Slashdot Mirror


Lycos Pulls Vigilante Anti-spam Campaign

davidwr writes "Eweek reports that Lycos is scrapping it's anti-spam campaign: 'On Friday, Lycos Europe gave up the ghost, posting a 'Stay Tuned' note on the MakeLoveNotSpam.com Web site it was using to distribute the screensaver. The Lycos Europe home page, which heavily promoted the screensaver all week, was also scrubbed clean of any references to the screensaver.' See previous Slashdot coverage from Nov. 26, Dec. 1, and Dec. 2."

35 of 328 comments (clear)

  1. inevitable by marvy666 · · Score: 4, Insightful

    fighting fire with fire doesn't always work

    1. Re:inevitable by Anonymous Coward · · Score: 3, Funny

      Your post really makes no sense whatsoever. Small guns can kill just as easily as big ones. Also, if gus are illegal, the criminals will still have them.

    2. Re:inevitable by Orgazmus · · Score: 3, Insightful

      I think that logic is wierd. Here in Norway guns are outlawed, and most criminals dont have guns. Of course there are some gangs who have them, but arming grandma down the street wont make those guns go away.
      Of course it is possible to get a gun, but since nobody has them, why should criminals take the risk?

      --
      The system had the verbosity of HTML combined with all the readability of compiled assembly viewed as bitmap images
    3. Re:inevitable by QuickFox · · Score: 4, Funny

      I'd much rather get robbed & beaten than killed.

      Sissy. Real men don't mind getting killed.

      --
      Terrorists can't threaten a country's freedom and democracy. Only lawmakers and voters can do that.
    4. Re:inevitable by gnuman99 · · Score: 3, Interesting
      fighting fire with fire doesn't always work

      Yes it does. That's virtually the only way to take out wild fires. You burn away the fuel, and the fire dies.

      Trying to put out a wild fire with water is like using your piss to fight your house fire. Not very effective.

      The analogy works. Spammers will cease to exist if they cannot be profitable. If ISPs take down spam sites *fast*, then no problem. But if they don't give a damn, then they should be DDoS'd. Either they remove the cancer, or we remove it for them as it affects all of us.

  2. Good, it was stupid by Anonymous Coward · · Score: 5, Insightful

    I can't believe the execs at Lycos even had the balls to O.K it as a plan, let alone develop and support it. Corporate sponsored DDoS attacks? What would have been next; MPAA sponsored screen savers that attacked BitTorrant link sites? SCO sponsored screen-savers that attacked kernel.org and Slashdot?

    1. Re:Good, it was stupid by 0x461FAB0BD7D2 · · Score: 3, Interesting

      Interestingly, BitTorrent sites, such as Suprnova and LokiTorrent, were hit with massive DDoS attacks this week, just after Lycos started their ScreenDoSer effort.

      For more: BitTorrent takes a hit from DDoS attacks

      It wouldn't be a surprise if the spammers re-directed their sites to the trackers, as both Suprnova and Lokitorrent had torrents for the screensaver. At the current time, it is still unknown who was behind it.

    2. Re:Good, it was stupid by denthijs · · Score: 3, Interesting

      I can't believe the execs at Lycos even had the balls to O.K it as a plan
      I find it very sad that they don't have the balls to go through with it.
      Finally someone stands up and fights a worthy cause only to stop after one week.
      I have but one word for this behavior: cowardism
      Will someone please pick up the towel out of the ring??

    3. Re:Good, it was stupid by I(rispee_I(reme · · Score: 3, Insightful

      the word is actually cowardice.
      just so you know.

    4. Re:Good, it was stupid by secolactico · · Score: 4, Insightful

      I have but one word for this behavior: cowardism

      The execs at Lycos are accountable to board members and shareholders. The legal grounds for this kind of operation are shaky at best (I don't think there are any precedents).

      Exposing the company to legal action (from the spammers, ISPs, etc) would not be in the best interest of the shareholders.

      I think that whoever ok'd this plan was not the one who cancelled. Maybe he/she was simply overriden by higher-ups. Heck, for all we know, that exec might be looking for work right now.

      Do you really think it was a good idea? If enough people think so, somebody will come up with a copy of it... maybe as an extension of SPEWS or somesuch service.

      Myself, I think the intentions are noble but the execution flawed. Is there any accountability for this? You would no longer be just excerising your right not to be bothered by using RBL. You will be actively striking back at somebody, and innocent bystanders that get targeted will incur in damages that go beyond not being able to send e-mail.

      --
      No sig
    5. Re:Good, it was stupid by u-238 · · Score: 5, Funny

      What would have been next; MPAA sponsored screen savers that attacked BitTorrant link sites?

      I can see it coming; Earn credit towards BlockBuster video rentals, every 5,000,000 packets earns you $0.50 towards your next rental.

    6. Re:Good, it was stupid by Pig+Hogger · · Score: 3, Interesting
      It wouldn't be a surprise if the spammers re-directed their sites to the trackers, as both Suprnova and Lokitorrent had torrents for the screensaver. At the current time, it is still unknown who was behind it.
      That's it!!!
      1. RIAA spams.
      2. RIAA gets under LYCOS radar's.
      3. RIAA added in LYCOS's antispam DDOS list.
      4. RIAA points it's DNSs to song-swapping sites.
      5. ????
      6. PROFIT!!!
    7. Re:Good, it was stupid by WolfWithoutAClause · · Score: 3, Insightful
      Then networks will be greatly encouraged to deal with their zombie clients.

      It might not be on their networks. The *bad* thing about DDOS is collateral damage. e.g. what happens if the DDOS stresses the dns system, and that fails?

      Again, see above - if networks dealt with zombie PCs quickly then the 419ers wouldn't be have other systems to move to.

      Right... and if wishes were fishes we'd all have tails. The idea that the internet is suddenly going to become zombie proof if people started DDOSing isn't well founded.

      I'm a sysadmin for a number of decent sized networks. I put a lot of effort into automated detection and isolation of trojaned machines (thanks in part to the excellent signatures at Bleeding Snort).

      Then I'm sure you can imagine what it would be like to undergo a DDOS attack. It's not like spam isn't forged anyway- it's easy enough to forge the IP address that they are sending from as well.

      --

      -WolfWithoutAClause

      "Gravity is only a theory, not a fact!"
  3. no fair... by buro9 · · Score: 5, Funny

    ... i always wanted to be part of a botnet

    1. Re:no fair... by corbettw · · Score: 4, Funny

      ... i always wanted to be part of a botnet

      Said the Slashdot poster ironically.

      --
      God invented whiskey so the Irish would not rule the world.
  4. How long until someone makes a clone of this? by Anonymous Coward · · Score: 5, Interesting

    Really it's not that complex of a product to make and given that it seems to have been somewhat successful at accomplishing it's goal (or in fact too successful by actually DOSing the spammers) I don't see it as that unlikely that someone will go and create a new screensaver that is even more destructive.

    Clearly there is at least some interest in fighting spam with DDOS even though it's not the best solution.

  5. Personally a bit of a shame by Nexum · · Score: 3, Interesting

    Personally I think this is a bit of a shame. I know a lot of people here weren't too keen on the aggressive style and dubious legal grounds of this scheme, but to tell the truth, if there was a possibility it would eradicate or at least slow spam down, then I'd have to say I'm all for it.

    Perhaps the problem here is that with Lycos being the single point of failure, as well as being a customer facing organisation, its position was just untenable.

    There has certainly been lots of talk about building in such a system to mail clients, and perhaps having a distributed spam-attack system that way - perhaps this will be legally more tenable (they actually emailed you personally) as well as more resilient to pressure.

    --

    This sig has been deprecated.
    1. Re:Personally a bit of a shame by gl4ss · · Score: 3, Interesting

      *Personally I think this is a bit of a shame. I know a lot of people here weren't too keen on the aggressive style and dubious legal grounds of this scheme, but to tell the truth, if there was a possibility it would eradicate or at least slow spam down, then I'd have to say I'm all for it. *

      look, when the system was so stupidly built that the spammers could just add a refresh tag to forward the flood to wherever they wanted, it had no chance of really slowing the spam down at all.

      kneejerk reaction tactics, with bad execution, that was only supposed to make lycos look like it was doing something for the problem in the eyes of normal folk who don't understand enough to see that it was a fucking stupid idea to do in the first place(especially stupid wheny you were a big company and actually could end up accountable for all the fucking around you do).

      --
      world was created 5 seconds before this post as it is.
    2. Re:Personally a bit of a shame by nchip · · Score: 3, Informative

      You are drawing conclusions. f-secure didn't say that the meta tag was FOLLOWED by lycos client, merely that spammers added a meta refresh tag. In fact, it was debunked it on their weblog:

      Update on 4th of December, 2004: Lycos has confirmed to us that their screensaver does not follow Meta Refresh tags, so this attempt by spammers will fail. --Mikko

      --
      signatures pending - ansa@kos.to - (dont mail there)
  6. Existing installations? by slavemowgli · · Score: 4, Interesting

    What about existing users of the screensaver? Will it continue to work (i.e., flood spam sites)?

    --
    quidquid latine dictum sit altum videtur.
    1. Re:Existing installations? by grazzy · · Score: 3, Informative

      Nope, it says "Stay tuned" there too.

  7. It may not work, exactly by mcc · · Score: 5, Insightful

    But who's to say it isn't still beneficial? Lycos probably caused some problems for spammers with this, or made them feel less secure, in the week this stunt was running. More importantly, look at all the publicity Lycos got out of this; if it wasn't for this spam thing I probably wouldn't have even thought about Lycos's existence once in the second half of this year, and probably you or most of the other people here wouldn't have either. Instead, thanks to makelovenotspam, they've been rescued for at least a moment from obscurity and irrelivance and they've been all over the headlines for a week. Meanwhile, by getting out now Lycos possibly avoids the otherwise-almost-certain legal problems from all of this.

    Was makelovenotspam, in its short life, effective? Almost certainly not. Was makelovenotspam a public good? I'd bet not. Was makelovenotspam good for Lycos? ... well probably.

    1. Re:It may not work, exactly by borud · · Score: 4, Insightful
      But who's to say it isn't still beneficial? Lycos probably caused some problems for spammers

      Lycos probably caused less distress among spammers than any form of legal action would have caused -- regardless of the outcome of any legal action.

      As for Lycos and publicity: well, now we know that the management have questionable ethics to allow themselves to sink below the level of many spammers (most spammers do not instigate DDoS-attacks on their opponents although some do). I would think twice before getting entangled in any sort of business relationship with someone who is prone to operate outside the law so easily.

      The lasting effect of this is that a line has been crossed. Lycos is the first legitimate business, with at least some brand-recognition, that has shown willingness to engage in activities that are exclusively associated with criminal elements on the net. The question now is whether others will follow or if Lycos represents the low point of the business.

      I made some remarks about this in a blog entry on how Lycos is now contributing to the spam weapons race and how this might set some bad precedents.

  8. Fine, you twisted my arm. by IO+ERROR · · Score: 5, Funny

    Your post advocates a

    ( ) technical ( ) legislative ( ) market-based (x) vigilante

    approach to fighting spam. Your idea will not work. Here is why it won't work. (One or more of the following may apply to your particular idea, and it may have other flaws which vary from state to state.)

    ( ) Spammers can easily use it to harvest email addresses
    ( ) Mailing lists and other legitimate email uses would be affected
    ( ) No one will be able to find the guy or collect the money
    ( ) It is defenseless against brute force attacks
    ( ) It will stop spam for two weeks and then we'll be stuck with it
    ( ) Users of email will not put up with it
    ( ) Microsoft will not put up with it
    (x) The police will not put up with it
    ( ) Requires too much cooperation from spammers
    (x) Requires cooperation from too many of your friends and is counterintuitive
    ( ) Requires immediate total cooperation from everybody at once
    ( ) Many email users cannot afford to lose business or alienate potential employers
    ( ) Spammers don't care about invalid addresses in their lists
    (x) Anyone could anonymously destroy anyone else's career or business
    ( ) Ideas similar to yours are easy to come up with, yet none have ever worked
    ( ) Other:

