Slashdot Mirror
US Military Looks For Massive Spam Solution
Several users have pointed out a recent request to technology companies from the Defense Information System Agency for ideas on how to build an e-mail defense system to catch spam. The solution would have to scan about 50 million inbound messages a day across some 700 unclassified network domains. "Defense currently scans e-mails for viruses and spam coming into systems serving the military services, commands or units. DISA wants to extend the protection to the interface between the Internet and its unclassified network, the Non-classified Internet Protocol Router Network. The agency also wants the ability to scan all outbound e-mails from the 5 million users. [...] DISA's request ties in with recommendations that the Defense Science Board issued in April that said Defense is more vulnerable to cyberattacks because of its decentralized networks and systems. The board envisioned a major role for DISA in developing the architecture for enterprise-wide systems."
Nuke spammers from orbit.
Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
There are plenty of solutions out there that work on this scale. I worked at a company that did roughly double that, and now I work at a company that does well over 50 times that.
Off the top of my head, Ironport is probably their best choice.
Establish a "fine" network.
Another mail network sends you spam?
You fine them.
They in turn fine whoever sent them spam.
Whoever does not pay then fine, gets turned off.
I hope they don't shoot $10M cruiser missile to take out $10 tent housing Packard Bell botnet control center.
Fuck systemd. Fuck Redhat. Fuck Soylent, too. Wait, scratch the last one.
Great, and then there will be secret abductions of spammers who are sent to Guantanamo without trial or hope of quick appeal. There will be water boarding and sleep deprivation and acts of humiliation.
Really, I think that my point is that it's not severe enough.
Why are you letting these clowns ruin our country?
I don't understand why routers can not be programed to limit the number of emails it receives from a single source. For example, if a router detects that 10,000 emails are coming from a particular host, treat that host as if it's perpetrating a DOS attack. Routers can be programmed to ignore DOS attacks, why not use the same tech to block massive spamming?
There is no "I disagree" mod for a reason. Flamebait, Troll, and Overrated are not substitutes.
Seriously, it's less than two dozen guys pumping out 90% of the spam in the world. I would guess that the law enforcements and militaries of the world should just do their jobs and apprehend these criminals.
I'd certainly appreciate real action like getting rid of spam than for the CIA/US Military to spend time chasing down far fetched terrorist plots. I'm constantly stunned that given the damage spam creates, special branches aren't more active in tracking and _eliminating_ the sources of these things.
It takes a man to suffer ignorance and smile
Be yourself no matter what they say
If it's not classified, hire a few companies in India or China to do non-artificial intelligence spam filtering. Problem solved.
There's already spam-blocking and virus-scanning firewalls out there. This seems like the perfect problem for a COTS (Commercial-off-the-shelf) solution.
Although I do agree with earlier posters that it would be infinitely more satisfying if they sent the military after the spammers instead... they could take a middle ground between arresting them and torturing them, and just shoot them.
They have lots of men with thick necks and big guns. Buy some plane tickets and pay a visit. Make 'em an offer they can't refuse.
Kwisatz Haderach
Sell the spice to CHOAM
This Mahdi took Shaddam's Throne
In fact, they have several: the Green Berets, the SEALS, and (depending on whom you ask) the whole fucking United States Marine Corps. Turn 'em loose on the spammers.
I write sci-fi for metalheads
I know a workplace where they set up a bounce-and-confirmation system, so that mail from non-confirmed e-mail addresses was bounced, asking to reply if this was a real human. When it got the reply, the address was added to a whitelist. The person working there said to me that he got zero spam after the implementation. Probably becouse almost all spam has a forged from header and/or is not able to receive and reply to incoming mail.
For this rare instance I would certainly condone a few black ops. Find the people who are responsible, capture them, torture them and if they are bad enough, kill them. When there is money involved, it should be trivial to follow that money back to the people who collect it.
This also gives me a great idea for a movie sequel to "Taken." '...I have a very special set of skills... I will find you and I will kill you.' '//good luck//'
Yeah, I would totally watch that...
NOT!
Here goes another few hundred million .... *sigh*
If we really believe in taxation without representation then my unborn baby should be able to vote already ...
Just use gmail. gmail.mil
The Defense Information Systems Agency advocates a
(X) technical ( ) legislative ( ) market-based ( ) vigilante
approach to fighting spam. The idea will not work. Here is why it won't work. (One or more of the following may apply to this particular idea, and it may have other flaws which used to vary from state to state before a bad federal law was passed.)
( ) Spammers can easily use it to harvest email addresses
(X) Mailing lists and other legitimate email uses would be affected
( ) No one will be able to find the guy or collect the money
( ) It is defenseless against brute force attacks
(X) It will stop spam for two weeks and then we'll be stuck with it
(X) Users of email will not put up with it
( ) Microsoft will not put up with it
( ) The police will not put up with it
( ) Requires too much cooperation from spammers
( ) Requires immediate total cooperation from everybody at once
(X) Many email users cannot afford to lose business or alienate potential employers
( ) Spammers don't care about invalid addresses in their lists
(X) Anyone could anonymously destroy anyone else's career or business
Specifically, your plan fails to account for
( ) Laws expressly prohibiting it
( ) Lack of centrally controlling authority for email
( ) Open relays in foreign countries
( ) Ease of searching tiny alphanumeric address space of all email addresses
(X) Asshats
( ) Jurisdictional problems
( ) Unpopularity of weird new taxes
( ) Public reluctance to accept weird new forms of money
( ) Huge existing software investment in SMTP
(X) Susceptibility of protocols other than SMTP to attack
(X) Willingness of users to install OS patches received by email
(X) Armies of worm riddled broadband-connected Windows boxes
(X) Eternal arms race involved in all filtering approaches
(X) Extreme profitability of spam
( ) Joe jobs and/or identity theft
(X) Technically illiterate politicians
( ) Extreme stupidity on the part of people who do business with spammers
( ) Dishonesty on the part of spammers themselves
(X) Bandwidth costs that are unaffected by client filtering
( ) Outlook
and the following philosophical objections may also apply:
(X) Ideas similar to this are easy to come up with, yet none have ever
been shown practical
( ) Any scheme based on opt-out is unacceptable
( ) SMTP headers should not be the subject of legislation
(X) Blacklists suck
( ) Whitelists suck
(X) We should be able to talk about Viagra without being censored
( ) Countermeasures should not involve wire fraud or credit card fraud
(X) Countermeasures should not involve sabotage of public networks
( ) Countermeasures must work if phased in gradually
( ) Sending email should be free
(X) Why should we have to trust you and your servers?
( ) Incompatibility with open source or open source licenses
( ) Feel-good measures do nothing to solve the problem
( ) Temporary/one-time email addresses are cumbersome
(X) I don't want the government reading my email
(X) Killing them that way is not slow and painful enough
Furthermore, this is what I think about them:
( ) Sorry dude, but I don't think it would work.
(X) This is a stupid idea, and they're stupid person for suggesting it.
( ) Nice try, assh0le! I'm going to find out where you live and burn your house down!
I am officially gone from
If it's really less than a couple dozen guys doing this, surely putting out contracts on their heads would cost substantially LESS than all the technical solutions combined to date?
"Nuke spammers from orbit." - by Archangel Michael (180766) on Friday May 15, @02:48PM (#27970781)
Revelation 12:7-12
Archanbel Michael (patron of policemen, iirc) Defeats the Dragon
And war broke out in heaven; Michael and his angels fought against the dragon. The dragon and his angels fought back, but they were defeated, and there was no longer any place for them in heaven. The great dragon was thrown down, that ancient serpent, who is called the Devil and Satan, the deceiver of the whole world; he was thrown down to the earth, and his angels were thrown down with him.
Then I heard a loud voice in heaven, proclaiming, Now have come the salvation and the power and the kingdom of our God and the authority of his Messiah,* for the accuser of our comrades* has been thrown down, who accuses them day and night before our God. But they have conquered him by the blood of the Lamb and by the word of their testimony, for they did not cling to life even in the face of death. Rejoice then, you heavens and those who dwell in them! But woe to the earth and the sea, for the devil has come down to you with great wrath, because he knows that his time is short!;
----
Doing MY part, here ->
----
HOW TO SECURE Windows 2000/XP/Server 2003, & even VISTA + make it 'fun-to-do', via CIS Tool Guidance (& beyond):
http://www.tcmagazine.com/forums/index.php?s=05af24090957cd14494a83460b92e853&showtopic=2662
----
"Nuff said..."
