Christmas Spam Level Skyrocketing 286
dbolger writes: "ZDNet has this brief, but interesting article about how the amount of spam we recieve in our inboxes has increased 650% since this time last year. Nice to know that that anti-spam legislation passed a while back is having an effect (not)." For PINE users, just remember the magic spell: "m s r f a."
Re:msrfa? (Score:5, Informative)
Main menu
Setup
Rules
Filters
Add
But this doesn't work unless you know what to look for in spam...and none are alike
Yahoo Spam filters (Score:5, Informative)
LS
no r... (Score:2, Informative)
Re:Yahoo Spam filters (Score:4, Informative)
I'm now using those, finding spams semi- heuristically and reporting SHA1 hashes to razor servers, with much happiness.
Re:[OT]Stupid Topic Icon (Score:2, Informative)
mailfilter (Score:2, Informative)
Then deletes them on the pop3 server before downloading the actual body.
Re:Speaking of SPAM (Score:1, Informative)
Nearly all the clones support that, too.
Re:Speaking of SPAM (Score:2, Informative)
Under the Security and Privacy entry on the main ICQ menu, there's an option to only accept messages from people on your contact list. To be sure, also tell it not to accept e-mail express or pager messages, as they're generally abused too.
The newer ICQ 2001b gives finer grained control over this, so you can accept regular messages but ignore URLs, etc.
With the rise in ICQIS bot usage for ICQ spam, setting these is almost a must now
Not news - an advert (or press release) (Score:5, Informative)
So, a company selling email filtering software say that email filtering is ever so important? What they actually said was: But their job is to build up a database of junk, so it's not really surprising - it's just saying that their database is up to date (or that their database was very out-of-date last year).
SpamAssassin works great (Score:4, Informative)
I've just tried SpamAssassin [taint.org] this WE and it works great :
...the best thing is that you don't have to perpetually update black lists of well know spammers
it is just based on content detection of spams (subject in CAPITALS; lots of exclamation marks, sp sammer X-Mailer etc.)
and it really works well
Re:Really? (Score:3, Informative)
Oh yeah.. and then there are HTML tags that 'phone home,'
Is that true? I always thought this was some sort of urban legend. I find it somewhat hard to believe.
Sure, it's quite easy to do. Most images that load in HTML email are coming from a remote server. All you have to do is make the image come from a CGI, and tack the person's email address onto the image URL. The downside to this is that you have to send a custom email for each recipient, but half the time you do that anyway. It's a great way to see if the email is actually opened.
Re:Not from AOL, though... (Score:3, Informative)
So WHY are you getting e-mails with a forged @aol.com reply-to? It's simple! Many spammers simply believe that AOLers are more trusting of familiar-looking e-mail addresses, so they want their spam to appear as if it came from another member of the service. Ironically, inter-service e-mail on AOL has NO @ address on it!
Next time you see spam from @aol.com, check the originating server in the headers, you might be surprised.
Re:Spam will kill the internet (Score:5, Informative)
So even if they'd send you only one per year, you'd still get on average about 695 ads per day. So people, instead of JHD (Just Hit Delete), please try to find the time to figure out where the spam was sent from and where the spamvertized sites are hosted and report the spammers or they things may become very ugly...
Jonas
Spam Study (Score:2, Informative)
While I was there we did several things to try and determine what kinds of messages were entering our system.
One of the things we did was to queue all incoming messages for a short period so could have a chance to look at them.
What we determined was that over 95% of all the messages we received that were larger than 1 Meg were CRAP of some sort, and definitely NOT business related.
We also tracked the number of messages per day going through the system for several months and found that just before Thanksgiving our numbers would triple and stay that way until Valentines Day...
I've been spam free for 3 years now. (Score:4, Informative)
I hadn't been forwarding my ISP mail to my account for awhile. I was AMAZED at the amount of crap that came into it when I decided to check it the other day! SHEESH! 60+ mails a day on that account, ALL SPAM. MOSTLY PORNO. This on an account that I have NEVER used, let alone advertised! Of course the lack of security of the ISP probably didn't help (default web pages as the user's account id, for example)!
Damn the spam and full speed ahead! (Score:3, Informative)
The reason a lot of geeks receive SPAM is the same reason I do ... registration of a domain. A live email address on a domain registrar is excuse to have every cheap SPAM cannon leveled at you.
Also, folks seem a bit confused. THERE IS NO NATIONAL SPAM LEGISLATION. It never passed. Not at all. The reason a lot of spammers want to say they are in compliance with opt-out legislation is that it legitimizes their existance. Let's not forget that SPAM is STEALING. You pay for the junk mail that shows up.
Check it out here... [spamcon.org]
Re:I've been spam free for 3 years now. (Score:3, Informative)
Disabling expn and vrfy on sendmail is common security practice. On my Redhat 7.0 box, they were ENABLED by default. Not good.
Re:What to look for... (Score:4, Informative)
There is no law that they happen to be "complying with".
The propossed bill that they keep quoting not pass even if it had it required a valid return address wich they don't happen to supply. It's just a lame attempt at keeping you from taking action.
But yea go ahead and filter anything with that block of text.
Somethig most forget (Score:4, Informative)
I filter spam based off of numerous DNS blacklists. I also have an extensive list of spamming domains and spam supporting providers that I blacklist. Last week I rejected 95,837 pieces of mail from just one of my servers that I deemed to be spam. If people didn't report that spam to the maintainers of the DNS blacklists, I would have to rely on my own access lists to reject spam. This colaborative effort really works.
Re:Spamcop.net seems to have worked for me.. (Score:3, Informative)
Having used SpamCop from both sides (I work for a national ISP), I can't recommend it enough. The admin gets all of the pertinent information in a single mail, and the user can get feedback as to whether the issue has already been solved.
Julian (the guy who runs the service) is particularly helpful, and open to suggestions.
Re:Help me! They are using our Email! (Score:2, Informative)
Essentially they argued that they had to spend time dealing with complaints and calculated the cost of that lost time. They didn't even argue for damage to their reputation, which I think could have lead to an even bigger penalty.
Hell... (Score:3, Informative)
Fortunately, there was an easy solution. I just added Pine filters for these words in the "from" address: deal, offer, bargain, save, money, and winner. That cut it down from ~20 an hour to maybe 3 random e-mails a day that slip through. :P