Forgot your password?
typodupeerror
Spam

One Third of Email Now Spam 431

Posted by CmdrTaco
from the nobody-really-knows dept.
Himanshu writes "The volume of spam received by business has doubled over the last two years and it's going to get worse. Analysts IDC reckons that spam represented 32 per cent of all email sent on an average day in North America in 2003, doubling from 2001. That figure is less than the 50 per cent or more junk mail statistic commonly cited by email-filtering firms like MessageLabs and Brightmail but it still represents a serious problem,"
This discussion has been archived. No new comments can be posted.

One Third of Email Now Spam

Comments Filter:
  • Oh no! (Score:5, Funny)

    by Anonymous Coward on Tuesday April 20, 2004 @12:17PM (#8917888)
    One-third of e-mail is spam? But nine out of ten of my e-mails are spam... Nobody loves me. :~(
    • Re:Oh no! (Score:5, Funny)

      by Mateito (746185) on Tuesday April 20, 2004 @12:21PM (#8917946) Homepage
      > One-third of e-mail is spam? But nine out of ten
      > of my e-mails are spam... Nobody loves me. :~(

      Post your email address to slashdot, and we will all send you friendly emails.
      • Post your email address to slashdot, and we will all send you friendly emails.

        Post it to a newsgroup, and you'll get a LOT.

        Maybe it's 1/3 by number of pieces, but in terms of actual volume, it's gotta be more than 90% (executables take up a LOT more space than legit emails, in my experience).

        I use KMails' "create filter" function to send them to the trash automatically - it's really easy to create rules that work.

        Mind you, I kind of wonder how stupid spammers are when they keep sending me "Critical

        • Re:Oh no! (Score:5, Funny)

          by strictnein (318940) * <strictfoo-slashd ... m ['hoo' in gap]> on Tuesday April 20, 2004 @12:46PM (#8918309) Homepage Journal
          if they had bothered to read the headers to my postings, they would know I'm not running Windows.

          I know when I spam I always check with each person I'm going to spam that the spam I am going to spam them with is full of spam pertains to products they would like to be spammed about.
          • Re:Oh no! (Score:4, Interesting)

            by tomhudson (43916) <barbara...hudson@@@barbara-hudson...com> on Tuesday April 20, 2004 @01:00PM (#8918535) Journal
            It's just that if they'd be a bit smarter, they could direct their spam to people who might actually WANT what they're spamming about, and get better results quicker.

            Mind you, that would require too much work for their pea brains.

            I do have another solution, though. Since I control the mail server user accounts where I work, I can just create a new email account every week and invalidate the old one. Or create an email account just for usenet postings :-)

            • Re:Oh no! (Score:3, Insightful)

              by hoggoth (414195)
              > It's just that if they'd be a bit smarter, they could direct their spam to people who might actually WANT what they're spamming about, and get better results quicker.

              What would be better about their results?
              It currently costs them nearly nothing to send millions of emails to blind lists of emails and random names at random domain names.
              How would spending time and effort trying to do anything sensible with that list get "better results" for a spammer?

              As much as we hate it, they are behaving in the mos
              • Re:Oh no! (Score:3, Insightful)

                by JuggleGeek (665620)
                What would be better about their results?

                Fewer complaints, and far less likely that they would end up in court for spamming.

                Seriously, if spammers had any foresight, they would at least try to target interested people. They would honor unsubscribes. They would put legitimate info in their header.

                None of that would make it acceptable to me, of course, but if most spammers did that, congress wouldn't be passing laws about spam, and far fewer people would complain about it.

                As they are doing it (the

                • Re:Oh no! (Score:4, Interesting)

                  by hoggoth (414195) on Tuesday April 20, 2004 @04:58PM (#8921882) Journal
                  > Fewer complaints
                  They are anonymous. All the information is forged. They never hear the complaints.

                  > far less likely that they would end up in court for spamming.
                  Court where? in China? in Russia? Who do they send the supoena to? See above.

                  > they would at least try to target interested people. They would honor unsubscribes. They would put legitimate info in their header.
                  Why? What would they gain by going to these difficult lengths? It doesn't cost them anything more to target EVERYONE. The interested people get the spam.

                  > None of that would make it acceptable to me,
                  Me neither. I hate them. I hate my overflowing mailbox. But I am pointing out the realities of the situation.

                  > if most spammers did that, congress wouldn't be passing laws about spam, and far fewer people would complain about it.
                  They don't care. The laws and the complaints don't affect them.

                  > they are forcing people to get decent spam filters
                  Now THIS is true. Our filters are getting better, which cuts down their audience. But of course they are in this for the quick buck and their business has no happy medium with "considerate marketing". But of course their profits trickle down to hackers for hire who keep sneaking through the spam filters.

                  > they get a lot of complaints.
                  No they don't. Lots of people are complaining. It's not the same thing.

