Barry Shein wrote:
On December 3, 2008 at 23:24 sethb(_at_)panix(_dot_)com (Seth) wrote:
>
> Most of my 419s come from Yahoo.
Well, since we're now debating about what amounts to a knowable fact
does anyone know of any reliable sources for this information?
I should think Seth is pretty reliable about what his own spam load
looks like ;-)
The point that Seth (and Steve) is really making here is that while BOTs
are 80-90% of all spam and IP blocking works well against them, there
are other classes of spam where IP blocking doesn't work nearly as well.
First there's the human shield technique, mostly exemplified by the
"Nigerian horde" phenomena. Where Nigerian 419 spammers gravitate
towards something that they think is too big to block and nest there
until herculean efforts dislodge them. For example, when our systems
were showing >95% of the email coming out of Gmail was 419 (we're
talking 10s of thousands per day). As previously seen by places like
Tiscali, Wannadoo, Hotmail etc.
Second, there's snowshoers. Too agile for something like spamhaus to catch.
Steve mentioned others.
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
https://www.irtf.org/mailman/listinfo/asrg