Crazy Stats on Spam 316
gtaylor writes "An article in the Korea Times says that market research firm Emforce has established that South Korean internet users average about 1600 pieces of spam annually, summing to around 39 billion pieces of spam per year. According to the same story, Americans receive about 2500 pieces of spam per year." I figured that I get somewhere around 30-40,000 pieces of
spam annually. Lucky me... I get *this* statistic to be on the other
side of the bell curve :)
Interesting survey (Score:3, Interesting)
If they were typing randomly odds are one of them should have produced the next Hamlet by now.
Re:Interesting survey (Score:2, Interesting)
- DDT
Re:Interesting survey (Score:1)
I'm not exactly correcting any Irony here, but I've not yet met a Slashdot Statistics Nazi.
Re:Interesting survey (Score:5, Funny)
And they would have titled it: "Spamlet".
Re:Interesting survey (Score:3, Interesting)
Would the net speed up 5% if all spam was made illigal?
Naw (Score:2, Funny)
Oh, no, very little.
And you'll get absolutely none if you act now and buy my new SlashdotSpamBeGone, for just $9.95.
-Waldo Jaquith
Re:Interesting survey (Score:2)
However, I don't think anyone bothers to cancel spam in alt.binaries groups.
hmm... (Score:5, Funny)
spread the word (Score:2, Funny)
Re:spread the word (Score:2)
My SPAM i am (Score:2, Interesting)
Re:My SPAM i am (Score:2)
I made the bad mistake back in about '95 of tacking an address onto web pages I was designing for clients.
I know that is why I get most of my spam. (That and my Internic registrations.)
I was lucky enough to have set up edresses for most of my early jobs. (ie, I set up a site for XYZ company and use the address of meXYZ@mydomain.com as the site's webmaster.)
Now I just filter on those old addresses.
Straight to the trash.
This of course doesn't help on the times I forgot to use a psuedo-eddress. Those I have to move to the trash myself.
Over the last few months, I haven't dumped the trash file, and seem to have accumulated about 1,800 messages in there. (All spam. Don't throw anything else away. I catalog all my old mail going back to about 93.)
I keep thinking that I am going to run analysis on the mail some day soon. You know: See how much of it comes from hotmail (not as much as I thought), how much from yahoo, how much from
Anyone else look at this kind of information?
Oh, and in addition to the domains I own, I have eddresses in about 13 other places, including some of the free services like hotmail, altavista and yahoo. None of them get that much spam.
The only other "problem" account I have is my old (*WAY* old. UserID under 2500 -- One of the first people to sign up with the service.) AOL account. [Hey, no flames here!] I guess that is to be expected with an account that old.
What are other's results with the different services?
Re:My SPAM i am (Score:2)
Anytime I signup for anything, I make a new eddress. I can track spam this way.
Back in June 99, I signed up for something. Forgot about it. 3 weeks ago started getting spam from on that eddress after being dormant for years.
I know who to blame. I have a copy of their privacy policy. It seems they might have hit hard times and broke the promise not to share their info.
One more filter email -> Trash
Hey, let's build a prison just for them (Score:1)
Re:Hey, let's build a prison just for them (Score:2)
I suspect that the actual number is several magnitudes of order lower; in fact, I'd guess that under 2,000 people are directly responsible for 75% of all spam (pure conjecture).
Re:Hey, let's build a prison just for them (Score:2)
Re:Hey, let's build a prison just for them (Score:5, Funny)
1) Jail spammer in special spammer's prison.
2) Give spammer an email address.
3) Publish spammer's address on USENET, preferably in an MLM or pr0n newsgroup.
4) Mail spammer, three times a day, an email message telling him his meal is ready, which he can print out to requisition his meal.
5) Deny spammer the use of filtering tools. If the spammer starves to death because he can't find his meal tickets among the spam, that's his problem.
I mean, why should he need a filter for his mail? Every spammer I've talked to - from trailer-trash to DMA executive - says it's easy to Just Hit Delete, right? It only takes a few seconds a day!
And I'm sure there are so many interesting offers in his mailbox, if he's not interested, he can always Just Hit Delete, right?
Ah, what I wouldn't give to be a warden in such a prison.
Re:Hey, let's build a prison just for them (Score:2)
Incidentally, you left out the bit about making their meal ticket with an 'obvious' subject like: 'Make money fast', that varies on a meal to meal basis.