    • One-third of e-mail is spam? But nine out of ten of my e-mails are spam... Nobody loves me. :~(

      Man I could only wish for 1 legit email out of 10. I am more in the 1 out of 100 range.
    • by turnstyle (588788) on Tuesday April 20, 2004 @12:40PM (#8918228) Homepage
      And one third of Slashdot posts are First Post
    • Re:Oh no! (Score:5, Informative)

      by MoonBuggy (611105) on Tuesday April 20, 2004 @12:52PM (#8918373) Journal
      Why has nobody realised yet that it doesn't say 1/3 of email recieved is spam, but that 1/3 of email sent in the US is spam. I'm not suprised at that in the slightest - most spammers don't want to bother with the legal risks involved in sending spam inside the US. Just send it through some open relay wherever you find one or operate from Russia, it's far easier.
  • by titaniam (635291) * <slashdot@drpa.us> on Tuesday April 20, 2004 @12:18PM (#8917890) Homepage Journal
    I get a ton of spam, check out some of my recent spams [drpa.us] and a frequency plot [drpa.us]. starting from when I began saving and filtering them. Many thanks to Paul Graham for his plan for spam [paulgraham.com], or I would be buried by 350 spams per day by now. It is only going to get worse! Based upon how many I get, the probability is more like 95% percent of my email is spam.
    • by liquidpele (663430) on Tuesday April 20, 2004 @12:25PM (#8918005) Journal
      Hell ya. Has anyone noticed the tripling of spam in the last couple weeks?
      I had it down to 5 a day bouncing them with mailwasher, and now I'm getting like 30-50 a day.
      I guess some new spammers came into the field?
      • by blamanj (253811) on Tuesday April 20, 2004 @01:16PM (#8918787)
        How about 2 per second? I came home from a vacation this week to find my mailbox quota maxed out due to 2000 copies of a single e-mail from the same spammer. I figured it was a one-time thing, until I checked the following morning and the same thing happened.

        After I deleted them all, I checked every couple of minutes to see them pouring in at nearly two copies per second. Fortunately my ISP was able to block them after I notified them, but who knows how many legitimate mails were bounced while my account was full.

        It's bad enough to get spam, but to have a spammer stuck in an infinite loop on your account is really nasty.
    • by spellraiser (764337) on Tuesday April 20, 2004 @12:33PM (#8918132) Journal

      Note that the analysis says that 1/3 of all email sent is spam. This can easily be coincide with many users receiving lots more spam than this.

      For instance, there might be many users which receive a larger slice of the other, legitimate 2/3, thus making up for those who receive less of it.

    • to get that much spam???

      I tried to get as much spam as possible in order to test spamassassin. I posted my email address on usenet and on all porn sites i've found. I have also tried installing spyware and toolbars. Internet explorer now crash on all sites but no spam so far.

      Now, i resort to post my address on slashdot
      sm@bigserver.hopto.org
  • OKay then (Score:5, Funny)

    by schnits0r (633893) <nathannd&sasktel,net> on Tuesday April 20, 2004 @12:18PM (#8917899) Homepage Journal
    Then who is getting the other 66.6% of my email?
  • Only 32%? ? ? (Score:5, Informative)

    by David E. Smith (4570) * on Tuesday April 20, 2004 @12:18PM (#8917901)
    Only a third? Gosh, I wish I had that little spam...

    From the logs of our anti-spam appliance [barracudanetworks.com], over the last six weeks or so:

    Total emails received 27900189
    Blocked (Spamhaus lists) 22450665
    Quarantined (probably spam) 4449044
    Viruses 117518
    Allowed 882962
    That's right, about 96% of our email is spam, viruses, or otherwise ungood.

    I'd be delighted if the spam dropped off so it were only 32% of our mail. Think of all the things I could do with that extra bandwidth...

    In fairness, the study says they were looking at businesses, and this is at a small ISP, mostly residential customers. But it's a good number to chew on nonetheless.

    • Only a third? Gosh, I wish I had that little spam...

      Same here. At least now I know that I'm doing some good in this world, because if I'm getting 99% spam, that means I'm siphoning it off from a bunch of other people who are subsequently getting a lot less.

    • I quite agree. I get about 10-20 emails a day, and at least 90% are for pecker pills, or from colleges that can't spell.

    • Re:Only 32%? ? ? (Score:5, Interesting)

      by hackstraw (262471) * on Tuesday April 20, 2004 @12:35PM (#8918168)
      Right now the mail server that I admin, which has only about 7 active users, we catch about 25% spam.

      I've got spamassassin installed, and it does a good job. One thing from the article that reinforces something that I've been thinking about implementing is reducing the time spent dealing with spam. Since I have a good spam filter, I was thinking of deleting the obvious spam, and then delaying the more questionable spam to be spooled until one time a day and then put in the users' mailboxes at one time. That way the user would only have to go through the scan the inbox and delete spam once a day instead of incrementally throughout the day. This will also reduce the "You've go new mail" at all if the only new mail is spam or possibly spam. The only false positives that I've seen have been solicited mass mails like newsletters, and sometimes a mail in the spamassassin mailinglist will get flagged as spam for obvious reasons. Having these false positives mailed with the other questionable spam with a delay would not be a problem.
  • by imadork (226897) on Tuesday April 20, 2004 @12:18PM (#8917902) Homepage
    spam really needs to catch up. I know that over half the snail-mail I get is junk mail...
  • by Anonymous Coward on Tuesday April 20, 2004 @12:19PM (#8917906)

    ... another 2/3 to go then our job is done.

    Sanford Wallace
  • Bah. (Score:5, Insightful)

    by Kenja (541830) on Tuesday April 20, 2004 @12:19PM (#8917911)
    I've had the same domain name for around ten years with a catch all email acount. 1 in 3 is nothing, for me its closer to 99 out of 100.
    • Re:Bah. (Score:3, Insightful)

      by Jin Wicked (317953)

      Same here -- I've had my domain name for about 4-5 years now, and while it wasn't bad for a long time because I was careful to always muddle up my address, at some point this year my address got on some big spammer's lists and that was it. My catchall default account for non-existent addresses and the "default" address gets around 300 pieces of junk mail a day, and that's constantly increasing, and SpamAssassin catches another 300-500 a day over and above that. It's awful. When I first installed SpamAssassi

    • Re:Bah. (Score:5, Informative)

      by Animats (122034) on Tuesday April 20, 2004 @12:38PM (#8918211) Homepage
      Me too. I'm getting about a thousand spams a day to the default inbox for four domains.