    Specifically, your plan fails to account for

    (x) Laws expressly prohibiting it
    ( ) Lack of centrally controlling authority for email
    (x) Open relays in foreign countries
    ( ) Ease of searching tiny alphanumeric address space of all email addresses
    (x) Asshats
    ( ) Jurisdictional problems
    ( ) Unpopularity of weird new taxes
    ( ) Public reluctance to accept weird new forms of money
    ( ) Huge existing software investment in SMTP
    (x) Susceptibility of protocols other than SMTP to attack
    ( ) Willingness of users to install OS patches received by email
    (x) Armies of worm riddled broadband-connected Windows boxes
    ( ) Eternal arms race involved in all filtering approaches
    (x) Extreme profitability of spam
    ( ) Joe jobs and/or identity theft
    ( ) Technically illiterate politicians
    ( ) Extreme stupidity on the part of people who do business with spammers
    ( ) Dishonesty on the part of spammers themselves
    (x) Bandwidth costs that are unaffected by client filtering
    ( ) Outlook
    ( ) Other:

    and the following philosophical objections may also apply:

    ( ) Any scheme based on opt-out is unacceptable
    ( ) SMTP headers should not be the subject of legislation
    ( ) Blacklists suck
    ( ) Whitelists suck
    ( ) We should be able to talk about Viagra without being censored
    ( ) Countermeasures cannot involve wire fraud or credit card fraud
    (x) Countermeasures cannot involve sabotage of public networks
    ( ) Sending email should be free
    (x) Why should we have to trust you and your servers?
    ( ) Incompatiblity with open source or open source licenses
    (x) Feel-good measures do nothing to solve the problem
    ( ) Temporary/one-time email addresses are cumbersome
    ( ) I don't want the government reading my email
    (x) Killing them that way is not slow and painful enough
    ( ) Other:

    Furthermore, this is what I think about you:

    ( ) Nice try, dude, but I don't think it will work.
    (x) This is a stupid idea, and you're a stupid person for suggesting it.
    ( ) Nice try, assh0le! I'm going to find out where you live and burn your house down!

    --
    How am I supposed to fit a pithy, relevant quote into 120 characters?
  9. Well crap, now we need a replacement. by Anonymous Coward · · Score: 4, Funny

    I propose Slashdot's editors agree to "accidentally" incorrectly rewrite one submitted link per week to point to the site of a major spammer. It will have exactly the same effect as the Lycos DDOS screensaver, fulfilling its necessary service now that Lycos has backed out, but lack the legal risks and require no new technological infrastructure.

  10. How about an email program that does this by G4from128k · · Score: 4, Interesting

    Why not build this feature into an email client (e.g. Thunderbird). When you get a spam, you put it in a special folder and the client repeatedly accesses the site (a la the Lycos screensaver). That way nobody can be cited for orchestrating a DDoS or unfairly blacklisting. Each recipient can make their own spammer determination.

    Whether the client uses the exact URL in the email (which often has identification codes for the recipient of the spam or the affiliate who sent it) is a matter of debate. On the one hand, I don't want to identify myself to any spammer or show that my email is live.

    On the other hand, I would want the spam site to know that using my email address will only bring it grief. As a side bonus, it might even bankrupt the site when it has to pay its spammer affiliates for all the automated clickthroughs. If a greater percentage of people clickthrough via automated means (but don't buy), it harms both the spam-marketed site (in bandwidth and affiliate charges) and it hurts the spammer when sites reduce their clickthough payment rates. I can only hope that this will cause spammer-using sites to crack down on spammers that are too aggressive.

    --
    Two wrongs don't make a right, but three lefts do.
    1. Re:How about an email program that does this by AllUsernamesAreGone · · Score: 4, Insightful

      When you get a spam, you put it in a special folder and the client repeatedly accesses the site

      So how do you determine which is the right site programmatically?

      Go off the email address? Won't work becasue the vast majority of spam uses forged From addresses (I regularly get bounces for spams some asshat has sent with my domain in the from:)

      Write something that interprets the email headers and attacks the originating IP? Won't work thansk to the army of windows boxes running proxies to hide the real sender - you'll just end up attaching an innocent, if ignorant, DSL peon.

      Write something that grabs URLs from the email and attacks that? Won't work either.. well, it will work, it just means that now all a spammer has to do is bung the URL of a competitor or someone they don't like in there and now you're doing a DDoS for them.

      Pretty much any scheme you come up with has so many ways around it or possible abuses that it'd be more dangerous than the problem itself. Even if it isn't determined programmatically, relying on some degree of user interaction or target selection, it is likely to be open to abuse.

  11. Anti spam from a spyware vendor? by Shaper+of+Myths · · Score: 5, Informative

    I stopped trusting Lycos the day I started finding this bloody thing on my customers computers. That they tried and failed at something so shady in the first place doesn't seem like much of a surprise to me. This was just some poorly done publicity stunt, probably dreamed up in by some PHB deep in the dungeons of their marketing department.

  12. MPAA already heading that way... by John3 · · Score: 3, Interesting
    based on their early dabbling in anti-P2P efforts. Right now they are just searching out offenders but Lyco's move to bring down spammer sites might encourage the MPAA and RIAA to take more agressive steps.

    While Lycos was on unsteady legal footing in terms of their targets (i.e. it's often tough to connect a web site to the spam sender) the MPAA and RIAA can easily prove that a particular user or BitTorrent link site is sharing/hosting/providing copyrighted material. It may be just a matter of time before earlier efforts to legalize RIAA and MPAA DDOS attacks are resurrected.

    --
    "We make our world significant by the courage of our questions and by the depth of our answers." Carl Sagan
  13. Vigilantes = Self Righteous Idiots by t_allardyce · · Score: 3, Insightful

    Vigilante really means "someone who thinks they are above everyone else and the law" which is basically the same definition as a criminal. In fact I would even go as far as to say Lycos are worse than spammers in principle - spammers don't target individuals they mail everyone they can find, and separate spam groups don't collaborate to fill your box, they are all independently adding their contribution. Vigilantes often make mistakes and because of their revenge attitude their punishment is often worse than the original crime. Take the recent Mexico City lynch mob, not only did they get the wrong people, but their burning someone to death demonstrated that they were far sicker than even the worst of those they were trying to target. Vigilantes are just wrong. Lycos should be prosecuted if they've broken the law on this, otherwise the law needs to be revised.

    We can find a solution to spam and it doesn't need to involve stupidity.

    --
    This comment does not represent the views or opinions of the user.
  14. Gaze into the crystal ball... by gregor-e · · Score: 5, Interesting
    If someone does an OS distributed bandwidth-sucker against spammer sites, how do the spammers respond? Well, first they go with one-shot URLs that respond with a low-bandwidth 404 after being clicked once. Of course, a persistent SBS (Spammer Bandwidth Sucker) will simply go on racking up 404s, which do still cost the spammer something.

    Next, the spammers will start converting all the zombie PCs they now use for distributed email attacks into web servers that provide their advertisers a distributed source of order-taking. This means that unsuspecting PC owners everywhere will soon rack up astounding bandwidth overruns as URLs that point to their PC get entered into the SBS program.

    Nevertheless, an SBS does strike directly at the spammers, raising the hoop a bit higher and perhaps winnowing out the less 'professional' among them.

    The only sure cure for spam, of course, is to take the battle one step further, by consuming all the resources of the advertisers directly - call their phones, request literature, place fraudlent orders with non-existant CC numbers (that, of course, pass Luhn MOD 10 checking) and provide contact phone numbers that ring forever. This will swamp them with orders that tie up their sales staff, cost them money and ultimately starve them.

    The only problem with "the final solution" for spam is that it takes individual effort on a daily concerted basis. So spam endures by riding on the backs of those so clueless that they actually order products from spammers and those of us too lazy to do anything about it.

    Ain't humanity grand?

  15. Did you track the results? by 0x4a6f6e43 · · Score: 5, Interesting

    Call it what you want but it probably was working. I recorded a drop in spam that started last thursday and was proportional to the number of screen savers in operation. By the time it hit 104,000 savers in operation daily spam was down over 80%. I actually had three solid hours with no spam (that hasn't happened since 9/11). Historically spam rises during this time frame.