Re:Hey, let's build a prison just for them (Score:2)
Ofcourse the numbers are so big... (Score:1)
The average computer user never uses a fake e-mail address (or at least a scrambled one) when they're asked for their email address during registration or similar processes. Furthermore, they forget to point out that they don't want to receive e-mails by the company responsible for the registration (I'm not even talking about companies who sell their customer db's to other companies).
Finally, millions of people have a hotmail account. And there, they forget to point out that they don't want to be listed in the so-called White Pages, a main source for spammers.
Re:Ofcourse the numbers are so big... (Score:4, Funny)
Don't you mean "Microsoft Preferred Retailing Associates"?
why? (Score:2)
I know that I don't advertise my email address on the web all that much and I don't use a free-web based service but that doesn't seem like great protection against spamming.
I am just lucky I guess.
since I really would like some free porn, email me at: garcia@localhost
Re:why? (Score:3, Insightful)
*sigh* (Score:1)
One would think that spam should be tracable back to the source. Email server keeping track of the IP and time, server giving out the IP keeping track of who used the IP at the time. Then it would be likely that people could complain and get the IP to block said person.
Of course, there are many complications for this.
Die spam die!! Until then, I guess I just have to get used to using the delete key.
Re:*sigh* (Score:3, Informative)
In many cases, it's easy to trace the spam back to the ISP from which it was sent, or to the ISP that's hosting the spamvertized website.
The problem comes when the spammer's ISP is unresponsive, either because they don't give a fsck about the problem, or because they're being paid well enough by the spammer.
SPEWS [spews.org] presents an interesting solution to the problem. In a nutshell, networks that harbor spammers get listed, and you can configure your mail server to use that list to refuse traffic from spam-harboring network providers.
The more people that use services such as SPEWS, the more likely it is that large, unresponsive ISPs (you know who you are) who also happen to have legitimate customers will receive mail from those customers saying "Hey! Clean up your act so people stop rejecting all mail from your customers! You've got real customers to service, not just spammers, you know!" and will be forced by market necessity to take their network abuse problem seriously.
If you're a user of one of these networks, and don't like the fact that some of your mail now bounces, look at it this way. You're living in a crackhouse, and your landlord is doing nothing to solve the problem. We're tired of dealing with your neighbors' rusty needles and used condoms. If your landlord won't clean up the building because he'd rather have a crack dealer's protection money than your rent, maybe it's time you moved somewhere civilized.
Re:*sigh* (Score:2)
You misunderstand me.
At this level, the people responsible for spam are the ISPs who don't terminate their spamming customers.
By refusing their traffic, sysadmins protect their own users, and encourage rogue ISPs to either (a) get legit, or (b) go bankrupt, as their legitimate customers desert them, or (c) stay in business, with no legitimate customers, serving spammers only, as part of a very large LAN. Either way, your users are protected from having to deal with the spam.
Perhaps another analogy might help.
The Taliban are not Al Queda. They did, however, in their role as the admins of Afghanistan, harbor Al Queda, by letting Osama, Inc "spam" the world with bombs and anthrax in exchange for his opium money. They repeatedly ignored abuse@ reports (diplomatic requests to turn him over, or stop executing their women in the soccer stadiums we built for them, or blowing up historical landmarks), because they decided that servicing their abusive customer was more important than servicing (say, by feeding, instead of shooting) their legitimate customers (the rest of the Afghani people).
One day, Osama sent one too many spams, abuse@afghanistan said "no, world, we won't terminate him, but here's an ignorebot ticket number" once too many times. And the rest of the world decided it had had enough of this crap, and we stopped politely asking abuse@afghanistan to clean up its mess (because they were clearly unwilling to do so), and started dropped all their packets on the floor until we got a new abuse@afghanistan in charge, who would take care of the problem. There's collateral damage to the @afghanistan userbase - right now, it must suck more than usual to be a user there - but shit happens. The message is that if you're a government, you ignore abuse reports at your peril.
Likewise, if you're an ISP, there comes a time when you have to decide who your customers are. If your customers aren't spammers, that's fine. Just get rid of your spammers, like the rest of the civilized 'net.
