UK ISPs to Shut Down Spamvertised Websites 299
JebuZ writes "The Register is currently reporting that UK ISPs are targeting ecommerce websites run by spammers in a new 'get tough' policy on junk mail. ISPs belonging to the London Internet Exchange (LINX) have voted through a code of practice which gives them the mandate to shut down websites promoted through spam, even if junk mail messages are sent through a third-party or over a different network. The move is intended to remove the financial incentive to send spam." There's also a BBC story.
Good idea, but... (Score:1, Interesting)
Since there is apparently less than 100 people worldwide responsble for sending out the spam, just find them and shoot say, half of them as a warning to others.
This will only be marginally effective... (Score:5, Interesting)
Furthermore, this does nothing to the spammers whose hosters are in collusion with them, and who are profiting themselves.
Re:How long... (Score:3, Interesting)
Or
Address of 0wn3d computer
Offshore server
Doesn't do any good for those which run scripts on open or 0wn3d servers and forward email, i.e. phishing
This is the way it should go (Score:5, Interesting)
IMHO, the companies, who sell their products through the spamvertized channels should be put into the same tight squeeze. I want to see Pfizer sweat for those Viagra ads I receive day in and day out in hundreds.
Re:And this is interesting how? (Score:5, Interesting)
Complaints start rolling in. If its not caught soon, dsbl lists will start blocking the ISP. Is the spam legit? Lets contact the owner of the site. Not legit? Prove it. Usually, it IS legit. We investigate thoroughly and determine the source of said spam, and if its truly not legit spam, done by someone else (this *has* happened with us) then we notify spamcop or whatever list needed that an investigation has been done and its taken care of.
So, with due diligence when it comes to enforcing policies such as this, and not a "shoot first ask questions later" attitude toward shutting off sites, then it becomes a reasonable policy.
*applause* (Score:5, Interesting)
But what about repeat offenders? Those that open up a new website and advertize by spam on that site, too? Setting up a webpage isn't too hard these days, and one could always send one's servers offshore. This needs to be an international policy.
Not just shut down. (Score:5, Interesting)
That allows the people who have been spammed to identify and track the spammer.
Re:... and thus the casualties begin ... (Score:2, Interesting)
Good thinking (Score:3, Interesting)
Also, if the spammers are getting a [very low percentage] click-through number, I wonder how many of those are people who have never gotten spam before. The number of people on the internet is growing so quickly, I'd imagine that many of the click-throughs are actually people who have never seen a "bulk unsolicited e-mail" before.
Re:How long... (Score:4, Interesting)
Of course, like most of the people I deal with at work, my email signature includes our 1-800 number.
Re:How long... (Score:3, Interesting)
I know, but that too has come to be known as a joe job (at least in the news.admin.net-abuse.email newsgroup), since it's done with the same objective: to get X shut down or to harrass them away from the net. It's generally equally ineffective.
Re:How long... (Score:5, Interesting)
Actually, this is different. They are going to shut of sites that are advertised in the spam, so all a spammer has to do is send out a 'free' promotion for a valid website. The addresses used in the spam mail are irrelevant, what they are looking for is site addresses included in the body of the spam.
This is already going on. Last month I got a notification from our ISP at work of a possible spam violation (a very annoying, threatening notification) on our site. It appears that a spammer included our domain name in one of his messages and our ISP was alerted. I explained the we did NOT send out the message, was NOT selling viagra and did NOT want the traffic generated from the spam message, so we still have a website and that was the end of it.
What happens if a spammer, rather than just including my address, crafts a marketing message promoting my site. Might be a little harder to convince my ISP that I didn't initiate the spam.
Re:This will only be marginally effective... (Score:4, Interesting)
-matthew
Why not do it yourself? (Score:4, Interesting)
Every time I mention this, someone says, "Oh my God! You're going to block some good little Mom&Pop store because they share a server with a spammer!" If that is what you are thinking, you didn't read my previous paragraph. I block any email WITH A LINK TO A SERVER that is in my block list. I DO NOT block any email originating from a server in the block list.
As this article explains, the incentive is to remove the profit margin from spam. I think my method works better than kicking them off the server if my method was used by a majority of the Internet users. The reason is that my method hopes the spammers keep the same IP addresses. If you kick them off the server, they change IP addresses and I have to block the new one.