      Filtering is removing about 97% of the spam, but even after filtering, I'm getting more spam than real mail.

      Most of the spam seems to be selling prescription drugs. It's clear the Bush Administration doesn't want to do anything about this; there's plenty of authority for stopping illegal sales of prescription drugs on-line. Prescription drugs are traceable, after all.

  • I would believe (Score:3, Interesting)

    by dolo666 (195584) on Tuesday April 20, 2004 @12:19PM (#8917917) Journal
    ... that 1/3 of email is *not* spam. Where do they get these figures from? Is there a computer that tallies all the spam up, and if so, why can't it just kill the spam along the way?
    • Re:I would believe (Score:3, Insightful)

      by Shalda (560388)
      While I get tons of spam on my personal email account, my work account sees far less junk. Part of this is that I've had my work account for a shorter period of time. My work account is also publicized less. Finally, I get dozens of work related email in the course of a day. Contrast that with my personal account which receives so much junk that I don't even hide my address on slashdot anymore. That account has been in existence for about 6 years now and I only receive a few pieces of personal mail a w
  • So what? (Score:2, Insightful)

    by Anonymous Coward
    One third of my regular mail is junk mail, and it's been that way ever since I can remember. Why should email be any different?
  • by Anonymous Coward on Tuesday April 20, 2004 @12:20PM (#8917922)
    It's about time it started going down.
  • by Anonymous Coward on Tuesday April 20, 2004 @12:20PM (#8917933)
    "After I received 80,730 different emails trying to sell viagra, I started to wonder: How many different ways are there to spell Viagra?"

    http://cockeyed.com/lessons/viagra/viagra.html
    • by Anonymous Coward on Tuesday April 20, 2004 @12:41PM (#8918242)
      One day I'll simply snap and actually contact a spammer with the following order:

      From: my@email.com
      To: spammer@email.com
      Subject: Order req'uest for >X<@n4x and V1agro! fxfj aspll cps

      Dea'r Si:rs,

      I w.ould l1ke t0 pl@ce 4n 0rder for tw0 p.ortions of Xa:n:aX' and v_i_a_g_r_a. P13aS.e sh1p im:medi`ate1y, 1 h@ve an><1ety and ne:ed a -bo-ner-

      Y0urs s.incerel'y
      S@vvy 1nvest0r

      akdf k- dfks. dfk v9iew casoji ropdfk hork
      aso, ckdo ofgkf opwerk- mmos odkaok s
      w eofk, eoro gksod bz o-
  • by theManInTheYellowHat (451261) on Tuesday April 20, 2004 @12:21PM (#8917935)
    I think that they goofed. 1/3 of it is virus infected, another 1/3 is spam, and the remaining 1/3 are jokes from people that you barely know that are not that funny.
    • Those darn jokes (Score:3, Insightful)

      by gr8_phk (621180)
      I'm convinced that spammers get email addresses from those emails that people forward around all the time. If I receive a joke that has been forwarded 5 times, I can easily grab 100 email addresses from it. If any ONE of the people on the same distribution as me gets compormised MY email address gets out. A compromise could be 1)forwarding to a spammer 2)infection with a virus that can read addresses off the machine 3)interception of the email somehow 4)something I can't think of right now. This is speculat

    • You may laugh at this, but if you forward some of that spam to at least 10 friends, Bill Gates will send you a check for $284 dollars. I know, a friend of mine (who is a doctor!) recently received a check for $890,642! And he also knows this prince in Nigeria who is going to help him get some more...

      *sigh*

      I feel bad for kill-filtering my mom, but.. what can you do? :-P

  • by bc90021 (43730) * <bc90021@bc90 0 2 1 . n et> on Tuesday April 20, 2004 @12:21PM (#8917938) Homepage
    Though he seems to get most of the spam in the company. (Thankfully, the rest of us aren't as plagued.)

    Anyone know a good challenge/response program that works with Exchange? (And before you suggest a free alternative, he refuses to migrate, so I have to work with what he wants.)
    • by azadrozny (576352) on Tuesday April 20, 2004 @12:30PM (#8918083)
      Funny, here 98% of spam comes FROM our CEO. :)
    • by stevey (64018) on Tuesday April 20, 2004 @12:34PM (#8918149) Homepage

      Stick a mail proxy between the internet and Exchange, that way he still gets to keep using Exchange, and you have a simple proxying machine that can do arbitary scanning and filtering.

      You can scan all incoming mail with spamassissin and clamav before it reaches exchange, bounce or drop bad mail and forward "passed" mail into the Exchange server

      You could also hookup a challenge response script there too.

      I do the same thing for a company mail server running Lotus Notes.

    • by Nephilium (684559) on Tuesday April 20, 2004 @12:44PM (#8918281) Homepage
      Ran into this same problem at my company... Tested two different things out:

      Mailwasher [mailwasher.net] - Not a challenge/response like you asked for, but allows you to send bounces back to spam, and delete them off of the server before you donwload them. Can tie into SpamHaus and such.

