Slashdot Mirror
Spammers Hijacking IP Space
Ron Guilmette writes "As reported in the Washington Post's Security Fix blog, a substantial hunk of IP address space has apparently been taken over by notorious mass e-mailing company Media Breakaway, LLC, formerly known as OptInRealBig, via means that are at best questionable. The block in question is 134.17.0.0/16, which I documented in depth in an independent investigation. (Apparently, the President of Media Breakaway has now admitted to the Washington Post that his company has been occupying and using the 134.17.0.0/16 block and that front company JKS Media, which provides routing to the block, is actually owned by Media Breakaway.) Remarkably, the president of Media Breakaway, who happens to be an attorney, is trying to defend his company's apparent snatching of this block based upon his own rather novel legal theory that ARIN doesn't have jurisdiction over any IP address space that was handed out before ARIN was formed, in 1997."
It's the only way to be sure...
No folly is more costly than the folly of intolerant idealism. - Winston Churchill
Form an agry mob, arm ourselves with pitchforks and flaming brands, and the chase those rascals way out to the outskirts of town.
Hell, if there was any trouble, we could even transform into an angry lynch mob - THEN lets see who owns that space eh? EH? Whaddya say?
Moved to http://soylentnews.org/. You are invited to join us too!
...if everyone just blocked that IP range entirely at their routers, shutting off their connectivity?
There was a time when the Internet was a 'small' enough place that it would have even been feasible. Kind of like blacklisting a Usenet server for spam.
This one is simple. Everyone just blackholes the IP range and game over. Better if the backbones drop the route. Best if we all drop the IP space of whoever is directly connecting to a known spam network.
Democrat delenda est
Thanks.
[John]
Shit better not happen!
This page hasn't... Yet http://www.programers.co.nr/
-- (this is a sig) My Computer Programming Forumhttp://www.programers.co.nr/
Why the big, strange disclaimer whenever I try to follow links on the independent investigation page? I just skimmed the whole thing and closed it. I don't mind that you're going after spammers. In fact, I encourage destroying them!
But what was the point of pages of legal disclaimers? Do you really need them to fight off shyster spammer lawyers these days? Though to be fair, I suppose the original green card spammers really were sleezebag lawyers...
# ip route add blackhole 134.17.0.0/16
# route -n
All good!
If the IP is simply blackholed, you are by lack of argument allowing this Spammer to put some sort of credible hold on that IP. That's like finding a squatter in a house on the street where the owners have gone on holiday - and simply putting a peice of tape across the driveway - it doesn't solve the bigger problem which is that someone walked into the house and started living there without any credible reason of doing so. It doesn't solve the problem of what's going to happen when the people return from holidays and find this squatter in their house.
Also, if we simply blackhole that IP, what's going to happen when a legitimate user tries to use that space. It's going to go to bollocks for them when they find that the rest of the net is ignoring them already.
Moved to http://soylentnews.org/. You are invited to join us too!
OptinRealBig belongs to none other than Snotty Scotty Richter. I haven't heard of that guy in a while. I was hoping he had been hit by a bus or something.
Web consulting +
What's been happening for years now is well-meaning admins blocking various IP addresses / blocks and/or domain names. Their motives are good, but after the address or domain name is blocked they almost never go back and recheck to see if the block is still needed. What this leads to over time are holes in the address space that can't be used, awkward or no routes to some addresses from some other addresses, etc. Especially in this time of zombie machines; blackhole that IP address and you've knocked some individual off line - but you've done nothing to reduce the amount of spam / viruses / worms / etc.
This is what killed ORBS and other services of that type. Easy to add domains / addresses to the blocklist, but difficult to remove them. Eventually the list becomes useless...
Much better solution: make an example out of the people who are squatting on this netblock. Break out the pitchforks and torches...
There's only one true solution to the problem of spammers. Death. I'm not joking. These people that create botnets, hijack networks and servers so that they can sell advertising are creating problems on a global scale for money. Nothing but death will stop or deter them. They need to die.
It's good that I do not own any firearms and good that I do not know where these people live and good that I lack the means to get there. If I had those things and an air-tight alibi, I wouldn't hesitate to make my first murder one of these people.
If he is president of a company that owns the company that provides routing for the block, doesn't that mean he has legal ownership of that block?
Yes, if the block is used primarily for spam, I'm all for people blackholing the range. And if he's using it for illegal purposes, yes, he should be punished (and the range appropriated). But I don't see where the term "hijacking" could be applied at all.
If I own some cars and use them in crimes, I haven't "hijacked" anyone.
What am I missing?
Love many, trust a few, do harm to none.
Find out where he lives, and sign his ass up for every free catalog on the planet.
I'm sorry but to read this comment you must accept the terms of service of my crappy comment. Please click your back button to accept terms of service.
I will continue to say it every time I can.
We need a strong societal repudiation of the violation of ethics. Organizations like Microsoft, SCO, and the like and people like Bill Gates, Darl McBride, etc. need to be made pariahs for the shameless unethical and illegal behavior.
"Spamming" is unethical. The only reason why it is done is because their unethical behavior is not shunned.
There must be a line somewhere: this is spam and that is not. Current U.S. law defines it pretty specifically.
Boy, that was a cheezy joke huh?
-ted
This is almost as good as asking spammers to Set the Evil Bit, so we can filter them out. If all the spammers sign on for address space in this block, we can just route that block to /dev/null and be done with it. ;-)
If you mod me down, I shall become more powerful than you could possibly imagine.
I assume they mean they own 134.17.0.0 through 134.17.0.16, right? What's the big deal? If I owned 16 web servers, I'd have control over a block that size too. Even if they mean it goes up to 134.17.16.255 large web hosts can own that much too. Now if they stole all of 134.anything that'd be bad.
Google's Super Secret Search Algorithm: SELECT @search_results FROM internet WHERE @search_results = 'good'
because that's all it is, a mid level isp has added someone to their routing tables with ip's that they have no right to. simply telling their provider to correct their configurations or all their traffic will be dropped should be enough, indeed it should be mandatory for backbone providers to do this in order for them to legally keep their own ip ranges. anything else is asking for people to start claiming ip's all over the place and before you know it each isp will route you to a different site for the same ip, making the internet useless.
If you mod me down, I will become more powerful than you can imagine....
Somehow I doubt the V14gr4 and P3n15 Enlargmenttt! stuff will go away by filtering these IPs. I may be wrong, but somehow I don't think your average zombie is routing through this space.
Creationist Textbook Stickers Declared Unconstitutional by CowboyNeal
Now I can just add that entry to my IP blacklist...
I'm just going to analyze this as if it were on my 1L property exam... which I am currently studying for, and is on Thursday.
/. that want to grade my submission?
The first thing I ask is: Did Media Breakaway acquire interest in the IP space from any predecessor? If Media Breakaway is a bonafide purchaser for value, it will be difficult to challenge their title.
The second question I ask: How long has Media Breakaway been using the IP space? Adverse possession for IP addresses is certainly a novel theory, but the same public policy reasons that support adverse possession for land apply to IP address space as well. They are both finite (at least, IPv4 space is finite), and there is a public interest in having concrete title. For land, the statutory period for adverse possession in most jurisdictions is twenty years. Due to the fast pace of change on the Internet, a shorter period is surely justified. The period should be at least two years. A period of five years would be very appropriate. Five years would give the true owner plenty of time to notice and end the trespass.
The real problem here is likely standing. A third party won't have standing to bring a trespass action. The true owner would have to bring any such action.
A more troubling problem is whether ARIN has standing to sue. ARIN has an interest in all unallocated IP space. This interest includes space that was previously allocated but has since been returned. If ARIN can show that this space was returned, then ARIN will likely have standing. Without such a showing, ARIN would not have standing, as ARIN would not be able to show that any damages had been suffered.
I hope I get an 'A'. Any law professors on
Slashdot is notorious for using "IP" to mean both "Internet Protocol" and "Intellectual Property", so I read the headline as "Spammers Hijacking Intellectual Property Space".
>>> Breakaway, who happens to be an attorney, is trying to defend his company's apparent snatching of this block based upon his own rather novel legal theory that ARIN doesn't have jurisdiction over any IP address space that was handed out before ARIN was formed, in 1997."
By George he's right! I'm gonna lay claim to 127.0.0.1. oh wait I already seem to own it...
to set people like this on fire.
Someone hates these cans.
If ARIN doesn't control IP addresses assigned before it started, then it basically means a return to classful routing. And then everyone would be pretty much forced to use IPv6.
I say go for it.
Not a typewriter
On a federal and international level. While it doesn't solve the problem entirely. It would at least be a step that could be leveraged in situations like this. Also, make the creating/initiating criminal offensives, so there can be more than just monetary damages.
