<gep2(_at_)terabites(_dot_)com> wrote:
[problem of botnets as spam originators]
The solution to the problem is actually AMAZINGLY
simple... I know that a lot of y'all have this fixation on
IP-based solutions, but a FAR better solution (rather than
attempting to block spam AFTER the botnets are recruited)
is to block the virus/worm code-containing E-mail messages
BEFORE they infect those computers.
And that is really rather easy... you simply block any
HTML or attachments (and particularly EXECUTABLE
attachments) that isn't coming from a sender that is known
and trusted by the recipient TO SEND THEM EXECUTABLE
CONTENT.
Pray tell, how am _I_ to block the executable content from some dialup
luser on level3's machine? All _I_ can do is block his emissions from
_my_ machines.
Note that MOST users (probably 98-99%) will not whitelist
ANYBODY to send them executable content in E-mails...!
Are you considering .jpg to be executable?
The other way that botnets are recruited are by people
visiting infectious Web sites, but that is a problem for a
different list.
But the *spam* emitted by those machines _is_ a problem for this list.
Seth
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg