So, like, the other day "Arik Baratz" mumbled:
So what you're saying is that ISPs and DNS providers can defer or forget
patching of their DNS servers today because the DNS system isn't a target
for spammers yet?
I'm sorry, but I would defer and forget about doing business with an
ISP that follows this line of thought.
That aside, hacking DNS servers is too opportunistic for a spammer to
make a business of. There is a good opportunity with zombies, because
a set precentage of people are stupid and don't patch their
computers and if they patch they open executables they got by
mail. DNS administrators belong to a less stupid race. It may work
for a one-time campaign, but the spammer can't make a living.
Uh, if you think the Spammer are NOT doing DNS hacks, you need
to join the SPAM-L list[1] and Become Enlightened.[2] There
are entire blocks of IP address space being stolen from legit
SWIPs and announced through bogus BGP and DNS setups run by
mainsleaze spammers. Entire networks (like, /16) hijacked and
under Spammer control[3], being routed bogusly. Note well that
the Spammers then may appear to pull of the "legit ISP bizness"
moniker.
From the Spammer perspective, the stakes are high and justify
some fairly serious theft of network resources; not just ow3n3d
boxes, but the core network feeds, IP space belonging to others,
announcing bogus BGP routes, and using mal-formed and abusive DNS[4].
jdl
[1] - http://www.claws-and-paws.com/spam-l
It is high volume a lot.
[2] - Ie, scared.
[3] - http://www.securityfocus.com/news/5654
[4] - For an example of DNS abuse, Mr Zuccarini:
http://cyber.law.harvard.edu/people/edelman/typo-domains
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.4.txt
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)©#�«Mo\¯HÝÜîU;±¤Ö¤Íµø�?¡