ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] Re: Asrg digest, Vol 1 #133 - 14 msgs

2003-03-28 05:09:46
from [Markus Stumpf] [Permanent Link] 
On Thu, Mar 27, 2003 at 02:20:02PM -0500, Tony Preston wrote:

What I mean is that if joe(_at_)example(_dot_)com is the FROM user, he should 
exist
on example.com, a query to example.com would check to see if that is
true.


There is such a identification method that was widelier used years ago.
It still exists and it's called IDENT (RFC 931) ... and it doesn't work.
It's all a matter of trust and you can't trust anybody or any system that
you haven't full control over.

I currently have in my queue the following emails (bounces) to
    cathy781672(_at_)hotjuicycunt(_dot_)com
    cathy161126(_at_)hotjuicycunt(_dot_)com
    cathy381564(_at_)hotjuicycunt(_dot_)com
the emails spamvertise the website
    http://www.hotjuicycunt.com/

Where is the problem for the spammer to set up an identification/validation
service for  hotjuicycunt.com  and answer all questions with "yes".
Instead of a full featured system a 100 line program will do it for
spammers. Would it have stopped the spam? No.


This would at least give you a user on a site that is responsible for
sending.


No it won't.
And there is always a user responsible, either the sysadmin for being a
loser or a spammer. And I doubt you will get a private home user
convicted for running an open proxy or being attacked by a virus that
installed an open proxy and being abused as spam relay.
So responsibility is not a spam breaker.


connection, you can record it.  This gives you the ip address of the
spammer and can be blocked.


My database contains roughly 20 millions of those IP addresses and all
are blocked. I have no problems getting about 150000 new each day from
my logs. All I currently have to do is grep for
    HELO earthling.net
    HELO mail.worldnet.att.net
    HELO cyberproxy.com
and block the hosts identifying that way.

Also, the implication for every single person to be listed or for
mailinglists that use VERP are enormous. And, as I said before, those
systems can be attacked with dictionary queries that make it worse, more
than it will help.

        \Maex

-- 
SpaceNet AG            | Joseph-Dollinger-Bogen 14 | Fon: +49 (89) 32356-0
Research & Development |       D-80807 Muenchen    | Fax: +49 (89) 32356-299
"The security, stability and reliability of a computer system is reciprocally
 proportional to the amount of vacuity between the ears of the admin"
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Asrg] 5.b. Opt out ? EC / UK govt proposals == Strict Opt in?, Jon Kyme
Next by Date:  [Asrg] Notes on Callback SMTP Transmission, william
Previous by Thread:  Re: [Asrg] Re: Asrg digest, Vol 1 #133 - 14 msgs, Chuq Von Rospach
Next by Thread:  Re: [Asrg] Re: Asrg digest, Vol 1 #133 - 14 msgs, James Lick
Indexes:  [Date] [Thread] [Top] [All Lists]