If you decide that your customers are spammers, that's fine too. Just don't expect to be able to deliver any mail to my users. They're my users, on my system, and your desire to support your spamming customer base in no way obliges me to cooperate by carrying your traffic. If you're an ISP, you ignore abuse reports at your peril.
And if you still don't get it - replace the word "spam" with "DOS attack". If you got nothing but Code Red probes and DDOS attacks from a netblock, and repeated reports to their ISP did nothing to make it stop (indeed, you told them it was coming in on 999.999.999.123, they said "We killed .123", and the next morning, you saw the same traffic on .124 -- all they'd done is move him by one IP address in order to protect him), wouldn't you be justified in saying "Screw it, I'm blocking the 999.999.999.0/24. Any legitimate customers in that netblock will just have to deal with it, or better yet, get a new ISP that isn't harboring network abusers."
How do you tell what is and isn't spam? (Score:4, Interesting)
Re:How do you tell what is and isn't spam? (Score:2)
My favorite is how they all have 'Send me more information' checkbox already selected for you when you install a win program. Thanks, good thing they check that for me, what would I do if I couldn't get any of those great offers
Lower spam ratio is the best reason to buy a domain
Re:How do you tell what is and isn't spam? (Score:2, Insightful)
Not just that, but you can tell who it is coming from, and warn others about it as well. For example, I have my own domain (several actually) and if I have to enter my email address online when I am buying something I always use company@[mydomain]. That way, if they sell my address, I know exactly who sold it, and can raise hell with them about it. Also, I can just put a deny in my mail server for that address and not worry about losing real mail.
Of course, this means you either control your own mail server, or have a pretty good relationship with your ISP for them to set this up. It's worth it though.
Re:How do you tell what is and isn't spam? (Score:2)
They aren't ALL slimebags; just most of them. In fact, those few who don't default the SPAM checkbox to ON get *LOTS* of respect from me, and because of their (relative) honesty, I often opt-in(!) because they've earned an ounce of my trust.
Two examples that jump out at me would be Winamp, with it's "don't bug me ever again" button, and 800.com, where they're very upfront about it being your choice to opt-in to recieve 800.com and/or 3rd party "special offers".
Too bad more companies don't follow this opt-in example. Apparently fucking people over (exageration? nah) is more profitable short-term.
--
opt-in left unchecked from a likely source (Score:2)
Last night I upgraded to Money 2002 (Money is a fantastic product) and there were three unchecked boxes which, if checked, would have allowed me to opt-in to marketing from Microsoft and their partners.
I did not opt-in, but was at least impressed that I was given the appearance of an option.
Re:opt-in left unchecked from a likely source (Score:2)
Re:How do you tell what is and isn't spam? (Score:3, Insightful)
1. any email sent to more than 5 people who don't know the sender and didn't request the email
2. any posting on more than 5 newsgroups
Content is irrelevant.
I suppose I would say that spam is getting to be an undefined term these days. It is raking in "classic spam" and also unsolicited advertising via email or posts on non-sales-related newsgroups or weblogs. Soon it will probably include any email from anyone you don't know, or who doesn't name you in the to: or cc: lines, or whatever.
Re:How do you tell what is and isn't spam? (Score:2)
Re:How do you tell what is and isn't spam? (Score:2)
Unsolicited advertisements from people you have never done business with. That covers about 95% of the mail I delete without reading. This isn't a difficult definition; no need to try so hard to make it otherwise.
UBE = spam [Re:How ... what is and isn't spam?] (Score:2)
Unsolicited : you have not opted in to receive that kind of information or never had a contact with the sender. The problem is when you have had a previous relationship with a company and that company sends you advertisement. My opinion is that they should be allowed to send you ONE ad and make the removal of your email in their database easy with that ad.
Bulk : email is sent in large quantities, to many people. The question is, how did they get your email ? Selling email lists should be illegal (except opt-in lists), but if your email is public (web, news) then no one can be forbidden to send you an email !
Note that all UBE is not commercial, it could be a virus or a bad joke.
Considering annoying emails from friends and relatives, that is a very different problem, I think, that should not be mixed with UBE.
Re:UBE = spam [Re:How ... what is and isn't spam?] (Score:2)
Oh not this again (Score:2)
Unlike many other regulations our country has lately considered, there is no gray area, and no real consitutional complexities.
