De-spamming Your Inbox The Hard Way 631
ajain writes "Even after using precautions like dummy email address in public forums, I have been plagued by the spam mails for long time now. Accidentally, I hit upon a not-so-elegant but effective solution recently: Ever thought of shutting down the mail server temporarily to stop spam to your inbox permanently? Well, it seems to work. In my case, a two-day shutdown resulted in 97.5% decrease in spam traffic! Here are the details and a step-by-step guide to this desperate-method of spam reduction. I think I'll model, simulate and then optimize the amount of shut-down time required for spam levels to drop to zero!"
Sure, that's fine... (Score:3, Insightful)
Re:Another approach... (Score:3, Insightful)
Exchange spam filter (Score:2, Insightful)
NO!!!! (Score:1, Insightful)
consequence: (Score:5, Insightful)
"The message you sent X was undeliverable"
spam instead.
Nice.
have you ever considered.... (Score:2, Insightful)
Maybe they added spam filtering? (Score:5, Insightful)
I know that personally I've had my mail server go down for more than two days without a backup relay and had no notable drop in spam traffic.
Business email users cannot afford this (Score:1, Insightful)
Re:KDEMail? (Score:4, Insightful)
Spammers care little if at all about bounces. Ponder, for a moment, how many bounce messages his server sent when it was off if this is still confusing you.
Re:Another approach... (Score:2, Insightful)
Yes (Score:1, Insightful)
Unacceptable (Score:4, Insightful)
There are drop in solutions out there. Use them if it's a real issue.
Re:KDEMail? (Score:5, Insightful)
No. Bounces never reach the spammer. Ever. Spammers always use fake sender addresses, so the bounces will go to an innocent bystander.
So, while totally ineffective, you also burden the innocent bystander with yet another bounce.
The only way to combat spam is to reject it on the SMTP level.
Note that the guy in the article was wrong. When a mailserver is offline for two days, no bounces are sent. Sending mailservers will usually retry for 5 days before bouncing the message.
However, spammers don't use mailservers to send their spam, they deliver the spam direcly to the receiving mailserver. They've got instant feedback on wether the spam is accepted by the mailserver or not.
When a mailserver is offline, spammers will know immediately. However I doubt they'd remove your name from the list because of this simple fact. Mailservers are regulary offline for multiple days.
In this case I rather think they installed a very good spamfilter on that brand new Exchange Server.
Re:This simply doesn't work. (Score:5, Insightful)
I'd bet a beer that the new mail server installed at his institute includes some form of spam protection. My university's mail system has gone down for two days, and I still get one or two hundred spam mails a day. (of course, only one or two make it through the spam filters :)
Re:Maybe they added spam filtering? (Score:3, Insightful)
trusted friends (Score:2, Insightful)
Re:They're not going to be missed. (Score:3, Insightful)
Legitimate servers do that. Spammers and SMTP trojans on hijacked home computers don't usually try again.
Re:Shutdown (Score:3, Insightful)
Would look more professional that eveyone getting email around the lines of "Your email could not be sent for the past X hours......"
Sendmail will do this almost out of the box if MX records are correct.
Re:Yes, like greylisting. (ie, Postgrey for Postfi (Score:2, Insightful)
Re:Logically shut it down! (Score:2, Insightful)
Re:Another approach... (Score:4, Insightful)
Not a good idea (Score:5, Insightful)
This won't work - game theory (Score:3, Insightful)
Your move: optimize how long you need to shut down your e-mail in order to minimize spam. Their move: check one day longer than your precaution allows for.
They can keep pushing it back until it is no longer useful for you to even have e-mail in the first place (i.e., you have more downtime than uptime), and either you end up not using e-mail at all or you end up receiving lots of spam.
Re:Another approach... (Score:2, Insightful)
Since a TCP session must be set up before the message is transmitted, you can't have your cake and eat it too. At least not as the parent suggests.
Play the alias game... (Score:2, Insightful)
I already know the answer (Score:2, Insightful)
No need for models and simulations... the answer is 'shut-down time' = Infinity
Re:KDEMail? (Score:3, Insightful)
That should prevent fake email addresses from being used.
Unfortunatly, large ISPs and email providers dont seem to want to implement SPF records for their mailservers.
Re:Blocklists, Teergrubes, Bandwidth Suckers (Score:4, Insightful)
- "teergruben" are a nice idea, but they would have to rely on source address filtering or only kick in after a few hundred messages. and if the spammer simple multithreads his sending "server" he might not be THAT bothered with slower delivery, as he can have thousands of concurrent deliveries, totally bogging down the receiving server!
and also, if teergruben should just be the exception it is trivial to add a timeout to the delivery routine to abort after 1 minute or so of trying to deliver!
- "bandwidth suckers" - this is just the kind of anarchistic vigilante justice that SHOULD SIMPLY NOT occur! even if it were not for the "collateral damage" to the network infrastructure and "innocent" pages being accidently hit, this is no better than stoning criminal suspects to death without proper trial...
- "sugarplums" - this idea is actually pretty good but looking at the small return that spammers are getting at the moment this won't really slow them down much. even at 1% reached mail addresses the spammers still have virtually no cost in sending millions of mails out and thus will be hindered but far from stopped by injecting wrong mail addresses! also you have to generate those fake addresses without the spammers getting behind your mechanism of randomizing the addresses and you MUST also take care NEVER to inject a valid mail address by chance!
there has actually been quite a discussion how to make mailing more "reliable" on a grand scale and i still find the idea of forcing mail servers to solve some computationally expensive computation rather nice. although this will cost legitimate service providers a little in hardware this will hit the mass mailers by far worse because they simply rely on cheaply mailing millions of mailings in a short time frame...
well, so much for "innocent" protocols used in a hostile, mercantilistic, hard-to-trace and more-or-less-anonymous environment...
jethr0
Re:Another approach... (Score:4, Insightful)
Repeat after me: Do not fight abuse with abuse.
Re:SPF Records (Score:3, Insightful)
It just seems that the more security layers you have to go through, the more chance you have of something failing.
What if you wanted to communicate with a non-compliant e-mail recipient?
Obviously, if SPF becomes the law of the land, and EVERYONE starts using it, the problem of spam would go away, at least for a while
But it's the same phenomena slowing IPv6 adoption, things work (albeit with certain problems) now.