Re:How long... (Score:2, Interesting)
Not just websites, like you say, 800 or worse toll numbers. For lack of a known term for such -- foll this scenario:
Bob's computer gets 0wn3d while he's making tea, or he simply never turns it off.
Colin 0wns Bob's computer and sets up a quick webpage on it and sends out spam, directing readers to the current ip address for Bob's computer.
All that's needed is maybe 20 minutes... people follow the link in the email, come up on a page on Bob's computer and submit a CC or other vital personal/financial info.
Colin's app running on Bob's computer forwards to a mailbox elsewhere in the world.
Bob may find his computer's been 0wn3d and cleans it up, but wtf, banning the ip address, unless it's fixed (which is unlikely these days) is pointless.
There's undoubtably tens of thousands like Bob to do this to and they don't necessaryly reside in the UK
The point of this is, enough spam and enough fish caught in the trap in a short time presents a problem and is a possible direction for spammers and scammers to go.
Re:How long... (Score:1, Interesting)
most laws require, some sort of diligence.
if the thief had to hotwire the car, then there was some sort of effort taken to prevent that
but if the keys are in the ignition, that is YOUR PROBLEM.
(and the law already is set up that way in a lot of places in regards to cars)
you report your car stolen and the keys were in it (even not in the ignition) the cop rights you a ticket. and the insurance companies can have a field day on that one too.
Re:How long... (Score:1, Interesting)
Yes to any of these? KILL THE FUCKER!
On the
This is NOT hard, it just requires a person to look at the site to make a final judgement call if there's not an obvious positive hit.
Help me keep a new spammer from being created! (Score:5, Interesting)
Now, my friend's boss is putting a lot of pressure on him to send these emails. My friend asked me for help but I flatly refused regardless of price. He really doesn't want to do it, but his boss is leaning on him, and his wife's opinion is that since he's getting paid for it, he should just do the work (my retort being that if his boss wanted to pay him to star in gay porn, then would he still be expected to do so?).
I've explained at great length that this is immoral, probably illegal, and a really stupid idea all around. He agrees, but his boss really wants that check from the client and I don't know the boss well enough to confront him directly.
Any suggestions on what I can do to put an early end to my friend's career as a spammer? I love the guy like a brother and don't want to see him rendered unemployable and hated by his family and friends, but I also don't want him to lose his job.
My best idea so far is to get him to convince his boss to start with a very small batch of spam (say, 1000 addresses) and to have my friend report back after a few minutes that the batch has been sent (but without actually doing it). Then, about five minutes later, call the client and scream, curse, and scream some more at them for filling my inbox with their crap. Get about 10 other people to do the same thing, perhaps even in person at the company (a restaurant), until the client keels over dead in their panic to call of the "advertising campaign". Note that my friend is the only technical person at his company, so the odds of anyone other than him being able to determine whether those 1000 test emails were actually sent is roughly zero, and if there were any question, I'm probably the person that his boss would call to seek confirmation ("Yep, looks like he sent 'em at 11:30. What? The client went out of business at 11:45? What a coincidence!").
To repeat: "my friend" is not me, so don't bother lecturing me on the evils of spamming. I just want to help him stay an honest man.
Want to crush your competitors? (Score:3, Interesting)
Re:Another nail in the spam coffin then (Score:3, Interesting)
Obviously, you haven't been examining spam messages. Putting dozens of random, unclickable links in spam has been going on for more than half a year. It's used to break up words, as in:
With nothing between the anchor and its close for "bob.com", there's nothing to click on, so a user doesn't go to the "wrong" website... but a spam checker has to weed through all the links to find which ones are valid, and, therefore, which ISPs to complain to.
I have a few that had more than 40 links in them, only a couple of which were to the real spam site.
Re:Help me keep a new spammer from being created! (Score:1, Interesting)
Sadly your right, I don't get spam (Score:3, Interesting)
Only spam I see is what people show in stories like these.
So I was wrong. Lets just hope then that since these ISP's will be kicking paying customers from their networks that they will make certain that they got the right person. I can see it being a problem for "shady" but non-spamming companies that have spamming rivals, think porn sites. But non-spamming porn companies are good customers and ISP's need those.