ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Asrg] DCC and IP checksums

2003-03-10 10:19:29
from [Sauer, Damon] [Permanent Link] 
I revealed nothing ;-) It does not matter one bit if a spammer knew exactly
what lines I was looking at, that was part of the beauty of the process.
 Regardless, it did not help my spam situation. I was just stating that
chksums do work, however, they are checking for duplicity and duplicity does
not equate to spam in all cases. Blocking based on duplicity (lets say over
100 of the same message) would block very valid and valuable email.

Regards,
Damon


-----Original Message-----
From: Hadmut Danisch [mailto:hadmut(_at_)danisch(_dot_)de]
Sent: Monday, March 10, 2003 11:16 AM
To: Sauer, Damon
Cc: asrg(_at_)ietf(_dot_)org
Subject: Re: [Asrg] DCC and IP checksums


On Mon, Mar 10, 2003 at 11:08:15AM -0500, Sauer, Damon wrote:

I had the code up and working for about a month. I found that doing an MD5
of the hash result of 5 lines in the middle of the message worked
just fine.



There's exactly one reason why this works: 

It is your very private and not publicly known method.

As soon as spammers get aware of this (and they will since you 
just revealed it on this list), your method won't work anymore,
since it is easy to circumvent once the spammer knows how it works. 


Such methods violate one of the most important rules:
Don't do "security by obscurity".

We need to develop methods which can be used by everyone on the world, 
thus need to remain effective when the spammers learned all details
of the method. Your MD5 method fails to do so.


BTW: How do you handle attachments? 

Hadmut





*****
"The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential, proprietary, and/or
privileged material.  Any review, retransmission, dissemination or other use
of, or taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited.  If you received
this in error, please contact the sender and delete the material from all
computers."
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] DCC and IP checksums, wayne
Next by Date:  Re: [Asrg] Nucleus of a draft BCP on filtering, Keith Moore
Previous by Thread:  RE: [Asrg] DCC and IP checksums, Kee Hinckley
Next by Thread:  RE: [Asrg] DCC and IP checksums, Sauer, Damon
Indexes:  [Date] [Thread] [Top] [All Lists]