Attacks Shutting Down Anti-Spam Sites
from the BAD-trend dept
In the last couple of weeks three major anti-spam blacklists have shut down after losing the battle to constant denial of service attacks from spammers. I can understand why those who ran the lists shut them down (some things just aren't worth the trouble) but absolutely hate the idea that spammers might be winning the battle. Not sure of the details on any of the three sites that were shut down, but it sounds like they were run by volunteers. Perhaps it's time for a major corporation to step in and support some of these public anti-spam blacklists. If they were to do that, then they might also be able to set up a blacklist that didn't have all the downsides that many of the current ones do. We've outlined the problems of blacklist collateral damage before, but with the right set up (clear process for labeling spammers, easy ways to appeal, etc.) perhaps a better solution could be built.Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Reader Comments
Subscribe: RSS
View by: Time | Thread
Blocklist shutdowns
Speculation (it may have been confirmed by now, I'm not sure) is that the boxes were zombied by the SoBig viruses. They now phone home to an IRC server, awaiting instructions on who to blast next. It may actually be more complex and obfuscated than that.
Getting ISPs to disinfect the thousands of zombie boxes is proving to be very difficult, if not impossible. It will take a large amount of man-power to do this, and many ISPs don't have the cycles. Not an excuse, just a reality.
The Internet is becoming a very scary place. There are a few individuals who have the power to make anyone's 'net life miserable.
[ link to this | view in chronology ]
Time to consider a 'DFOL' WRT the spammers
Basic Tools:
1) Run your mail as a whitelist
2) The rejection notice says 'visit this web page'
3) Web page lets you know to get a valid address, you can call the end user, or you can agree to a contract. The contract allows the spammer to be sued in the local small claims court.
4) Profit! (yea, yea missing a few steps)
The variation on 3 is 'selling' a certificate allowing the mailing user to talk to your mail server.
The only other option is to use the fast and loose identity theft handling...order the crap the spammers are selling, then scream identity theft! The spammer has shipping expenses, credit card processing expenses, and the hassle of returning merchandise/filling out paperwork.
[ link to this | view in chronology ]