      ChoiceMail [digiportal.com] - Challenge response, both single user and enterprise are available. Single user sits on local machine, enterprise ties into Exchange. Can quickly add anyone in your Outlook contact list to the whitelist, and anyone you send an e-mail to can be set to be whitelisted. The challenge message can be customized. Biggest problem with the bounce (at least in my testing) is that the challenge gets rated as spam by my filters. I'm sure if the challenge was tuned up it wouldn't be that big of a problem. And they have a free trial so you can test it for 14 days

      Nephilium
  • by reverendG (602408) on Tuesday April 20, 2004 @12:21PM (#8917943) Homepage
    I get about 2500 spams a week to my work address, and I can't change my work email. It's on my business cards, and as a DB geek they won't get me new ones :(

    Because of the extreme amount of spam that I get, my Bayesian spam filters are pretty strict. I lose valid email all the time!!!

    Why just this morning, I came in and was going through my spam folder, and found that my good friend Gooshot Moneyface has been trying to get in touch with me! I was wondering why I hadn't heard from her for so long.
  • Even more (Score:3, Informative)

    by ChaserPnk (183094) on Tuesday April 20, 2004 @12:21PM (#8917955)
    According to this article the problem is worse [forrester.com]
  • Virus sent spam (Score:5, Interesting)

    by Outosync (214525) on Tuesday April 20, 2004 @12:21PM (#8917956)
    I'd like to have a statistic on how much of that spam is do to worms relaying themselves from infected networks. 80% of the spam I now filter has a worm or trojan attached. I rarely get the marketing spam anymore.
  • expect more of it (Score:5, Interesting)

    by lobsterGun (415085) on Tuesday April 20, 2004 @12:22PM (#8917962)

    As more spam gets sent, the rate of response to spam will decrease. Which means spammers have to send EVEN MORE spam emails to get the same return on investment that they did a few weeks before.

    I'm surprised it took this long for the ratio of spam to real to reach the level it has.
  • They must really love you
    They must think the sun shines right out of your arse, sonny!
    I'd love to only get 1/3 of MY mail as spam
    Ooh ooh ooh, my idea of heaven is to only get 1/3 of MY mail as spam
    What I wouldn't give to have only 1/3 spam.
    Nail them up I say!

    (With apologies to MP :-)

    Simon.
  • Better? (Score:5, Interesting)

    by CGP314 (672613) <CGP@Colin G r e g o r y P a lmer.net> on Tuesday April 20, 2004 @12:23PM (#8917978) Homepage
    So things are better than the last time [slashdot.org] slashdot ran this story?

    I doubt it.


    -Colin [colingregorypalmer.net]
  • by Dark Paladin (116525) * <`jhummel' `at' `johnhummel.net'> on Tuesday April 20, 2004 @12:23PM (#8917979) Homepage
    OK, so some I can understand, like how to make millions of dollars by investing in some guy in Nigeria. Or increase the size of your sexual organs (though I'm disturbed by the ones that state "I went from 2" to 6"!" I mean, my 2 year old son is 2", you know? What of freaks are in these testimonials?)

    But the ones I really don't understand are the "stop spam with this email!" It's like the phone company selling you caller-ID systems that block unlisted or telemarketers numbers - then sell the telemarketers systems to get through those.

    That would never happen, right?
  • by StevenHallman76 (455545) on Tuesday April 20, 2004 @12:23PM (#8917982)
    anyone know how these stats compare with standard mail?
  • currently running around 70% at my work domain - and that's not counting the fact I don't process email for non-existant users. When I do it's more like 85%.

    Oh I wish I only 1/3 of my email spam..
  • by British (51765) <british1500@gmail.com> on Tuesday April 20, 2004 @12:26PM (#8918022) Homepage Journal
    Here's my idea that I don't have any capital for:

    Run an Internet backbone that lets all traffic through except for mail. Nope, sorry, we can't transfer mail packets over. You'll have to use some other company.

    Okay, so it won't make me tons of money, but think of how stress-free the support staff will be. Or maybe not.
  • Not True (Score:3, Informative)

    by conner_bw (120497) on Tuesday April 20, 2004 @12:26PM (#8918024) Homepage Journal
    Just because 1 in 3 email is spam, doesn't mean you have to receive the 2 that are [si20.com]. There are plenty of free spam solutions like the on I just hyperlinked. Use them.

    • There isn't much I hate almost as much as spam, but using authentication in anti-spam solutions is up there.

      From si20.com: [si20.com]

      E-Mail Authentication Service ensures your email was sent by a real person. When someone emails you for the first time they are asked a very simple question that only a human can answer. Once they answer, they can send you email without a hitch and they never have to authenticate again.

      Newsflash: Spammer's fake the return address! ... So by using authentication you're just pushi

      • Re:Not True (Score:2, Informative)

        by conner_bw (120497)
        That's an *OPTION* and it's not mandatory. Some people chose selfishness, others don't. Why not have all the tools to fight spam at your disposal?

  • by JohnnyComeLately (725958) on Tuesday April 20, 2004 @12:28PM (#8918042) Homepage Journal
    For those who, like me, thought they would have a hard time replacing Outlook Express (*puke*), check out Mozilla Thunderbird [mozilla.org].

    I heard about it here on /. and installed it the same day. At first it marked ALL my mail as spam because I'm on a few list servers, but the adaptive learning function of it is getting much better. After I "unlearned" my list mails as spam, it'd still let about 60% of spam through. Now it gets about 40 out of the 42 spams I get a day. I don't mind deleting two (or hitting "j" for junk), and recent searches through the junk folder show no false positives.

    Check it out...

  • If spam is costing corporations millions every year, there is a HUGE opportunity for arbitrage between the amount spam costs them and the amount one could charge for a, effective spam filter.

    Yes, yes, I know about baysian filters etc, but no current solution is near 99.9% perfect.

