ietf-asrg
[Top] [All Lists]

Re: [Asrg] Re: "worm spam" and SPF

2004-12-03 11:48:57
Spammers are already sending out worms to their victims. Currently these
worms install zombies which then send out mails using random sender
addresses directly to the target MX. If that stops working, these
zombies will start using the credentials and SMTP server found by
reading the registry, tricking the user or sniffing traffic. Sure, that
is a bit more difficult than what they do now, but what they do now is a
lot more difficult than what they did a few years before, so you can
expect that they will do it if they have to.

Absolutely right, and as the guy who raised this point against blocking port 25, allow me to say this:

If spammers send out spam from (usually) just one email address per compromised PC, spam will drop to tens or hundreds of messages a day per person, instead of hundreds or thousands.

Still, there are enough drone out there to make up for it, but it is a step in the right direction.

Unlike what was said here, using techniques that will force spammers to learn and adapt is not always a bad thing, when pressing them to the corner.

        Gadi.

_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg