CDT Releases New Report on Origins of Spam 376
Carnth writes "CDT has released a new report based on a six month project entitled "Why Am I Getting All This Spam?" The results offer Internet users insights about what online behavior results in the most unsolicited commercial email and also debunk some of the myths about spam." A very good report - read it. There's also a story about yet another sleazy spammer in Ohio.
Mirror (Score:1, Informative)
Mirror is here.
the two things I've seen increase spam for me... (Score:5, Informative)
2) Register a domain name.
I have multiple domain names and I know for certain that much of my spam originated from either scanning the whois database, or someone selling the e-mail addresses from there.
I don't gamble, but I noticed that the java applets that were used for 99% of the gambling sites were all from the same place. In other words, if you want to start a gambling site, but you don't want to write software - you can pay to use the java applets of this one company. There is some rebradning that goes on - but in the end, it all goes through their servers and uses their code.
Because of that, I figured if there were any holes in the software, that would mean a whole crapload of open spots out there. So out of curiosity I registered at a gambling site and then looked at the source (you can get the source from a java applet).
After that, my spam increased exponentially - the immediate group was spamming me, as well as selling off the address - which then gets repeated over and over.
I use spamassassin now and I have it tweaked to the point where out of over 100 spams a day, I only have 1 get through - and that is because the code times out and lets it through, not because SA hasn't caught it.
I first installed it in January and in that time have only had it once grab mail that it shouldn't have - from my mom. I added her to the whitelist and have never had a problem since.
I use one of the more recent 2.60 versions, have the spam threshold lowered to 3.5, and I have tweaked a few of the score settings. Workds great for me.
FTC links on Charles Childs (Score:5, Informative)
Re:Mirror (Score:5, Informative)
http://www.visi.com/~rwglynn/030319spamreport.pdf [visi.com]
Slashdot advertiser facilitating SPAM (Score:4, Informative)
Re:Spam (Score:3, Informative)
At this point I'm praying for legislation that makes UCE illegal to government entities! You would think it would be misappropriation of resources or something. But the Ashcroft says no, I guess he is too busy chasing terrorists.
Re:Actually I don't get that much spam. (Score:1, Informative)
This only works until one of your friends or contacts screws up and puts you on a list. How does that happen? E-greeting cards, "send this page to a friend" links, etc. Eventually it will happen, and once you're on the first list you get sold around. Mark my words because I had an email address as clean as yours (4 years, no spam!) until one of my well-meaning family members sent me an e-Halloween card.
Re:FTC links on Charles Childs (Score:5, Informative)
Charles F Childs
and Linda Jean Lightfoot
4132 Pompton Court
Dayton
Ohio 45405
Keywords: "Spammer's address, Universal Direct, Pyramid marketing scam", for the benefit of google.
How about, "Burn in Hell, Dirty Cop"? (Score:5, Informative)
Yeah, this guy is a real success story to be immitated.
Re:Surprised 'bots are that stupid (Score:3, Informative)
There are better obsfucators [arizona.edu] available.
Re:Spamburgers for Hotmail (Score:3, Informative)
Re:My spam research (Score:3, Informative)
You need to use >>.
spammer's home address (Score:5, Informative)
ABUSERS: C. Fielding Childs
cf_childs@yahoo.com
Bulker's Paradise
4132 Pompton Ct.
Dayton, Ohio 45405
FAX: (937) 275-3741
ALSO: Charles Fielding Childs, Jr.
"MAIL ORDER ALLIED COMPANY"
2936 Melbourne Ave.
Dayton, OH 45417
Re:Other amazing discoveries... (Score:2, Informative)
I'm a little sorry that the CDT pointed out that last bit, though; it shouldn't take more than a few minutes to upgrade harvesters to interpret these concealed email addresses. On the other hand, maybe spammers figure that anyone bright enough to use HTML codes or Javascript isn't likely to buy their snake oil.
Re:the two things I've seen increase spam for me.. (Score:2, Informative)
Then that list can be resold.
I have my email address up on slashdot, I have it on my webpage (current and an old school one). I have posted to various discussion boards, yahoo groups, newsgroups, mailing lists, etc. I have purchased online from literally hundreds of online stores (I pretty only buy anything aside from dinner online).
Our of all of those, I definitely saw increases in spam coming in - but it wasn't huge increases until the two things that I mentioned up there - the online gamling and the domain registration.
In Ohio, SPAM is Illegal! (Score:4, Informative)
Re:Surprised 'bots are that stupid (Score:2, Informative)
The pitch for YASS (Yet Another Silly Script) aside, that solution isn't exactly 'better':
Of course, two of three of those problems can be overcome through inclusion of the script as an external resource (rather than an inline element) with some tweaking of the code presentation. But the 'solution' arbitrarily excludes a (likely small) population of users from actually accessing your email address.
If the whole point is to hide the actual email address, push it to the server-side (peddling a client-side JavaScripted solution is sub-par) and use a contact form. If the point is to present the actual email address (in cases where hiding behind a contact form sends the wrong message to your audience), I'm not certain turning to JavaScript offers all that much protection over plain markup obfuscation. Logically, it might, but at what additional cost?
I remain skeptical that HTML character encodings are enough, but perhaps it is so (still) given the CDT finding. One might combine it with the table-split solution offered up-thread. Turning to JavaScript doesn't offer enough demonstrable benefit to warrant usage.
Now, if one would conduct a nice controlled study of the differing techniques...
Re:My spam research (Score:5, Informative)
And, if you want to accept everything that starts with your username, you set up
So, you can have
This info is pretty much available in the man page "dotqmail" and some info may be found at the author's web site at http://cr.yp.to/qmail.html [cr.yp.to]
or the Life With Qmail web site, http://www.lifewithqmail.com/ [lifewithqmail.com].
proof that US economy is in the dumper (Score:2, Informative)
Re:New Tactic (Score:2, Informative)
I use Evolution and it can block loading images from the web.
HTML copy of the report now available (Score:4, Informative)
Re:My spam research (Score:4, Informative)
|exit 100
The 100 exit status causes all mail to that address to bounce, not just get sent to /dev/null. And a bounce is the most reliable way to get off a spam list. AFAIK, qmail is the only MTA that allows user-level control of bounces like this.
How to detect HTML mail in Mail.app via Rules (Score:2, Informative)
Add an HTML filter to catch more spam in Mail.app [macosxhints.com]
It works great!
My experience - harvesters are smarter! (Score:2, Informative)
At least some harversters decode the page before searching it for addresses, and several advertise the ability to get through the "bob at domain dot com" subterfuge.
But, we also have several domains that have no mail address set up, except those required by RFC. They routinely get spammed, even when no email address was used in creating the domain.
Lots of good advice, though!
Re:My spam research (Score:3, Informative)
| bouncesaying "Better luck next time"
Not with Mozilla (Score:2, Informative)
Edit > Preferences > Privacy&Security > Images: Do not load remote images in Mail & Newsgroup messages (check!)
also, in Preferences >Advanced > Scripts & Plug Ins: Enable Javascript for News & Newsgroups (uncheck!)
This, along with whitelisting sites with popup windows and Bayesian email filtering should make your life easier.
Cheers
-- Andre