The sparse, narrow state level laws that currently exist can only be use in rare cases are not able to be uses on a large scale or frequently.
" I felt a great disturbance in the internet, as if 65535 ip addresses suddenly cried out in terror and were suddenly silenced. I fear something terrible has happened. "
iptables -A spam -s 134.17.0.0/16 -j DROP
Lawyers, MBA's, RIAA? A jedi fears not these things!
They are committing fraud.
What an idiot fucking judge.
Call the damn police in their area and have the SHYSTERING bastards arrested.
Exactly. All the stupid ideas floated by techocrats wont work. A firewall will work somewhat but you still have to get these guys in your own homeland.
These guys ARE CRIMINALS. They are committing telephone fraud and this idiot judge just bought their snakewater.
If my online co. was attacked with this crap I would sue but also contact FBI or local police and arrest these fools.
wish i could dont have access to the lists
Per my reading of TFA, he made a phony company under the name of the real (but apparently defunct) Amateur Radio group that actually owned that IP block once upon a time, then pretended to be them.
That's what you're missing.
Skylist which was bought by Datran Media controls the whole 69.56.0.0/16 block. They conform to FCC compliant standards for Spam but they're still a spammer. If you sign up on eBay, they're default is to allow 3rd parties to send you email, newsletters, etc. This is even if you change you're profile, you'll still find yourself in many of the databases that Skylist/Datran have clients served up on using their software. I did a test, signed up for eBay, found myself on 5 databases for 3 different companies. Took me many many opt outs to stop receiving emails from them.
Just added the following line to /etc/postfix/blacklist:
:)
134.17 550 You are on our blacklist
The government entity I work for operates a class B, and we waste IP addresses for all sorts of things. In a couple places, we have entire routable class C subnets being used for both ends of a serial link for a branch office T1. It's so easy to waste IP's when you have 64k of them, and really only need several hundred.
So what I wonder is, how much are these large IP ranges worth on the open market? I know class A is impossible to come by. Class B you can get by acquiring random organizations like SF radio. About a year ago didn't ARIN start allowing people to buy/sell IP addresses for profit? Before you either had to use them, or release them out of benevolence. I wonder what market value is.
And what ever happened to the alleged impending crisis of the world running out of IP addresses? If phantom companies, operating out of P.O. boxes, and lacking any real existence whatsoever... except on paper... can get their own /16s and /18s every day of the week, then it's no wonder the world is running out of IP addresses.
Seriously.
Peter predicted that you would "deliberately forget" creation 2000 years ago...
Um, they did that, at least in the U.S. It's a perfect case of the cure being worse than the condition.
The law Congress passed, called CAN-SPAM Act, was pretty quickly called the "YOU CAN SPAM Act" and for good reason. It has so many loopholes and outright legitimizations of spam that it's basically worse than useless.
As a bonus, as if greenlighting spam at the Federal level weren't enough, when they passed it they invalidated all the state laws that were tougher on spam, and also prevented any state from passing tougher laws in the future. Nice, eh? I hope the spammers -- oops, I mean direct marketers, because they're legit now -- got their money's worth.
And that, kids, is what you get for asking for help from the government.
"Ladies and gentlemen, my killbot features Lotus Notes and a machine gun. It is the finest available."
The very first evidence I can find of the 134.17.0.0 being reserved is referenced in RFC 1166 to BAY-PR-NET with a contact of a Mr. Milo Medin of NASA Science Internet Program Office (MEDIN@NSIPO.NASA.GOV), who This RFC is obviously outdated (July 1990), but government agencies usually don't give up their IP space. Initial impression is that NASA was/is involved in providing connectivity to the Pacific Rim; in some ways with AX.25. If this is still the case, then the US Government should have a little talk with whoever gave/sold one of their /16 nets to some lady in Colorado who is the CIO for one of the most notorious spammers in the world.
I've listened to your presentation and your message is essentially this: you shouldn't use IP based spam filtering because that will encourage spammers to exploit flaws in the border gateway protocol, therefore you should use content filtering.
There are several problems with that thesis.
One way to reduce spam works too well, causing spammers to get around it, so use another method so spammers will be nicer to us? Fuck that.
Content filtering doesn't work well. Everyone who has seen his legitimate mail filtered away knows this, as does everyone who receives spam despite filters being in place. As the filtering arms race progresses it will become harder and harder to seperate spam from legitimate mail, resulting in more processing power used and more false negatives and false positives. In the end only something with a near-human intelligence would be able to tell the difference, but it would be unethical to employ such a system for obvious reasons.