It is trivial to determine when a communication is unsolicited: the test is whether you had prior direct, 1st party contact with the sender, in which you requested the message. Then, to my mind:
* If the receiver pays for the communication, communication must be solicited by the receiver!
* If the sender pays for the communication, then let the sender go to town - it's their nickle.
Yes, it is cheaper for me to receive email than to receive a fax or a cell phone call. But it is not free!
Of course, I am all for compromises such as federally enforced "universal opt-out" lists, federally enforced uniform header/subject identification, or any other method by which I can effortlessly, and with a single action, no longer receive any unsolicited commercial email. But anything less than that (i.e. opt-out) is nothing at all.
Will it just get worse? (Score:1)
Does anyone have any figures for how effective spam is? Have any
I would like to see the back of it all, because there are only so many times that your boss will believe that the dirty emails dropping into your mailbox every hour is spam ;-)
Spam gap (Score:1)
How is SPAM distributed? (Score:3, Interesting)
For example, as a person, I get a lot of spam. But almost all of it is going to my old account at the university of california (when I left I started giving the address to anybody who wanted one, for any reason.) However, the addresses I actually use get none.
Re:How is SPAM distributed? (Score:2, Interesting)
how is Spam distributed?
Of course there isn't one central "spammers registry" out there that all spammers draw from, but rather there are hundreds or thousands of disparate database compiled by culling newsgroups, scraping HTML, and of course by siphoning from other databases (forming an inheritance of email class instances): As such depending upon the spammers database source the likelihood of you getting fragged by them varies.
I've used my real, unadulterated (like terrorism: Put crap in your email address to lamely obfuscate it and you've let the spammers win) email address in newsgroup posts, and because of that I get about 40 spams a day to my hotmail account. Hotmail does a good job of filtering, but on top of that because I only use that account for online registrations to trivial sites, and fluff stuff I can scan through it with little concern that something important will be lost in the mass of spam.
Re:How is SPAM distributed? (Score:2)
Bullhockey. By your logic, beefing up airport security gives terrorists the victory.
If I freely give them my email address to pass around like a hooker at a tailhook convention, then they've won.
Besides, if someone doesn't have the IQ to demunge my email address, I don't care to hear from them.
Re:How is SPAM distributed? (Score:2)
Well first off, it's not the submitter you're quoting, but CmdrTaco. The reason he gets a lot of spam is either because he (a) runs a popular site that features his email address, and/or (b) subscribes to a lot of porn* sites.
I'll let you decide.
* Please note that I did not use the incredibly lame, old spelling, "pr0n."
Razor (Score:3, Interesting)
So far I'm quite impressed. Easy to install (a couple of lines in procmailrc) and it's picked up about 50% of the spam I've received so far - importantly it hasn't flagged any legitimate messages as spam. Of course, I reported the other 50%, so that hopefully others won't have to endure them. The nice thing about the systems is that the more people that use it, the more effective it gets. It's not perfect, but in this mean 'ole spam-filled world, it's a good place to start.
Re:Razor (Score:3, Interesting)
It was so successful at home (100% hitrate!) I installed it on the gateway at work. It only mis-diagnoses about one message a week (for some reason it doesn't like sports related e-magazines) but I can whitelist the domains where required. I've only had one spam in my inbox since (mutated nigerian scam) & people keep saying 'what spam problem... I haven't had a spam for weeks!'.
The spam trap has approx. 2000 emails in it so far.. I keep them all out of morbid fascination. Perhaps one day I'll find a spammer I really hate and sent the lot to them!
It must work on someone. (Score:5, Funny)
How could it be working? (Score:2)
Re:How could it be working? (Score:2)
Easy -- they find somebody stupid enough to believe that it will work, and then sell spamming services. Even if (when) it doesn't work, the spammer still has the money. Lather, rinse, repeat.
Re:It must work on someone. (Score:3, Funny)
"There's a sucker born every minute."
The real point is that we don't want people to become suckers- the law is supposed to protect them to some extent.
Re:It must work on someone. (Score:5, Insightful)
Not necessarily. Arguing that spam must work because people keep trying it is like arguing that "Make money fast" must work because people keep sending it (or variants on it). All that's required for people to keep spamming it is that they think that it works, not that it actually does work. My guess is that the only spam that actually gets a big enough response rate to justify sending it is the kind that advertizes spamming services. Unfortunately, we'll only know for sure in 10 or 20 years when everyone who's unscrupulous enough to try spamming has done so. If they all give up because it doesn't work, we'll know that it was a failure and people were just trying it because they didn't know any better. If it keeps up indefinitely, we'll know that it does work and we'll have to start revoking net access of anyone dumb enough to reply.