    I presume the problem is that a solution requires cooperation among a lot of people (ISPs, advertisers, users) who are not naturally likely to work together, and for whom as individuals there is not a significant gain from blocki
  • News? (Score:4, Insightful)

    by dj245 (732906) on Tuesday April 20, 2004 @12:29PM (#8918059) Homepage
    This hits slashdot so often its not even funny. This is not news, it is simply trumpeting of the Messagelabs name for some reason or another. Spam is bad. Its getting worse. We know. We're working on it. Get back to us in a month.

    See
    Happy Spamiversary! [slashdot.org]
    Celebrating Spam's Ten-Year Anniversary [slashdot.org]
    U.S. is World Leader in Spam [slashdot.org]

    This is by no means a good list of all the spam stories that have hit slashdot, just a list of the ones that seem to have no point, are glaringly obvoius, or are redundant.

  • by Not_Wiggins (686627) on Tuesday April 20, 2004 @12:29PM (#8918067) Journal
    Filtering doesn't mitigate the problem.

    So what if I don't have to see the mail? That doesn't mean my mailserver isn't using cycles to talk to some originating server, transfer, store and eventually delete that spam. The only saving grace is I don't have to pay for bandwidth on a usage basis (cable modem is still, happily, "flat rate").

    But what happens if that volume gets to be high enough that it starts to affect my ability to use the bandwidth for other things?

    What we have available are basically work-arounds; we need a concrete solution that addresses the basic problem.

    So what is the problem? People soliciting without you opting in? Deceitful mail designed to make you open it thinking it is from a friend? The sheer volume?

    The real problem is we haven't found an effective way to trace this crap back to the people supposedly "making money" with these schemes.

    Solve *that* issue... put a name, address, and bank account to that spam, and we'll clean this stuff up in a hurry!
  • My work email accounts have never recieved a spam message. Why? I don't forward crappy joke emails, I don't accept crappy joke emails, etc. I have a "spam" email account setup so I can use it for registering on websites, etc., but the funny thing is, THAT email address only gets about 1-2 spam emails a week! I have no idea why this account gets so little spam?
  • Currently running 96% spam at home! Fortunately, I'm running POPFile which identifies 99% of it. Then Eudora moves it to my trash folder. Still, it's VERY annoying - I'm thinking of moving to a white list.
  • by kelseyj (398409) on Tuesday April 20, 2004 @12:32PM (#8918108)
    Deletes every third email. No mess, no fuss.
  • Probably because that other 18% is bounce messages and virus reports going to innocent addresses.
  • by jd (1658) <imipak AT yahoo DOT com> on Tuesday April 20, 2004 @12:33PM (#8918123) Homepage Journal
    Ok, that's a little optimistic, but it's possible to reduce the impact. Mostly by backbone providers. They need to install class-based queueing, such that e-mail is given a lower priority on the backbone than all other traffic.


    Internet providers need to configure their mailservers to accept e-mail from authenticated servers and hosts only.


    Finally, digitally-signed messages should become the norm, not the exception, where it's easy for Joe Newbie to check the signature against known databases.

  • where do they get their numbers... I have been working closely with my isp and thy are seeing 80% to 90% of the email they get throught their mail server as know spam/spam-bounce traffic, this they round-file immediately, in the 10% left over, we the users still recieve spam, albeit not in the MASS QUANTITIES as before, eh Beldar.
  • by Wiseazz (267052) on Tuesday April 20, 2004 @12:36PM (#8918174)
    The CIO of the company I just left always claimed that sooner or later, all professional email correspondence will take place by allowing recognized correspondence as opposed to blocking known spammers. Presumably, a person would have to go through some process to request the ability to communicate via email with someone within another company.

    I don't claim to know everything, but this seems a bit far-fetched to me. Not to mention crippling a technology that has the potential to be an effective collaboration tool. I'd be interested to hear what you folks think, though.
    • The CIO of the company I just left always claimed that sooner or later, all professional email correspondence will take place by allowing recognized correspondence as opposed to blocking known spammers. Presumably, a person would have to go through some process to request the ability to communicate via email with someone within another company. I don't claim to know everything, but this seems a bit far-fetched to me. Not to mention crippling a technology that has the potential to be an effective collaborat
  • For those who are thinking that 32 percent is a low number, note that the original post says, "...spam received by business". This actually makes some sence since business email throughput will be a lot higher than personal email throughput. For example, I typically send/receive around 3 legit emails per day from home, but I that number jumps to around 10 emails at work. If each address receives the same amount of spam, the business address will show a significantly lower percentage.
  • I wouldn't know... (Score:3, Informative)

    by praedor (218403) on Tuesday April 20, 2004 @12:37PM (#8918192) Homepage

    My mail provider is Yahoo. Boo all you want but I do have to say that Yahoo does a superb job in spam filtering. It is a very rare spam that gets past their filtering. I have quit looking at my bulk mail folder when on the webmail interface anymore because I have seen virtually no false positives there either.


    On my home systems I NEVER see the spam at all. I have postfix, procmail, and spamassassin setup to handle it and handle it they do. First off, procmail directs ANY email that has the Yahoo X-filtered-bulk header in it to /dev/null. Anything that gets past this is handled by one of several handy procmail recipes and gets /dev/nulled. Anything that gets past that is handled by spamassassin and gets /dev/nulled. I might see 1 or 2 spams a month, TOPS, that manage to run the entire gauntlet...but then doing "sa-learn" on it brings those particular guys to the /dev/null world.