If there are security holes in the border gateway protocol, people will try to exploit those. Trying to give nefarious people less incentive to do so will not stop it from happening, since some incentive will remain. The only real solution to security holes is plugging them.
Trying to convince people to stop IP based filtering ("giving nefarious people less incentive" from above) will be mightily difficult, since in a world where no one uses IP based filtering, any individual, ISP or other institution that does employ it will have an advantage.
Stopping IP based filtering not only doesn't remove all incentive for doing IP spoofing and such for nefarious people in general, it doesn't even remove all incentive from spammers. Spamming is illegal in many jurisdictions, so for spammers any technique that makes you harder to find will be useful.
As for this specific case, the address block is owned by the spammers, it isn't owned by some legitimate user and taken over, so there is no reason at all not to filter the block entirely. Nothing useful will ever originate from that block, only spam, and you know that and therefore you block it. There is simply no reason to process packets originating from that block. Saying otherwise is equivalent to saying "people should receive more spam". If ever this block returns to a bona fide user, the block can be lifted of course. Filtering the block decreases its value for the spammers, which is a good thing. It might even give them some incentive to get rid of it.
Also, there is an analogy to a security hole in an application that doesn't get fixed by the vendor for a long time, allowing people to look at your personal documents... until someone with too much time on his hands uses it to lock up all affected computers and the vendor fixes it. I'm not entirely sure that pushing spammers to advertise bogus IP addresses is a bad thing, because others can abuse the border gateway protocol too and it looks like it won't get fixed until it becomes a widespread, big problem. The spammers may actually be useful cannonfodder.
I'm not saying that IP based filters will rid us from spam, but content filters won't either. And IP based filters won't ever go away completely because it provides an advantage to people who use it over people who don't. Your argument against IP based filtering is not very solid and that is a problem, because for your scheme to work, you need to convince everyone. Every ISP, university, individual and institution. And of course you need to hope spammers won't see other reasons to spoof IP addresses. So IP based filters are here to stay, at least for the near future, until some magic obsolesces it.
Andy
whois.arin.net OrgName: SF Bay Packet Radio OrgID: SBPR-1 Address: 1490 W 121st Ave Address: Suite 201 City: Westminster StateProv: CO PostalCode: 80234 Country: US NetRange: 134.17.0.0 - 134.17.255.255 CIDR: 134.17.0.0/16 NetName: BAY-PR-NET NetHandle: NET-134-17-0-0-1 Parent: NET-134-0-0-0-0 NetType: Direct Assignment NameServer: NS1.SFBPRSERVICES.COM NameServer: NS2.SFBPRSERVICES.COM Comment: RegDate: 1989-04-12 Updated: 2007-10-05 RAbuseHandle: CMO79-ARIN RAbuseName: Montgomery, Chad RAbusePhone: 303-464-8164 RAbuseEmail: cmontgomery@sfbaypr.com RNOCHandle: CMO79-ARIN RNOCName: Montgomery, Chad RNOCPhone: 303-464-8164 RNOCEmail: cmontgomery@sfbaypr.com RTechHandle: CMO79-ARIN RTechName: Montgomery, Chad RTechPhone: 303-464-8164 RTechEmail: cmontgomery@sfbaypr.com OrgAbuseHandle: ABUSE1861-ARIN OrgAbuseName: abuse OrgAbusePhone: +1-303-464-8164 OrgAbuseEmail: abuse@sfbaypr.com OrgTechHandle: CMO79-ARIN OrgTechName: Montgomery, Chad OrgTechPhone: 303-464-8164 OrgTechEmail: cmontgomery@sfbaypr.com # ARIN WHOIS database, last updated 2008-04-29 19:10 # Enter ? for additional hints on searching ARIN's WHOIS database.
Those who forget the past are doomed to repeat it.
Those who forget the past are doomed
(No Cookies)
We're sorry, but it appears that you have cookies disabled in your browser.
In order to access this site, you must have cookies enabled in your browser, at least for this site (47-usc-230c2.org).
Please enable cookies in your browser, and then use your BACK button to try your request again.
==> if you don't have anything to say, don't put your link on Slashdot.
BAM! fucking crazy outta nowhere!
<xml><I><am><so><damn>Web 2.0</damn></so></am></I></xml>
Just add them to the ROKSO list and most ISPs won't route their traffic any more. Additionally this could be listed in the bogon zone at completewhois.