    It's odd that attacking websites seemed to have dropped the amount of spam. Makes me wonder just how close the spam servers are to the spam website servers. Maybe the innocent victems we are so worried about are really the spammers.

    Come on all you people - this was a probe - yack about good or evil and POST YOUR RESULTS!

    What did this really do. I can't be the only one who tracks spam. Admins, what do you say?

  16. The mob has tasted blood and wants more... by volcanus · · Score: 5, Interesting

    For the first time, the angry mob (people around the world with email accounts) have tasted blood and they want more. "The beast is wounded, quick, go for the eyes!"

    It hardly seems important whether the notion of DOS-styled retribution is appropriate or even legal - no such moral or legal considerations have managed to control people's decision to download mp3's and movies for free.

    This is history in the making, and as I see it, the real story is this; we have been victims with no means of defending ourselves, while our frustration and anger grow without end. Suddenly a revolutionary appears on the scene and give us hope, showing us how we can fight back.

    It's no longer an issue of whether or not we will, or should fight back - the mob has tasted blood and will have more. As far as I'm concerned, it falls to forums like this one to "think-tank" relatively responsible solutions, and I've heard some good ideas here in the last week.

    We all know someone is sitting in their basement right now, pulling an all-nighter, writing the next tool of mass-retribution, fueled by strong coffee and an even stronger hatred of spam. I suggest that if cooler heads are to prevail in any manner, it will be by creating a less-malicious tool of retribution, one which attempts to focus the attacks on legitimate "military targets" by requiring manual human selection of the targets, not by letting some distributed software select the targets automatically. Better hurry, the latter approach is probably more tempting to programmers who have succumbed to the blood-lust...

  17. Re:inevitable - for sure by canuck57 · · Score: 3, Interesting

    fighting fire with fire doesn't always work

    Actually Lycos is BRILLIANT. Just a year ago I would have agreed with you but careless Internet computing (primarily unsecured(able) Windows machines) and commercial spamers are ruining the experience for all.

    Maybe it is time to fight back. I have no problem in running a program where if I click on a spam button, the senders IP gets 1-5% of my bandwidth for a day. This would raise their costs and throttle their output. Perhaps the upstream ISP would take note and cut them off like they should have done along time ago.

    I also find it amusing that some network providors would cut off this site yet let spammers go wild. Using a method like this hurts them for their irresponsible and inconsiderate trespasses into our mail boxes.

    What are the authorities going to do if 5% of the worlds PC users slam a spammer? Naybe that is a good name for this service, "spammerslammer".

    OK programmers, give us an open source "Spammer Slammer"!!!

  18. A program and system I hope for by Mariukenas · · Score: 3, Interesting

    I would like to find a program from trusted distributor (open source preferably) that would do the following things:

    Would "suck" bandwidth from:
    a) spamvertised sites I find in my e-mailbox; or
    b) spamvertised sites other people I trust received in their e-mail box'es.

    On a)
    So I would pick from my e-mails web-sites I want to go down and feed the to the program. It is absolutely LEGAL. They SPAMED me, They PROVIDED their website, and they WILL PAY for extra bandwidth. I am free to post on the web these websites as BAD, NEVER-TO-GO-TO&SUCK-BANDWIDTH-FROM WEB-SITES.

    On b)
    I trust a few spam-busting sites, and I would be happy if some of those people *would publish addresses of spamvertised sites they received*. (Once again - perfectly legal). This could be published in RSS to which I would link from my program.

    Final Result: many people would be getting addresses automatically from spam-busting sites via RSS every 4-6 hours. Those on spam-busting sites would update their RSS as soon as they see spamvertised sites going down, so resources of "bandwith-suckers" would not be wasted :)

    This would hurt those who pay spammers and affect economy spam is based on.

    For those who argue, that spammers would fight back and become more mean/ would apply illegal tactics: This is GOOD. The more illegal things they will do, the more likely they are going to be busted by law enforcement.

    I quess eferything is legal in my proposal: everybody is free to publish spamvertised web-sites he/she received and everybody is free to "suck" bandwidth from web-sites.

    P.S. Of course program should pick only IP's from RSS, sucking should be made in non-rerotable manner and so on, but this is just technical details programmers would take into account.