Slashdot Mirror


SpamSlayer - should we DDOS spammers?

pointbeing writes "Just read this article about a company called Blue Security that essentially floods a spammer's website with requests to unsubscribe members - we're talking thousands of requests per day - the company's CEO says that fighting back by "inducing loss" against spammers is the only way to eventually stop them. Although I hate spam as much as the next guy, is participating in a DDOS attack the way to bring spammers to their knees? If it's okay in this instance, it it okay to DDOS the next guy who does something we don't like? "

12 of 587 comments (clear)

  1. Slashdot by ZakuSage · · Score: 5, Funny

    Wouldn't it just be easier to slashdot a site owned by a spammer company?

  2. Re:Sophistry at its finest... by JustinKSU · · Score: 5, Funny

    Isn't there some rule of thumb - never fight evil with evil? This is a vigilante approach which is reserved exclusively for BATMAN

  3. Re:Sophistry at its finest... by shokk · · Score: 5, Funny

    Easy! To get around all these little rules, we'll just hijack a bunch of PCs to our dirty work for us. I'm sure the owners will not mind helping out for a truly noble cause. Then, we'll use servers in countries with questionable laws to control the DDOS. Then, to raise money to help us out in our quest, we'll use these servers to also mail out requests to help us secure our target US$20mil by sending us a paltry US$20k. We've got the spammers beat in will power AND on the moral high ground!

    --
    "Beware of he who would deny you access to information, for in his heart, he dreams himself your master."
  4. Just a thought... by PornMaster · · Score: 3, Funny

    Does sco.com have an unsubscribe link? ;)

  5. Instant Karma by ledbetter · · Score: 5, Funny

    Sorry, but I can't feel bad for spammers (or sites that support them) who get DDoS'ed. They make their $ by annoying millions in the hopes that hundreds will be gullible enough to buy their crap. What goes around comes around... and I fully support the use of DDoS attacks against these loosers.

    Furthermore.. the repeated HTTP requets should include in their USER_AGENT header the following so it shows up in the logs ("LOOKS_LIKE_YOUR_WEB_SERVER_NEEDS_SOME_V1aGrA")

  6. Re:Do two wrongs make a right? by nurhussein · · Score: 5, Funny

    This beggs me to ask, do twon wrongs make a right?

    I don't know, but if two wrongs do make a right then your above sentence contains no spelling errors whatsover.

  7. Of course we have to DDOS them by Weaselmancer · · Score: 5, Funny

    ...because it's illegal to castrate them.

    --
    Weaselmancer
    rediculous.
  8. Time for Ye Olde Standby by ravenspear · · Score: 4, Funny
    Your post advocates a

    ( ) technical ( ) legislative ( ) market-based (x) vigilante

    approach to fighting spam. Your idea will not work. Here is why it won't work. (One or more of the following may apply to your particular idea, and it may have other flaws which used to vary from state to state before a bad federal law was passed.)

    ( ) Spammers can easily use it to harvest email addresses
    ( ) Mailing lists and other legitimate email uses would be affected
    (x) No one will be able to find the guy or collect the money
    ( ) It is defenseless against brute force attacks
    (x) It will stop spam for two weeks and then we'll be stuck with it
    ( ) Users of email will not put up with it
    ( ) Microsoft will not put up with it
    (x) The police will not put up with it
    ( ) Requires too much cooperation from spammers
    ( ) Requires immediate total cooperation from everybody at once
    ( ) Many email users cannot afford to lose business or alienate potential employers
    ( ) Spammers don't care about invalid addresses in their lists
    (x) Anyone could anonymously destroy anyone else's career or business

    Specifically, your plan fails to account for

    (x) Laws expressly prohibiting it
    ( ) Lack of centrally controlling authority for email
    (x) Open relays in foreign countries
    ( ) Ease of searching tiny alphanumeric address space of all email addresses
    (x) Asshats
    (x) Jurisdictional problems
    ( ) Unpopularity of weird new taxes
    ( ) Public reluctance to accept weird new forms of money
    ( ) Huge existing software investment in SMTP
    ( ) Susceptibility of protocols other than SMTP to attack
    ( ) Willingness of users to install OS patches received by email
    (x) Armies of worm riddled broadband-connected Windows boxes
    ( ) Eternal arms race involved in all filtering approaches
    (x) Extreme profitability of spam
    ( ) Joe jobs and/or identity theft
    ( ) Technically illiterate politicians
    ( ) Extreme stupidity on the part of people who do business with spammers
    ( ) Dishonesty on the part of spammers themselves
    (x) Bandwidth costs that are unaffected by client filtering
    ( ) Outlook

    and the following philosophical objections may also apply:

    (x) Ideas similar to yours are easy to come up with, yet none have ever been shown practical
    ( ) Any scheme based on opt-out is unacceptable
    ( ) SMTP headers should not be the subject of legislation
    ( ) Blacklists suck
    ( ) Whitelists suck
    ( ) We should be able to talk about Viagra without being censored
    ( ) Countermeasures should not involve wire fraud or credit card fraud
    (x) Countermeasures should not involve sabotage of public networks
    ( ) Countermeasures must work if phased in gradually
    ( ) Sending email should be free
    ( ) Why should we have to trust you and your servers?
    ( ) Incompatiblity with open source or open source licenses
    (x) Feel-good measures do nothing to solve the problem
    ( ) Temporary/one-time email addresses are cumbersome
    ( ) I don't want the government reading my email
    ( ) Killing them that way is not slow and painful enough

    Furthermore, this is what I think about you:

    (x) Sorry dude, but I don't think it would work.
    ( ) This is a stupid idea, and you're a stupid person for suggesting it.
    ( ) Nice try, assh0le! I'm going to find out where you live and burn your house down!
  9. One time, at band camp... by litewoheat · · Score: 4, Funny

    My mail server got hacked and ( )\/\/ |\| ) by some sleazebag spammer. It ended up sending a bunch of spam that had a URL to click on to "sign up" for their wonderful offer. After recovering and updating the mail server I wrote a quick little program that ran overnight that filled in this web form with garbage, but not random garbage that could be filtered out. To a machine each record looked valid. I ended up inserting over 200k records into their database making it worthless. I did it again a few times when I was able to get an IP address that didn't get blocked at the server.

    Was it right? Probably not. Did it feel good, HELL YES.

  10. Re:I remember when this debate started by EvilStein · · Score: 4, Funny

    We *should* have tracked them down and obliterated them years ago.

    I can't wait until we can travel back in time and flog those two. Had they been slapped down hardcore when it first happened, we'd have:
    * Less lawyers
    * Less spammers.

    I'm failing to see a bad side to this. ;)

  11. Re:Sophistry at its finest... by joranbelar · · Score: 4, Funny
    Well, here's an idea - rather than go the vigilante route, why not pursue the natural alternative: government control.

    No, I'm not talking about enacting more laws, I mean having the government declare a "war on spammers", where DDoS attacks are used against them by the military in a digital carpet-bombing campaign.

    That would take care of the whiny limp-wristed liberals crying "slippery slope" and "no better than them", and it would satisfy the bloodlust of the neocons. We could even hold spammers indefinitely in military prison camps by labelling them "enemy combatants".

    Think of the possibilities!

  12. Re:Sophistry at its finest... by shmlco · · Score: 4, Funny
    The vast majority of spam I receive doesn't want a lead, it wants SALES.

    Oh, wait, I see what you mean. Okay guys, the next Viagra e-mail you receive, eveyone go to the site and buy something.

    The vast flood of orders will overload their system and stress their payment systems. That'll teach them...

    --
    Any sect, cult, or religion will legislate its creed into law if it acquires the political power to do so.