APK
P.S.=> No, I am not some "Holy Roller", I just saw the user's name & the topic @ hand, & felt it fit (in a way)... apk
The thing that most people don't get is that the spammers are known. We know where they are, we know who they are, and how they work. Cash does get traced, and it can't be hidden all that well.
The problem is that most of these cretins are either in countries that have governments that don't care, have no laws against this, or have better things to do. In some cases, they are, or have purchased the government.
So, since we know who they are, where they are, and many of the details, the solution is simple.
The US military has lots of guns and people trained to use them. If these people start showing up somewhat decomposed with a can of Spam (the meat-like product) in their mouths, people will get the message. Toss complicit ISPs in there, and viola, for the cost of a few bullets, spam goes away.
The only reason it is prevalent is that there is no down side to it. If people who advertised on it, stuffed it out there, or facilitated it's transfer start tipping up dead, well, things change quick.
Until then, basically they are smarter than you, have more time than you, and will beat any filter you put into place.
Any other questions?
-Charlie
Untangle (www.untangle.com) -- Free Spam Blocker enables administrators to block spam at the gateway before it ever reaches the users.
* Leverage the best spam filtering techniques including Bayesian Filters, Razor, realtime block lists (RBLs), OCR for image spam and tarpitting
More Info: http://www.untangle.com/Spam-Blocker
How many more times can i explain this, the ONLY foolproof model, is to charge per email sent, even if it is .01 of a cent, this will force not only the bad guys to spend money, and leave a paper trail for those using their own servers..which will then tend to up the bids and make alot less sense to use spam to send advertising per capital.
This would also be a quick sure way to let someone know they have been compromised, they could have
a first offense 100$ cap for emails sent from their PCs, then 500$ cap for second offense (for those that are too cheap to fix their virus ridden computers) and then 3rd strike full price.
This would also allow ISPs to track see who sends millions of email from their home PCs,
as a home profit scam. This send an email..pay to send it...system, can and will be
a great way to generate even more money, because who will reinstall windows for those people who have been badly overrun with malware, bestbuy computer guy that's who....
Yeah there's a solution, it's cheap, and it's even explicitly in the Constitution: get Congress to issue Letters of Marque.
I'm sure there are plenty of people who would take care of the problem for free, if only they got suitable permission.
Can we get a "-1 Wrong" moderation option?
Simply make an e-mail whitelist for that network. It's not that hard. Deny all external emails except for external authorized users (IE They're logged into the network thru a VPN or something) and basically deny any email outside of defined IP addresses. That should cut about 90% of your problem.
Wanna kill the other 10%? Get your network offline and keep it to internal usage only.
Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
I'm confused!
Of all the organizations on the planet, the military should be the first to do something like this. All "real" emails from their servers should get a digital signature that their other servers will use for validations. If a .mil email doesn't have it, then it needs to be dropped immediately.
It certainly won't stop every spam, but it's a good first layer of protection. It will should help with spoofed military email addresses that get harvested. I personally think the emails should be fully encrypted before leaving the servers, but that's more for proper security, not just validation purposes.
"Common sense will be the death of us all"
As evil as it sounds for a big evil organization to partner with another, Google's spam filtering technology on gmail is pretty damn impressive,. I get about 2000 spam messages in 30 days on one of my multiple gmail accounts. I rarely have a false positive or false negative. I'm sure Google's mail filter is just an over glorified Bayesian filter, but with over 100 Million users contributing to the "This message is spam" list to help build the filter you couldn't go wrong. Hell, if Google gave me the option of running all my personal mail servers messages through their spam filter before it hits my mailbox I'd pay for it.
Change the word table from:
"Bomb", "Terrorist", etc...
to
"Penis", "Pen1s", etc...
then
Give Chuck Norris a call.
The spammers get paid well from the companies that they spam for. Why not fine the companies that the spam advertises for? Spamming is not an easy thing to do with a high enough success rate to actually get money for. Hell at *least* they'll stop the spammers from spamming the government.
Too bad these haven't been used since WWII
The only solution is to make a system that uses a whitelist. But whitelists suck. So we need a whitelist that doesn't suck.