I stand by my opinion that we should kill spammers.
We, as a society, accept way too many crimes against us, the society. Crimes against individuals are punished much harsher. Crimes against virtual entities (corporations, money, information) even more so.
Doesn't anyone else think we have this kind of backwards?
Assorted stuff I do sometimes: Lemuria.org
These guys are going in "The Book*."
*The Book contains entries of people that when the Geek Nation comes to power, will be the first ones up against the wall. Being entered into The Book usually requires committing offenses of a particularly egregious or massively annoying nature against common folk.
Slashdot still doesnâ(TM)t support Unicode after it was added to the HTML standard in 1997.
BAM! fucking crazy outta nowhere!
I think what he is saying is that a system with enough intelligence to filter mail would also be intelligent enough to understand mail. It could be used to look for more then spam, you know, like terrorist talk or political speech.Creationist Textbook Stickers Declared Unconstitutional by CowboyNeal
I prefer the crazy explanation. Stop raining on my parade.
<xml><I><am><so><damn>Web 2.0</damn></so></am></I></xml>
The rules for managing pre-ARIN space aren't totally clear, but nobody's worried about them too much because they were mostly owned by large reputable organizations, such as universities and government contractors. (Some of them may need to set the Evil Bit on their packets, but none of them needed to set the Stupid Bit.) In many cases, they've given most of their space back to IANA or ARIN - several universities have returned their Class A
But there have been a few early-adopters that are no longer in business - and in some cases their IP address space was worth more than their remaining furniture and intellectual property. Does the space revert to IANA if the organization is gone? Probably, but if you can pretend the organization is Not Dead Yet, you might get away with keeping their space. In some cases, you can do that more legitimately than in other cases. (A friend of a friend was the former sysadmin from a defunct early-adopter company that had had a Class B
OptInRealBig and their corporate-shell sock puppets have owned large IP spaces before. It's been a while, so I may have details wrong; if I remember correctly, one of the sock puppets was a "web hosting" company, with lots of "customers", and if one of those "customers" got caught spamming, then they'd get spanked for violating the AUP ("Bad! Bad customer!") - and there was enough IP space that they could keep playing this game for a long time.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
On the other hand, most people get their IP blocking information from a few large spam-blocker lists, and if those lists can be convinced to remove the block, and the DNS entries for the spammers get cleared out, and if the dozen or so big email services can be convinced to remove it, then it's at least mostly reliable.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
hermes(config)# access-list outside_access_in deny ip 134.17.0.0 255.255.0.0 any
hermes(config)# write mem
Building configuration...
Cryptochecksum: 792ebde4 b39ba5be d0614fdc 9373b74f
[OK]
hermes(config)#
Problem solved here.
I don't know the answer, just posing the question, do you own your telephone number? I would suggest that the closest analog for IP addresses is not land, but telephone numbers. I do not believe telephone numbers are exactly treated as property (though, in certain cases, you have some rights to keep a phone number when changing providers, but I'm not sure they are still treated quite like property)?
Seems like this makes it easier to block them. Build a rule "no connections on port 25 from 134.17.X.X". In fact, I think I'm going to set that up this afternoon.
Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
A pity you had to turn an insightful into a troll by including racial slurs.
And he's still alive???
1. Traceroute into somewhere within this address space.
2. Null route not only 134.17.0.0/16, but whatever outfit(s) are connecting it. Block incoming shite from both as well.
3. ByeBye OptInRealBig, & Snotty Scotty Richter (at least for today).
4. Profit? We all profit from disconnection of this career spammer.
And don't worry about collateral damage. Richter will find some other way to send out his crap, and we'll eventually be able to return this net to its rightful owner (who should already be bringing criminal charges against these hijackers). The upline should remain a black hole, forever, or at least until it changes ownership.
Alas, I'm afraid the only thing that will truly stop Snotty Scotty is a lynchmob which, in his case, is long long overdue.
Exceeding the recommended torque is not recommended.
Oh, cool. Sorry then. :-)
Creationist Textbook Stickers Declared Unconstitutional by CowboyNeal
Wherever the people live who buy the spammer's products.
That might be good enough for an _ordinary_ career spammer.
But we're talking about Snotty Scotty Richter, here.
He deserves something special .
Exceeding the recommended torque is not recommended.
I've rescued a hijacked /16 a while back, cleaned it up and now have it as a souvenir (with the blessing of the original owner who is not using it globally). Fortunately the spammer who grabbed it wasn't very smart about it (contact info changed to obviously non-japanese info and the block was allocated through JPNIC).
/18s) but eventually got AT&T (AS7018), who the spammer had gotten to illegally announce the block, got the message and stopped.
Had to engage in a bit of a BGP war (deaggregated the block and announced it as 4 seperate
One thing you always have to do is ALWAYS announce every block you have control over, even if you are not using it. There's a highly technical term for an unannounced block: TARGET.
For historical IP hijacking info, see completewhois.com (IP hijacking is by no means a new thing)
The key to properly murdering a spammer is to make sure you employ the correct amount of poetic justice.
I suggest you start by re-activating my original email account from "back in the day" that I had to turn off because the spam to legit ratio has exceeded the number of photons emitted by a typical 60W bulb during the same time period.
Next you create a script that checks for new spam every few seconds and applies 1 volt of electricity through the spammer for each spam received during that period.
The beauty of this method is that he may survive with merely excruciating pain for days before the law of averages catches up to him and gives him a few thousand volts, presumably finishing him off.
Time to get back to work, I guess...
Exceeding the recommended torque is not recommended.
iptables -A INPUT -s 134.17.0.0/16 -j DROP
all gone.
Actually, if I had to guess, I'd say he was referring to the philosophical questions surrounding real AI.
/reporting/ spam and phishing and other fraudulent emails they have received, and it can tell the difference between a user reporting it, and the actual spam itself. Further, this filter handles this in 17 different languages - including languages like japanese and chinese.
However, I too would be inclined to go with the crazy, given that he has clearly not implemented a quality content filter - or at least has not done so correctly.
I run a content filter (bogofilter) in several very different environments. One in front of several personal email boxes, which I've never yet had a valid mail get filtered by, and I get high 99% filtering accuracy.
I have a dspam filter in another environment with a few people which has even more accuracy, but is tuned specifically by user, instead of covering multiple users.
My favorite handles around 7k messages per day, and about 20% of the email is users
Content filtering works great - people are just too lazy to do the work it requires to configure it properly, and worse - to maintain it.
"No nation could preserve its freedom in the midst of continual warfare."
--James Madison
There are several problems with that thesis. There are indeed several problems with that thesis, but that's not the one he's presented; it's a strawman.
The thesis is rather:
1. Content filters work, and no one has yet demonstrated they can be seriously subverted when correctly applied.
2. Delivery-based countermeasures do not work, and only promote an arms race that will only end when airlines chain passengers naked to their seats. Er, sorry, I mixed two up there. Whatever. Content filtering doesn't work well. Prove it. No, really, please do. Everyone who has seen his legitimate mail filtered away knows this, as does everyone who receives spam despite filters being in place. And yet not one of them is able to publish on this failure that withstands any kind of peer review? Really? As the filtering arms race progresses it will become harder and harder to seperate spam from legitimate mail, resulting in more processing power used and more false negatives and false positives. I don't know what reality you live in but they been attempting "progress" the filtering arms race for years now. They haven't made any progress. We're still using the same tools first inspired by Graham and others and they still adapt and filter just as well.
Thanks for the heads up.
/sbin/iptables -t filter -A EXTIN -s ! 134.17.0.0/16 -j DROP
%
-- main(s){printf(s="main(s){printf(s=%c%s%c,34,s,34
Let's Blackhole the Spammers. Seriously, I'm not one for the death penalty in most cases, but I'm willing to consider the gruesome torture of being crushed in an awesome surge of gravitational force acceptable in the case of Spammers. Come on, it'll be much more satisfying.
In Europe this is not possible. For ages RIPE has a very nice and usefully database:
http://en.wikipedia.org/wiki/RIPE
http://www.ripe.net/db/routing-registry.html
Is probably the time for ARIN to implement a Routing Registry.
Content filtering doesn't work well. Everyone who has seen his legitimate mail filtered away knows this, as does everyone who receives spam despite filters being in place. As the filtering arms race progresses it will become harder and harder to seperate spam from legitimate mail, resulting in more processing power used and more false negatives and false positives. In the end only something with a near-human intelligence would be able to tell the difference, but it would be unethical to employ such a system for obvious reasons.
College-Pages.com - Online Colleges, Degrees, and Programs
we can just route that block to /dev/null and be done with it. ;-)
Based on some testing this morning, Spamhaus may have added the entire block to their lists. We've added it to our blocklists. We're recommending our clients do the same.
Sure. Just like guns. Then criminals won't be able to get them.