Re:It must work on someone. (Score:2)
<humor type="bitter" truth="halfway" color="off">
Trouble is, even unscrupulous spammers have children, and will pass on their unscrupulous
spamming ethics onto their kids. We've all seen the Public Service Announcements on Television and on billboards by the Freeway: 'Parents who use Spam have Children who use Spam'.
The real solution to Spam? Use the same treatment as we apply to the African Cane Toads and the Silicon Valley Agressive Driver : Sterilization.
Keep these people from breeding! Unlike African Cane Toads, few of these Spammers are able to find a mate, in part due to their unscrupulous ethics, so it should be easy to track down the remaining breeding spammers.
</humor>
Re:It must work on someone. (Score:5, Funny)
On the other hand, in the past there were fewer births per minute, and thus there were proportionally more fools. This improves the spammer's hit rate.
So, to answer your question, you get about 1 in 250 'hits' for spam.
gus
Re:It must work on someone. (Score:2)
Response rates are even lower... (Score:2)
A pathetically low percentage of spam winds up in actual peoples mailboxes, most of it is undeliverable (mailboxes that I discontinued in 1995 are still on the spammers "Verified! All Fresh! 10 Million addresses" CD-ROMs).
Then, of course, even if a sufficiently gullible person is reached by the spam, that person has to feel a need for the product or service. TV Shopping Channels are surprisingly effective, but not effective enough to turn every person watching it into a buyer. Spam is no different in that respect.
sold on sales (Score:3, Interesting)
Whack my grandmother at your peril, it's never going to end.
The ultimate fools are those who buy your logic and pour money into advertising. This works just as well for the suckers who buy "harvester" software as it does for folks who buy billboards. All it buys the purchaser is customer anoyance. The more advertised something is, the less likely I am to buy it. Unfortunatly there's a sucker born every minute who thinks "brand recongition" can be earned in some way other than solid performance, positive reviews and customer satisfaction.
Never trust someone who connives.
Re:sold on sales (Score:2)
What fantasy world do you live in? Those are the *hard* ways to earn brand recognition! Much easier (and arguably more effective) is paying a popular celebrity to publicly endorse your otherwise crummy product. I suppose that this falls under "positive reviews," but those can be bought. Is any athletic shoe really worth $150+ based on solid performance or customer satisfaction?
Fight SPAM with Postfix (Score:3, Interesting)
By checking my logs for the last 24 hours, I have killed over 800 SPAMs for my 100+ users. If this is a 'typical day' in the life of my e-mail server (though I am seeing more around Christmas than ever), I am killing ~3,000 SPAMs per year per user. Not only does blocking SPAM give me a deep sense of personal satisfaction it gives me more time during my work day to do more important duties (like reading Slashdot) because I don't have users calling me to complain about the sex ads, mortgage offers and fly by night investment opportunities in their e-mail box.
I would love to see the US Congress require all e-mail marketeers to be opt-in instead of opt-out (with the Death Penalty for violators). However, I don't know if this would be effective as most of the SPAM coming in is from foreign servers (mainly Asian nations).
Bell Curve (Score:2, Informative)
I figured that I get somewhere around 30-40,000 pieces of spam annually. Lucky me... I get *this* statistic to be on the other side of the bell curve :)
The normal distribution, aka the "bell curve", has absolutely nothing to do with the distribution of the number of pieces of spam received annually. If anything, I would guess that the distribution has a long right tail: most people receive somewhere around the median amount of spam, but a relatively few users (such as slashdot readers) receive a much larger amount.
In general, numbers of anything do not just happen to be normally distributed. Central limit theory discusses the asymptotic normal distribution of sample means under suitable conditions, but generally very little can be said about the underlying population's distribution. Please refrain from talking about something having a particular distribution unless you know (or can test statistically) that it does. It's usually a sign of ignorance.