The first step is to have all the email clients start digitally signing emails. It is trivially easy to forge the headers on an email, so it would be stupid to trust them for identity information.
The second step is to have email servers check the identity against the whitelist. If the digital signature is invalid, or the credentials are forged (message was digitally signed, but the announced public key of the sender doesn't match) the message is trashed, with no error message sent. If the signature checks out, but the sender was not on the whitelist, the message bounces back to the sender, with an explanation ("you weren't on the whitelist, sorry").
Okay, but whitelists suck. If my best friend from college wants to track me down and send me an email, I want him to be able to do that; but I don't know his email so he's not on my whitelist. So, we need a solution to this problem.
My proposed solution is that your email server should advertise a list of ways that you will accept to bypass your whitelist for a message. One possible way: attach a micropayment of five cents. Another way: attach a certificate showing that your computer worked for an hour on some worthy problem like protein folding at home or something. Another way: here's a URL of a web page; it contains some riddle... attach the answer to your email. I'm sure you can think of other schemes to make it possible for a friend to bypass your whitelist while not enabling zombie Windows clusters to spray spam into your inbox.
There are other refinements possible. Your whitelist can accept, not just individual signatures, but "badges" from some organization. So, anyone from Mozilla.org can attach a Mozilla.org badge to their emails, and I can allow all Mozilla.org emails through. IEEE member badge, SourceForge.net badge, Apple.com badge, go nuts. Even an organization of "I Swear I Will Never Send Out Spam". The key with the badges is that, if you get kicked out of an organization, you have to lose access to the badge. One simple way would be for the check to be live: if you attach a Mozilla.org badge, the Mozilla.org server had better agree that your identity is one known to it.
The current email system is a "Default Permit" system (the #1 dumbest idea on this list). It has to change.
This system would run on the infrastructure we already have, with a few additions. You could have one account with the whitelist, and another account without... but the one with the whitelist is the only one that pages you, or whatever. The important thing is that this doesn't require everyone in the whole world to adopt it before it starts to become useful. Mailing lists would still work, because when you sign up for a mailing list you would add that mailing list identity to your whitelist (probably a badge, such that members of the mailing list are then cleared to email you directly, through the badge).
Someone may claim that validating public key signatures is computationally expensive. No, not compared to running complicated heuristics over the content of a message, trying to guess whether it's spam or not (SpamAssassin and other systems). With this system, the server doesn't attempt to classify a message. Either it passes the whitelist, it's bounced back to the sender, or it's deleted. Done.
Now, if you have found a hole in this idea, you will score bonus points by explaining how to fix it, not merely pointing out that I am an idiot.
steveha
lf(1): it's like ls(1) but sorts filenames by extension, tersely
I'd recommend that they contact Messaging Architects. I think that they'll find that they have a solution that can be scaled to handle that amount of traffic.
Surge the spammers. It must take them some time to enter credit card information from the gullible people who actually respond to the spam. NATO should capitalize on that, and employ the armed forces to answer every spam solicitation with a "flytrap" credit card number. The spammers would see their responses spike but would be tied up wasting their time on non-productive responses. If the NATO guys from Germany are just sitting around in Afghanistan playing on their laptops and drinking beer, they could be multitasking and responding to spam with fake credit card numbers.
Gently reply
it be a massive computer program seeded into the internet with no central core. its purpose to seek out assigned targets and deal with them. and we'll put AI algorithms into it. and call it skynet
Operation Unsubscribe
9 servers. 50 million messages a week. Those 9 servers cost maybe $3,000 each. We have 9 servers because we want some redundancy. So let say you multiply that by 7. So you get ~50 machines to handle the army's volume. $150,000. Plus all the extras, so multiply that by 6. That's about a million dollars.
Seriously? From the article they say it would cost $100 million. Do you really think that is going to cost $100 million dollars? Seriously?
WTF. I need to become a DoD contractor.
Unless you use your new system to hunt down and kill the spammers, you will never win. You will only spend an ever increasing amount of money fighting a losing holding action.
"It's the height of ridiculousness to say for those 9 lines you get hundreds of millions."
If it actually is the botnet control center then it's probably worth taking out. And maybe you'll get the operator with it!
"It's the height of ridiculousness to say for those 9 lines you get hundreds of millions."
Wanna talk to someone at DoD? You have to sign your email. Not signed? Automatic bitbucket. Signed? Look the keyid up in the spammer-versus-not-spammer database. Not in the database? Greylist the fuck out of it and make sure that whatever human ends up looking at it, has an easy way to mark it as spam/notspam.
They want to scan outbounds? Stupid, stupid, stupid. You are preventing people from encrypting. (Yes, I know we're talking about the unclassified network. Doesn't matter; an email to your sweetie saying what time you'll be home, is worthy of encryption.)
Let's say we each run ISPs. You send me spam. I charge you. You charge the spammer. The spammer doesn't pay. You cut off the spammer.
Then I cut off you. After all, you didn't pay. Now no one on my network can email anyone on yours.
Back to the old drawing board.
Seriously. You have troops, agents and all. Just shoot them. And if they are in another country, and that country refuses to extradite them, invade 'em. It's what you do best, and for once, everybody on the whole world could agree. Even North Korea and the Taliban. ^^
Any sufficiently advanced intelligence is indistinguishable from stupidity.
I'll second you on this. As much as I love Free - and Free really is and always has been one of my most favorite things - an economic solution to this is by far the best approach to this. Give the money to the person receiving the e-mail - e.g. you pay me to receive your message - and I can use that as credit against e-mails I send myself. Then I might even accept that crap - before deleting it.
"It's the height of ridiculousness to say for those 9 lines you get hundreds of millions."
The answer to stopping spam is to simply stop making excuses for badly set up and administered legitimate mail systems. If standards are set up and enforced for simple things like reverse-lookup or SPF records most spam would be easily identified amongst the ham. If your business partners REALLY want to do business with you then they'll set up their mail servers and DNS correctly. When companies start losing money because they can't get their mail delivered, maybe they would start to care. We need more Bastard Operators out there to clean things up.
Phoenix means you never had to say you're sorry.
How about we hold the telecoms accountable for allowing these people to use their networks to send unsolicited e-mails?
We are always playing cat and mouse with spam filters etc but never get ahead of the criminals. Telecoms know or should know the traffic patterns of who is sending and receiving. Hold them accountable for shutting down IP's, servers in their data centers etc. Cut it at the source.
Immediately I thought this was just a clever front for the military's plans to monitor ALL email.
....You hunt them down and kick their asses.
Cops and prisons exist for a set of very real reasons. Applying technical 'fixes' to what is a criminal enterprise is like busting your ass building ever higher and ever thicker walls around your house: If you don't deal with the root of the problem, the criminals themselves, all you're doing is delaying the inevitable.
Everybody up to this point has been engrossed in spending all this time and money building ever higher and ever futile walls, ceding the world of the Internet to the criminals while we try to make our tiny little pieces of turf 'safe.'
Personally, I think it's time we took the Internet back.
'Nuff said.
Regards;
Publish/share whitelists. You haven't whitelisted your friend, but somebody has. Find 3 people who say "this guy is not a spammer," who themselves (recursion alert!) are not spammers.
In other words, guess their spammer rep the same way you guess whether or not to use an OpenPGP key that you haven't personally certified.
As copyright owner of this comment, I authorize everyone to defeat any technological measure which limits access to it.
Oh yeah, centralize that. Good idea. Then only one system needs to be compromised -- I mean only one system needs to be defended.
Hmm, didn't somebody here mention people with guns?
and just make a giant spam sandwich and eat it
Fuck, yeah!
bomb the spammers.
They're using their grammar skills there.
I'm sure that's what they want to scan all of our emails for. Certainly.
It is by my will alone my thoughts acquire motion; it is by the juice of the coffee bean that the thoughts acquire speed
This could be useful. It will result in an official DoD list of known spammers. That will make prosecutions easier. And the "attack on Government computer" provision in the Computer Crime Act will apply.
If someone from DISA pushes hard enough, the FBI can be tasked to take down the top spammers. It doesn't matter where they are; if the U.S. Government is annoyed enough with them, they can be shut down. That's what the State Department is for.
If one spammer a month went to jail, there would be a huge drop in spam. We see a big drop each time a big spammer goes down. There just aren't that many players.
Only 200? I buy 50 round boxes of 9mm for about $12/box. Spam is a problem that could be solved for $50.
Actually it would cost more. Remember: two in the chest, one in the head.
And we better go with .45 ACP, preferably hollow point, just to make sure.
And silver instead of lead if you're really paranoid.
Predator UAVs with Hellfire missiles. Fabulous antispam solution. Ask Abu Musab al-Zarqawi. SEAL snipers have recently proved themselves to be an amazing solution as well, providing antispam protection ship-to-ship at night.
and 1 cent to read it. Money goes to retire the national debt.
Also shouldn't we email users every 30 days (at random) REPLY to a spam message with misinformation. Slashdot em to hell.
Help end the use of Sigs. Tomorrow
Join the Army! Travel the World! Meet lots of interesting people, and kill them. (Spike Milligan; The Greate McGonigal, the Truth at Last)
Squirrel!
"Army Lt. Gen. Keith B. Alexander, director of the National Security Agency, told an audience attending the RSA Security Conference in San Francisco in April that about 20 billion e-mails are sent globally every day, of which 65 percent to 70 percent are spam."
That's a terribly low estimate. Postini processes upwards of 3bn emails per day, of which over 95% is spam. And that's a tiny, tiny portion of global email traffic.
Blanket spam solutions are an ongoing battle with ever-evolving methods - not a "we'll buy this thing for $100m and then it will Just Work." There are filtering and archiving services that spend their energy battling spammers every day. I don't understand why the DoD would want to pay for someone to create and maintain a custom infrastructure, much less take on the responsibility of reacting to new spam methods for a single customer that generates only 50m emails per day.
Moreso, the effectiveness of a spam filtering solution is dependent on the richness of the IP blocklists it maintains plus the header, attachment, and spam content definitions. Why start from scratch when there are rich data sets that these services have been building for years?
Postini does this well.
Exchange Hosted Filtering does this well.
The DoD or whoever it hires will never do this well.
This is one area of IT best left to the pros or client-side filters customized to the specific end-user.
Bargain with a service for a few dollars a year per end-user and it'll be 7 years before you approach that $100m price tag, which I'm sure doesn't include servicing the equipment or adding new features.
What a complete waste of taxpayer's money.
The only real solution to spam is to get to the source of the income. The way to stop spam is to have the credit card companies hunt them down and stop the payments. The way in which spammers are paid is through credit cards, so if they cannot use credit cards the business plan fails. Unfortunately the credit card companies also get income from spam.
Stay tuned for new sig...
Anyone else read this from across the room as "US Military Looks for Massive Sperm Solution"?
For a second I thought there may have been a good reason I haven't looked at any porn since Monday...
EXECUTE THE SPAMMERS.
If some idiot thinks that they actually deserve to be treated by people, you can:
1. Take ALL their computers away from them. Wipe their drives and donate them to needy schools.
2. Seize ALL their financial assets, such as stocks, bonds, home equity, savings, checking accounts, and cash.
3. Seize their personal assets, such as jewelry, cars, real estate, boats, electronics, furniture, livestock, and house, and donate to needy schools/community colleges.
Let them suffer complete forfeiture of their assets. That is the only way these idiots will learn. Alan Ralsky, for example, keeps setting up new enterprises regardless of his punishments.
For those that have a family with small children that need to be taken care of or a disabled family member that depends on them, liquidate assets so that the children or disabled family member won't suffer the life-changing interruption because of one of their parents. If it is both parents, then send them to live with a foster parent, and use the proceeds from the liquidation to support the foster family as well as the children, or a specialized care facility if they are disabled. Also, forbid contact with the offending parties until the minor reaches age 18, and put in a stipulation that the offender can NEVER benefit from the proceeds through another party.
Knowing Google's lust for data collection, the Soviet Union is still alive and well inside the psyche of Sergey Brin....
DISA's request ties in with recommendations that the Defense Science Board issued in April that said Defense is more vulnerable to cyberattacks because of its decentralized networks and systems.
What the fuck, over? I seem to recall this same Department designed the internet some 30 years ago so that decentralization was a core feature in order to improve its resiliance to cyberattack. </facepalm>
Edith Keeler Must Die
Other agencies have figured this out (check out DHS for multiple domains). Pick up a phone and call around. No need to re-re-re-reinvent the wheel. Seriously.