    My wife gets dozens of spams a day at her job, where the network nazis require her to use outlook and wont allow her to install any personal filtering software ala spamassassin. They tell her "Sorry, we feel your pain but we are doing our 'best' to handle spam..." I encourage her to get a laptop to take to work upon which I would install linux for her AND set it up so that she rarely ever gets any spams ever again. When she gets tired of penis enlargement or breast enlargement messages to delete she may take me up on the offer.


    On spam filtering, does Snotmail not do something similar to Yahoo with its bulkmail/spam filtering?

  • My tool (Score:5, Interesting)

    by TwistedSpring (594284) * on Tuesday April 20, 2004 @12:38PM (#8918210) Homepage
    Well, approximately 95% of my e-mail is spam. I hacked together a tool called POPgun that takes a real basic approach to spam checking. None of your Bayesian filters and all that nonsense. It sits transparently between my mail client (which connects to localhost) and my mail server, captures the mails as they come in and rewrites them.

    It does eight (yes, eight) tests on the subjects of every message. I havent even added body checking yet, and it catches most spam. I even tried replacing these 8 tests with the SpamAssassin engine [spamassassin.org] and found that it was less good at detecting spam mails. The tests are so simple:
    1. Is The Subject Capitalized Like A Headline?
    2. Does the subject contain too many non english-alphanumeric characters?
    3. Is the subject a duplicate of another subject in the same POP retrieve job?
    4. Does the subject contain 4 or more spaces anywhere?
    5. Is the subject more THAN HALF CAPITAL LETTERS
    6. Does the mail have no subject at all?
    7. Does the su-bject con+tain obvi!ous obfuscation?
    8. Finally, does the subject hit on the blacklisted words?

    The blacklist is checked after first collapsing spaced-out words like "V I A G R A" and removing the above-mentioned obvious obfuscation. It's regex-based and contains the typical stuff like "meds" "medication" etc, but also a test for a subject that ends in 3 or more spaces followed by a string of random consonants.

    When it detects SPAM, it simply changes the subject line to indicate that the message is spam.

    In addition to spam-checking, it also removes all HTML mark-up (removes the tags leaving plaintext behind), deciphers MIMEd messages and recompiles them into multipart/mixed format (so images etc. are attachments) and renames many-extensioned attachments, so girl.jpg.pif becomes girl.pif.

    It's still in dev, but it'll be available on baxpace.com in the next week or so for Win32 (as an exe) and UNIX platforms. It's written in Perl.
    • Re:My tool (Score:5, Funny)

      by Anne Thwacks (531696) on Tuesday April 20, 2004 @01:02PM (#8918573)
      Would you like your tool to be longer and harder ;-}
    • Re:My tool (Score:4, Interesting)

      by freeweed (309734) on Tuesday April 20, 2004 @02:12PM (#8919533)
      Not to sound defeatist, but quite frankly I could beat your filter in a matter of seconds. I just start writing my spam to use subject lines like "Please review", "The file you asked for", etc. In fact, many spammers have started doing this very thing, to combat exactly what you're trying to do. Extend what you're doing to the body of the message, and I can still beat it trivially. I just move AWAY from normal spammer obfuscation, and write my spam as if it was english text.

      See, filters used to just pick up obvious "indicative" words, so spammers started to use caps. Filters got those, so spammers started to obfuscate with spaces. Filters got those, so spammers started with real text munging (v1@gr@, etc). Filters got those, so spammers started inserting huge volumes of real words in their spam.

      Notice the pattern?

      The reason Baysian filters (which are anything but nonsense, trust me) work is because they adapt to the spammers' techniques. As time goes on, spammers figure out how we're filtering. They adapt. Your filtering system will be obsolete within a year, guaranteed. A Baysian filter won't, because it adapts along with the spam. In as much as any algorithm can be considered "learning", a Baysian spam filter learns pretty damn well. 90-95% accuracy with enough training data, and who doesn't have enough spam to train a filter with? :)

      More power to ya though, because each and every person working towards a solution helps. Just don't discount the more esoteric methods outright, because combining what you're doing with an adaptive filter is pretty much the optimal technological solution (for now).
  • by dre23 (703594) * <slashdot@andre.operations.net> on Tuesday April 20, 2004 @12:41PM (#8918232)
    Maybe 99%. More people should be reading all of these documents [postfix.org].

    If every Linux and Windows machine ran Postfix with CRM114 by default (and with manpages and documentation), this would help. Maybe a new anti-spam Linux distribution is needed. MacOSX ships with Postfix, but not CRM114.

    Do you have any idea how many open-relays still exist? Why does SMTP software allow '*' open-relays in the first place? Do you know how many proxy servers are out there on the Internet? How many SOCKS4&5 proxies that just allow any SMTP to be bounced? How many are seemingly closed but available with the CONNECT method? Let's close some of our holes, and prevent software from opening them in the first place.

    Also - know your enemy. Why haven't people dissected the software these creeps are using. The majority of spam comes from a program called DarkMailer or DM. Let's reverse engineer this application and figure out how it works, so our defenses can be built around the enemy's weapons and not just generalizations about spam.

    Finally, let's set some ethics and procedures about how to deal with spammers. Too many is the case that people just want to beat their heads in with baseball bats or delete all their files on all their computers. This activity is not productive. It's my firm belief that if you take away their tools and educate them, less spam will be out there. You make it a war -- and that's what you'll get. Passion drives creativity and efficiency.

  • What %? (Score:4, Informative)

    by krray (605395) * on Tuesday April 20, 2004 @12:47PM (#8918315)
    Their stats don't line up with mine -- the only thing I do agree with is that it is getting worse. It continuously has since March of last year it seems. Back then my base was about 500 a day THEN. Today it's much different, but let's digest some numbers.

