ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Asrg] Re: News Article - Spammers and zombies

2003-07-02 01:13:24
from [Rodney Tillotson] [Permanent Link] 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

At 01/07/2003 21:28 -0400, Yakov Shafranovich wrote:


http://news.bbc.co.uk/go/pr/fr/-/1/hi/technology/3036092.stm
...
Computers belonging to thousands of companies across the world are
being hijacked by e-mail spammers to disguise their true identities
and host their websites.


The 'disguising' systems were mostly open proxies; systems left
insecure by their owners but not modified by an intruder. I guess the
website hosting was either through vulnerabilities of running servers
or a combination of open proxy client and wrong ACL on proxy server;
but I haven't checked that.

There is a quite different process where someone adds or modifies
software by Trojan persuasion or some platform vulnerability, and the
added software acts as a bulk mail injector.

Not picking nits, but using the name 'zombie' instead of a description
assumes we all know the code, and in this case either Yakov or I (or
both) did not. If forced to use 'zombie' I would take it to be the
added software, and the BBC report was about open proxies.


And, of course, 'spam' is name calling too. Since it needs to be
defined on each occasion it is used, you shouldn't bother. This group
has found that out but (if other forums are any guide) will probably
have to revisit it at regular intervals. I will not trigger that just
now -- I hope :-)

The article probably conveys something reasonable to lay readers, so
it's a good one. For this group, perhaps note that a variety of
technologies and business practices are brought together to achieve
marketing through Unsolicited Bulk E-mail. It's a broad problem and
the way out of it will take a broad range of activities.
But you knew that.

Incidentally, I gather that the bulk mailers thrown off Telefonica
in the article have moved to Verio.

Rodney Tillotson, JANET-CERT
+44 1235 822 255.

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBPwKUBMxy/J7PAuvpEQJykgCg5z2BUzY9OgYcaAx3NHRH3fPj5O4AoO+E
r87eZQNOlXZKZmg7b9IHvn+h
=RID6
-----END PGP SIGNATURE-----


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Asrg] "Super Opt-Out", gep2
Next by Date:  Re: [Asrg] 2a. Spam Measurement - SenderBase.com, Kurt Magnusson
Previous by Thread:  [Asrg] News Article - Spammers and zombies, Yakov Shafranovich
Next by Thread:  [Asrg] Bogus reasoning, gep2
Indexes:  [Date] [Thread] [Top] [All Lists]