Well, if they're looking for a 'Massive Spam' solution, then instruct all DoD users to 'opt out' of all spam, open the networks to the bot-herders, and disabling firewalls and proxies. I'm sure I've missed a few things here, but this will provide a good start on getting 'Massive Spam'.
Oh, wait, are they talking about 55 gallon barrels, or hogsheads of Spam(tm)? No, it must be about shipping containers of Spam(tm), that's it!
No?
Now I'm confused!
ScuttleMonkey must be KDawson's understudy/minion. Aren't 'editors' supposed to edit any more?
Now I will have nightmares of a 'Massive Spam(tm)' the size of the planet Jupiter crashing into Earth, and killing all of the dinosaurs!...Again! Gee thanks, ScuttleMonkey!
P.S. Have a HAZMAT crew on hand before you open my next x-mas card, 'editor'! (hint: if it's flaming/smoking don't stomp on it to put the fire out! Heh! Heh!-)
Down With Slashdot BETA!!! I've been around the corner and seen the oliphant; you can only abuse me from your perspecti
The military has lethal weapons and spammers are mortal... Need I say more?
The race isn't always to the swift... but that's the way to bet!
just a thought: why not reuse those omnipresent social networks? a kind of layer in e-mail communications. Inbound mail would be ranked by degree of connectedness to the adressee. And senders who are connected to several people of the next more inner degree would get a rank in between, say depending on to how many of these circle the sender is connected.
would kill out spam but keep friends etc able to get read
The United States law systems cannot shut spammers down because spammer scammers are frequently out of the country. The defense department could track down offenders and knock down their door. Of course, the enemy nation may not take kindly to this.
God spoke to me.
If a major player, usually seen as a freemail provider like google or yahoo, but certainly also any large corporation or government agency, were to simply start reporting their spam, the problem would go away.
Beef up and aid services like KnujOn and SpamCop and remove the ease of sending spam and (more importantly) the profitability. But that only goes so far -- it nails the pseudo-legit spammers, but it only slightly hampers the straight-up criminal ones (while eliminating their competition).
The next step is escalation; like Blue Security, create a do-not-email list (using hashed emails for privacy) and then after a lack of response from SpamCop's reports, utilize the opt-out requirement of the CAN-SPAM law to essentially flood the spammer with unsubscribe requests. I've detailed this proposal, along with how to decentralize it to make it immune to the DDoS that stopped Blue Software, on my website at http://khopesh.com/wiki/Ending_spam
Use my userscript to add story images to Slashdot. There's no going back.
IronPorts (and no I don't have anything to do with the company) But who am I kidding ... This is DISA they will have to roll their own to the tune of 100 Billion dollars ...
When you secretly scan emails off the major backbones in the name of security, it's "wrong", so what you do is do it under the auspices of a beneficial service and reason (spam) and end up still the snooping ability the government wanted in the first place.
The military treats it's users like a corporation does....they are cloistered behind firewalls and forced to use managed software under MS windows and a preconfigured, managed set of applications.
So of course they are easy to locate, target and break.
Since it's an unclassified network fire all the IT depts. and give everyone local internet accounts, just like the people have at home.
Over the last couple years the mil it depts. have turned high end quad-core multi-gig machines into virus-detection and scanning POS's that take 15 minutes to boot.
They've also blocked a massive amount of useful sites and software and slowed down work, and broken many s/w packages.
Many users I know are tethering notebooks to their mobile devices to get their unclass work done during the day. That's a dead giveaway that the DoD is dysfunctional and in complete denial of how bad they've fucked up their IT with all the network nazisms.
Here's a clue DoD--get out of the way and use COTS and freedom.
Transition the NIPRnet accounts to AT&T and Verizon or whatever the local broadband solution is and just go find something else to do, rather than break 1000's of machines, degrading them ever further, in random ways, every so many weeks.
* Reprogram the massive botnet used for spamming into components of a massive AI system
* Launch "Skynet" to combat the growing problems of spam and malware
* Find your friends, go to the local pub, have a beer, and wait for the whole thing to blow over ;)