Re:Bell Curve (Score:2)
The distribution curve of spam would be interesting to know, I agree. I also suspect that it has a long right tail. Many people get very little spam because their email addresses are kept close to them or haven't been around long enough to have been shared out to everyone in the world. Between my school and work addresses, I get maybe one spam a week. Others are somewhat cautious and their rate of spam starts low, but over time increases as the couple of untrustworthies they've delt with give out their addy's. Finally, there are the poor souls who have either had email addresses forever and not taken many preventive measures or are just saps.
What I want to know though, is how these distributions change with time. I've observed, and I think this is generally the case, that over time the rate of spam at a given address increases. As more people have email addresses longer, we could expect the median spam rates to rise. Over time, we might see the distribution become closer to normal or even become bi-modal betweeen people who protect their addresses well and those that don't. This could be a really interesting thing to watch and study. Though, I think I'd rather play video games
Been reading too much spam. (Score:3, Funny)
my only question... (Score:3, Funny)
I mean, how did they know to send it to me?
When will people learn? (Score:2, Informative)
1. don't use your isp's email address. I don't know why, but those always get lots of spam. I think its because the isp gives you webspace, in a folder named from your username. So a spambot just needs to go to aol.com/users/ read all the folder names and tack on @aol.com.
2. have 2 email addresses, one which is for actual usage, such as communicating with friends. The other is just for all the things where you have to give a valid email address to sign up.
Thats all i did, and it works great for me. I guess a possible third step is that, if you get any spam, to ALWAYS hunt it down. look in the headers of the email, find where it came from (for example, aol.com) and forward the spam to abuse@aol.com, if that doesn't exist, forward it to webmaster@aol.com, root@aol.com, admin@aol.com, administrator@aol.com and any other names you can think of.
Re:When will people learn? (Score:5, Informative)
To report spam, the _easiest_ way is through spamcop.net [spamcop.net]. You signup (free) and they will send you an email address to forward your emails. So all you do is forward the email as an attachment which preserves all the headers. Spamcop will do the tedious work of hunging down the headers adn open relays abused and send a report to those automatically.
I have been using it for a week now, and absolutely love it. Give it a try. You'll be glad you did.
LinuxLover
I get even more spam than that... (Score:2)
In the last three months, I've begun to get LOCAL spam, from stupid & amp; clueless companies that think that mailing spam equals "to be on the Internet" (equals making huge profits [yeah, I know better]). Now I'm getting around THIRTY daily spams, besides the pr0n I already get.
(10+30)*365 = 14600 spams per year.
Sigh...
The Lack of an Anti-Spam Lobby (Score:4, Interesting)
1) Issue affects better educated citizens who are more likely to vote
2) No one likes spam. No one at all. Except for the spammers, that is
3) It's a magnet for all kinds of illegal activity
4) Unsolicited faxes are already prohibited - the technical and legal parallels are clear as day
And yet every time spam bills appear, they disappear, or are neutered, with lightning speed. Then I remember. This is America.
With the exception of what I have heard politicians refer to as "hot button" issues (abortion, gun control, school prayer), the sad reality is that almost nothing gets through congress unless someone is paying for it.
Congressionals and members of the executive are so deluged with paying customers that they seldom have time to worry about the real world. The rest of the time, rivals routinely block each others' attempts to pass any legislation as a matter of principle or habit or a continuous cycle of revenge, usually across party lines.
Re:The Lack of an Anti-Spam Lobby (Score:5, Interesting)
They're thinking long-term: in 25 years, they want to be able to legally send anything to anyone, ideally with little or no cost to themselves. Science fiction is replete with examples of this thinking: intelligent door agents or house-bots who spend (too) much of their time filtering what we've come to think of as spam (i.e. unsolicited electronic communication).
The DMA sees the Internet as a "push" medium, with themselves as the prime pusher. "We'll tell you what you need, and want," they say.
In summary, this is sadly not as much a no-brainer for Congress as you'd think or hope. The DMA has been throwing huge money at this problem for years, and will continue to do so. Don't trust Congress to do the Right Thing.
Re:The Lack of an Anti-Spam Lobby (Score:2)
Two words: Legal Bribery. A.k.a. "lobbying."
Re: why not ban spam? (Score:2, Insightful)
If such a law were to be proposed, it would have to respect not only the rights of the individual, but the ability for the business to conduct itself in a fair and efficient manner. Many here have brought up some excellent points, involving opt-in only, always having a valid return adress and so on. Under a fair set of guidelines "spam" can be both containable and beneficial to us. Banning it all outright seems a bit overkill when we've actually done little (federally at least) to try to solve this problem, though I agree with you the attempts haven't gotten us far.