    Forgetting work -- let's just look at my home domain. Hosting my wife and myself I'll look at my email alone. In the last week we've sent/received 42 legit emails. That's about 6 a day between the two of us. In the same week the average _daily_ traffic looks like this:

    I'll start by saying that actual junk mail that may make it to the Inbox in front of me is maybe 1 a week. I find even that annoying. Yesterday, an average day -- there were 109 messages harvested by spam sucking address'. Our daily average [last typical week] at home was 6 emails (sometimes less, sometimes more :).

    By my numbers that is almost 95% of my email traffic which is simply not wanted, nor allowed. :)

    There were also a total of 291 subnets blocked (for various other noticeable offenses :) yesterday alone (a typical day). This includes the harvested messages -- which now puts the email traffic at almost 98% being generated by spam.

    Of course, once blocked there's a URL sent back (-0- lookups in the same time frame) which tells you what to do (email a unblocking address or pickup the phone and call me ... you do know me, right? :). Yesterday's already blocked address' attempting to send even MORE spam in was 2,251 for a total of 2 email address' which may send/get 6 emails in the same time frame. Now we're at 99.7% of the potential email traffic was all generated by spam. .3% was real.

    They're numbers, well -- just don't jive with my real life experiences.
  • Anti-spam spam (Score:4, Interesting)

    by jefu (53450) on Tuesday April 20, 2004 @12:48PM (#8918328) Homepage Journal
    My recent favorite is from the spammers that are advertising anti-spam software.

    While we've surely all seen enough spam, this is about the most thorough bit of spam I've seen in a long time. And its short - way more crap per line than usual.

    Not only is it spam, it claims to be consistent with the CAN-SPAM act. How wonderful is that?

    It has the usual set of junk words intended to try to disguise itself from the normal anti-spam software. And it has the usual image to load that contains my email address so it will know I visited there. And it encourages me to send it to all my friends. And it has the usual "visit here to get off our list".

    Even better, if you go to their web page you'll find a pointer to a page where they say "It has come to our attention that ..." spammers are advertising their product, and you can complain by filling in a form. And, of course, giving them your email address! For those who are amused by such things, look at the source - its obfuscated to the point of absurdity and does not seem to like running under mozilla.

    See my journal for more info, including the source of the mail, the urls involved and a decoding of their web page.

  • by unfortunateson (527551) on Tuesday April 20, 2004 @12:49PM (#8918344) Journal
    ... is if they count the volume of "intranet" mail.

    Corporations deal piles of mail on the inside, that never gets out to the genpop: HR crap, memos, meeting notices, etc. etc.

    Customer relationships also generate piles of e-mail, but that should be visible to your average slashdotter who buys stuff.

    I wonder if they're counting automated, machine-read e-mails such as SEC filings and other things that humans never read?
  • by aralin (107264) on Tuesday April 20, 2004 @01:11PM (#8918709)
    This message contains no text. Surprisingly, all the contents of the message has fit into the subject line. Clicking at a subject line with (n/t) for 'no text' brought you to read this incoherent drivel. Thank you for participating.
  • by WebSpider00 (768686) on Tuesday April 20, 2004 @01:18PM (#8918812)
    We are using a new product called GWGuardian that we spotted at Brainshare. On average I was recieving somewhere in the range of 1500+ SPAM messages a week. With the GWG I have had 1 Spam mail make it into my inbox. Have to love it.
  • by Greyfox (87712) on Tuesday April 20, 2004 @01:20PM (#8918839) Homepage Journal
    When I installed tmda [sourceforge.net] as a last-ditch effort to keep it going. So far it's worked pretty well -- had about 4 spams get though in the past 6 months or so.

    I doubt it'll keep spammers at bay forever, so I really should start looking into some more spammer hostile things I can do to my mail server. Worst case, I can always shut the damned thing down. I was ready to do that anyway. If the service is useless to me (Because filtering spam takes so long that I don't have time for anything else) why should I bother running it?

  • The Will Pay System (Score:4, Interesting)

    by Kwil (53679) on Tuesday April 20, 2004 @01:25PM (#8918909)
    While the economics of email favor spam, spam will flourish. It's as simple as that.

    To get rid of spam, we need to change the economics of email.

    However, most systems proposed are too simple in that they serve to make a lot of the legitimate purposes of email too expensive, Maillists being a primary one, as well as mail from new potential customers.

    Essentially, we can arrange email into a grid of Expected or Unexpected vs Desired or Undesired. We need a way to freely receive all Desired mail whether it is Expected or not, while making it expensive for mail that is both Unexpected and Undesired.

    To address this, I believe a system where the promise of payment is encoded into the delivery may solve the problem. Note that the promise of payment doesn't mean that payment will be necessarily be required. However, having the promise encoded into the email does require that it be possible to place a charge on that email by the recipient. This would require verification at intermediate servers that the mail came from a known system that allows payment to be made before relaying it on.

    Legit users send out so few emails that they could easily send out mails with promise of payment encoded, companies would not require the payment be made (as what a great way to lose a potential customer) so the status quo is preserved, and friends who they send mail to similarly would not bother requiring payment. Of course, if payment is required (you get into a fight with your friend) it should be a small enough amount (sub-dollar range) that it is not an extreme hardship even then.. provided you're only getting charged for one or two.

    Mail-lists could be sent without the promise of payment, but since they are typically subscribed to directly, it becomes very easy to implement a white-listing solution for all the lists you're on.

