#We have. As a rough description, the vast majority of it is spam of
#various types coming from approximately 6000 unique IPs (a day's worth
#of metrics) going to thousands of different email addresses, highly
#variable numbers of spam per IP. There are some indications that it's
#only a few people behind it all, but not definitive.
We study our email sources as well; unlike the old days, we saw a clear
pattern:
-- spam from dedicated spam houses (easily blocked)
-- spam from open proxies (not open relays, open http proxies or open
socks proxies)
We track the dotted quads against a variety of blacklists; to date we've
seen and logged well over 25,000 unique proxies which have been exploited
(see http://darkwing.uoregon.edu/~joe/open-proxies-used-to-send-spam.html )
If you want to control spam, you really need a mechanism for dealing with
abusable open proxies.
Regards,
Joe
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg