, Insightful

    Ah, but the spammers aren't and won't pay for their servers. They will continue to hijack other peoples machines through worms and trojans and just eat up the CPU time of the zombie machines.

    sender pays stamping is a decent solution to spam, but it's not any solution to stupid lusers.

    The solution to the luser problem is:

    • Education for the naive luser.
    • Network quarantine for the lazy luser
    • Criminal (or civil) penalties for the malicious luser.

    People need to stop objecting to spam solutions based on the existance of other problems. Sender pays stamping doesn't stop viruses and trojans because it's not supposed to, other systems like firewalls, patches, and anti virus tools are supposed to. Rather than complaining that spam solutions don't solve the malware problem, we ought to be educating people on how to use these things and working on improving them.

    --
    Alito: A vote for Alito is a punch in the eye to put that bitch back in her place!
  12. Re:Two Words by Anonymous Coward · · Score: 5, Informative

    RTFA, it handles mailing lists fine.

    I'm reading TFA and it states quite clearly "Mailing lists don't really have a good solution"

  13. Re:SImple... but annoying by squiggleslash · · Score: 5, Informative
    That's actually what this system does.

    The algorithm appears to be:

    Does it have a stamp? If so, add to white list and PASS
    Is it on the white list? If so, PASS
    Does it pass a CRM114 check? If so, PASS
    Otherwise, FAIL.

    The information is on the configuration page. It ought, I think, to be in their FAQ.

    --
    You are not alone. This is not normal. None of this is normal.