[Top] [All Lists]

Re: GTUBE/Re: Quizzic: Spam equivalent to EICAR test virus proposal.

2003-07-03 06:33:54

[Matthew Elvey (FM)]:

  Matt Sergeant of SpamAssassin posted very relevantly to the ASRG about
  GTUBE in March:
  There were a couple replies that are meritless from Vernon
  Schryver and Kee Hinckley.  A valid complaint was what about
  antispam systems that aren't content filters?

that's a bit harsh on Vernon Schryver, his idea of setting up an
auto-responder from a fixed IP-address is exactly what you propose.

  Enhancement to my scheme to more fully address it: A pseudo-open
  relay could be established (run by who?)

probably someone academic, for stability topologywise, and also for
IPv6 support.  the problem is that willfully getting your host listed
in RBL is scary.  you never know what people will jump to conclusions
and blacklist your entire B-net.  (perhaps MIT could run it in its own
B-net ;-)

  that would (attempt to) relay only Quizzic-compliant messages.

might as well leave SMTP out of it.  connect to a port, enter a
recipient address, and the server will connect to the MX of the source
IP.  (make sure the reverse and forward lookup match.)  the message
will be fixed, and therefore not attractive to abuse by spammers.
rate limiting per source IP (no more than 10 messages a day?) will
stop the people trying to use it to DOS.

  Sounds like the effort is still needed and  the need is there.

it seems to me that asrg is the proper forum, though.

Kjetil T.                       |  read and make up your own mind

<Prev in Thread] Current Thread [Next in Thread>