    Spam could not be sent using promise of payment -- if it was, the costs would quickly dwarf the profits since it is only the very low cost of email that makes spamming possible. Anybody receiving the spam would simply click the "Require Payment" button or some such, and the spammers credit card would be automatically charged the amount. Assuming only 25% of the recipients are actually able and willing to require payment, since the typical spam run sends out hundreds of thousands of email, the charges mount significantly quickly. Yet if spam was forced to not promise payment, since all legitimate email is using promise of payment, it becomes very easy to whitelist the spam out of existance.

    Essentially, the promise of payment system allows unexpected but desired mail to proceed as normal, while unexpected undesired mail incurs a fee. Expected mail can use the standard email system with whitelists, or still use the promise system with no difficulties.
  • by mabu (178417) on Tuesday April 20, 2004 @01:35PM (#8919016)
    I have to assume IDC based its studies on mail filtering reports and technologies using servers that at some point, started deferring SMTP traffic and didn't actually compile complete stats on spam. There's NO WAY the spam-to-legit ratio is 33%. It's more like 85%, especially for any boxes hosting e-mail addresses which may be on file with domain records.

    That study is flat-out inaccurate. When they use those lame content-based filtering systems, their mail system slows down so much, they cannot handle all the inbound connections so they never really know how much SMTP traffic they actually get. Spammers hit their lame servers, get deferred, and don't come back. I guess this might be one reason why you might want to use MS Exchange: it's so slow it can't actually process all the spam sent to it, and then you get incomplete figures on mail traffic and spam.

    IDC estimates that each worker would spend an average of 10 minutes a day dealing with spam.

    That seems a bit low to me. Maybe with content-based filtering in effect. But they should also ask IT managers how much time is wasted per-employee looking for legitimate messages that have been held up by the inbound mail filtering/flagging systems that erroneously trap legitimate mail. I bet that figure is much higher.

    RBLs work. Content-based filtering doesn't. This whole study is basically a shill for promoting more ineffective "strip-searching" of e-mail content as a "solution" [sic] to the spam problem.
  • by javelinco (652113) on Tuesday April 20, 2004 @01:50PM (#8919246) Journal
    So, I'm thinking - those people who actually respond to spam? We should host an awards show for them - called "Too dumb to Live". We give them a chance to give their speeches and thank their whatevers, and then, when they leave the stage to go to the "press interviews", we can just dispatch them in some nice, efficient manner.

    We should ALL do something to make the world a better place to live, ya know...
  • ERROR (Score:4, Insightful)

    by macdaddy (38372) on Tuesday April 20, 2004 @02:00PM (#8919394) Homepage Journal
    I really do think they means One-Third of Mail NOT Spam. I've read a dozen reports in the past year that said that half of all the email was spam. I know it's not decreasing. 2.5 years ago half of the email coming into a provider I contract with was getting rejected as spam. Now that number is even higher. 1/3 my foot. 3/4 is more like it.
  • by myov (177946) on Tuesday April 20, 2004 @02:16PM (#8919586)
    If you're lucky enough to get a valid email address, feed it in to your other spam (using their handy verify^H^H^H^H^H^Hunsubscribe link). Also useful for abuse/postmasters who do nothing.

    Seriously though, nothing will happen as long as China (and a few other countries) don't care. A spammer recently picked up my cable address (which I don't use), and hits me 2-3 times a day. I've traced it back to china, contacted the appropriate admins, and received a "abuse mailbox full" bounce.
  • by netruner (588721) on Tuesday April 20, 2004 @02:22PM (#8919678)
    Seriously- if you think about it, spam may be our last hope for privacy on the net. The more legal measures we put against spammers, the more freedom we lose ourselves. So why not just accept spam as a fact of life and find some useful purpose for it, like camoflage for stego. I know there's several stego programs out there that disguise their transmissions as spam- if we get rid of the spam, no more camoflage. Don't get me wrong, I don't like getting ads for pr0n at work any more than anyone else, but I think there are other ways of dealing with it- without legally screwing ourselves in the end. (pun intended)
  • by DaCool42 (525559) on Tuesday April 20, 2004 @06:24PM (#8922893) Homepage
    The average percentage of spam here over the past 24 hours was 99.83%. That's an average of 92.65 spams every 5 minutes and 0.16 non-spam messages every five minutes. Internal mail is not included.
  • by YouHaveSnail (202852) on Wednesday April 21, 2004 @01:24AM (#8925897)
    I'd say that at least 30% of the physical mail I receive on a typical day is junk mail, which is just the real world version of spam. On some days, it's a lot more than 30% junk.

    An interesting point about physical junk mail, by the way, is that it costs money to produce and it costs money to send. And yet, continue to get the same crap day after day. There are a lot of people out there who think that the key to stopping spam is going to be charging the sender for sending mail. But real world experience shows us that it just ain't so... physical mail costs a lot more to produce and send than anyone has proposed charging for e-mail, and we still get plenty of junk mail.

    I think the real key is going to be something akin to the national do-not-call list. In fact, it could be an extension of it. You could register an address (street or e-mail) and say that you choose not to receive unsolicited commercial mail. That, combined with better regulations requring accurate sender information, could really help.
  • 99.38% (Score:3, Informative)

    by kobotronic (240246) on Wednesday April 21, 2004 @05:15AM (#8926749)
    My personal mail account stats for the preceding 3 days:

    970 total messages
    6 of which real emails
    964 spam.

    My SpamAssassin proxy needs a tweak or an upgrade, it only correctly tagged 750 of the spams.

    I'm a good-natured sort, but this pisses me off. If I ever meet a spammer I'll fucking kill his ass dead with a 2x4.

All life evolves by the differential survival of replicating entities. -- Dawkins

Working...