Re: why not ban spam? (Score:2)
What, exactly, is "fair" about companies using my resources to tell me what they're selling?
If I'm interested in what they're selling, I'll seek it out. They have absolutely no right to send me unwanted ads. I already pay for my DSL connection, my ISP, and the phone lines the data travel over. If these spamming assholes want to play "fair" they'll reimburse me for the use of resources I pay for. Otherwise they can go fuck themselves.
-Legion
Re: why not ban spam? (Score:2)
It is trivial to determine when a communication is unsolicited: the test is whether you had prior direct, 1st party contact with the sender, in which you requested the message. Then, to my mind:
* If the receiver pays for the communication, communication must be solicited by the receiver!
* If the sender pays for the communication, then let the sender go to town - it's their nickle.
Yes, it is cheaper for me to receive email than to receive a fax or a cell phone call. But it is not free!
Of course, I am all for compromises such as federally enforced "universal opt-out" lists, federally enforced uniform header/subject identification, or any other method by which I can effortlessly, and with a single action, no longer receive any unsolicited commercial email. But anything less than that (i.e. opt-out) is nothing at all.
Slashdot otta have a FAQ section... (Score:2)
I'm at (Score:2)
Travis
Re:I'm at (Score:2)
You have to be careful to put a 'stop processing' filter directive to those mailing list filter rules.
LinuxLover
Marketing analysis (Score:5, Funny)
Based on the e-mails I get, it would seem the advertising community has me pegged as a debt-ridden pervert with a small unit, sexual dysfunction, no education, and a penchant for get rich quick schemes.
I wonder how they know that. I must be an open book.
Re:Marketing analysis (Score:2)
Oh, and I have an unreliable Windows system.
(Note that I have no Windows systems. They're all Mac and Linux.)
spamcop.net (Score:4, Informative)
After reading most everything on their site, I figured I'd sign up for their pay filter service. Not really to stop the spam (that is just a nice added benifit), but just for ease of reporting the spammers.
Since signing up spamcop has probally stopped around 50 spams to me a day. Still about 5 a day slip through (and perhaps 1 false positive a day). I have reported all of the spam. I think I've recieved about 8 responces total to my reports, and I keep getting spam from the same places.
I'm pretty impressed with the service. At $0.50 a megabyte it isn't too expencive (but I shouldn't have to pay to not recieve e-mail). They are planning on going to a flat rate of $3 a month (which will be good for me as they estimate I'll be paying about $7 a month at my current rate).
Anyway, check it out if you haven't before, www.spamcop.net [spamcop.net]. At least report some of the spam you get using their free service to help build a bigger data base of open relays and other bad Internet company.
Re:spamcop.net (Score:3, Informative)
Plus, you can configure it to use Spamcop's black-list so you get the benefit of Spamcop's filters too.
Sysadmins/users with an ounce of savvy should check this bad boy out.
rOD.
Re:spamcop.net (Score:2)
Dead tree spam (Score:2)
Travis
Spam laws (Score:5, Informative)
But don't push for SpamLaws. It is just an invitation for them to pass other stupid net-laws. Laws are regional, the internet is not. It won't work. The treatment will be worse than the disease.
Lawmakers do not understand the internet. Tell them to keep their hands off.
We are better off working out our own solutions - blackhole lists, filtering software, etc.
-
Re:Spam laws (Score:2, Insightful)
What if a law were devised that would not stop legitmate e-mail, but which would stop spam? Unlikely, you say? That's not my point. What if? Productivity would increase, ISPs would have their costs lowered, and another form of fraud could be stopped. Stopping spam should be our goal, even if the possibility exists that it could block legitimate mail. We have to try.
Re:Spam laws (Score:2)
They will benefit from our solution. Spam filtering is generally more effective at the ISP or infrastructure level. Take a look at the Mail Abuse Prevention System [mail-abuse.org].
User-end solutions can even work for them if it is integrated into the mail reader. "Oh, look honey! AOL 9.0 (gag, puke) has a spam blocker!"
We need people working on the problem, but they need to be programmers and sysadmins, NOT polititians.
What if a law were devised that would not stop legitmate e-mail, but which would stop spam? Unlikely, you say?
...even if the possibility exists that it could block legitimate mail. We have to try.
What are you smoking? And can I have some? I never mentioned legitimate mail.
-
I've saved all my spam... (Score:2)
Fighting spam (Score:2, Informative)
If you are in states with so-called "anti-spam" laws, you can start taking legal action against spammers. Check out:
Sorry for the Washington-heavy links; it's my home state.
The Missing Stat - SNR! (Score:5, Insightful)
As a side note, I have taken to giving out different email addresses for every place I'm asked for one, and using a "catch-all" from my domain, for example my email address here is slashdot@theoretica.net, but it might be goatpornmailinglist@theoretica.net or vic20overclockerslist@theoretica.net for other places. That way not only can I see what spammers got my email address from where, but I can also block a given address once its been overcome with spam - you know those places where you are asked for an email address and you just *know* you are going to get spammed senseless for providing it, but you must to get a login or pwd or whatever?
I also have OE move everything that's been BCC'd to me into a spam folder, mark it as read, and review it once a week.
Only 5 a day? (Score:2)
I wonder what costs the economy more warez or spam (Score:3, Interesting)
Ten tips to reduce spam (Score:3, Informative)
abuse.net [abuse.net]
cauce [cauce.org]
Updates to this list are in my journal [slashdot.org].
DDOS via SPAM flood (Score:2)
I can just see the next generation of Denial of Service attacks on the big webmail houses. The new IIS worms will start "joining up" to hotmail, msn, yahoo, etc. Then, they'll wander around any place where they can just so happen to "drop" the email address for the sniffing spambots!
My experience as an open mail relay (Score:5, Informative)
I'm only a part-time sysadmin, so I didn't realize what was wrong for a couple of days, just noticed that the mail server was slow...during that time perhaps half-a-million messages were forwarded by my machine. Unforgivable, I know. I didn't realize the threat; and most of it happened over a weekend.
On Monday, I spent a few hours finding out what was going on, and madly tried to cancel the messages by hand from the mail queue, before I did the right thing and installed the latest version of sendmail -- which by default doesn't relay.
For the next several weeks, I've been petitioning the various spam reporting lists to take us off of their blacklists. I have to say that everybody was reasonable in this respect. It took some time to hunt them all down, but I think I have them all. If you are doing this yourself, http://relays.osirusoft.com has a great resource for checking what lists [osirusoft.com] your server is blacklisted with.
The only good thing to come out of this is that during the cleanup phase, spammers continued to try to relay spam through my site, and I was able to get several of those accounts cancelled by calling up the various email abuse departments at their ISPs. (My favorite was worldcom, I called them and they answered "Abuse!" I told them that I really wanted an argument...) The biggest disappointment was @home, who required a 1-week waiting period before shutting down a really high-volume spamming operation.
I was surprised how quickly my open relay was discovered, and then how quickly that information was distributed among quite a few (at least 40) spammers. Perhaps they watch incoming spam to see where it is relayed from; and harvest those to run their own spam.
Anyway -- my apologies to the community. It won't happen again.
thad
Complaints (Score:2)
Interesting. Could you tell how many protest from the spammed were addressed to you? Were they polite?
I ask because sometimes I think I am the only one who complains (politely) to the open relay. I received a nice apology once.
Korea Hosts More Spam Domains Than Other Nations (Score:2)
Kornet.net?
Thrunet.net?
Dreamx.net?
Hananet.net?
I've SpamCoped everyone of these, complained to every address I could think of (abuse@, root@, help@, etc.), all to no avail. If I have to carbon copy 5000 e-mail addresses at kornet.net on each spam complaint to get them to stop spamming, I'm willing to do it...
Re:30-40k messages of SPAM? Stay away from the por (Score:2, Interesting)
He's supposed to be watching Lord of the Rings, or so he said at the end of an earlier article. I've been waiting for Taco's review, which will probably go something like this:
I laughed
I cried
I drove back home to get my wallet
Re:What this says... (Score:3, Interesting)
Well, this is kind of interesting.
You see, I have, basically, 4 e-mail domains I use.
- 1
- 1
- 3
- 1
Even though something like 80% of the e-mails I receive is at my work address, I still have the following percentage of spam:
- 1
- 1
- 3
- 1
So, as you can see from my Completly Unacurate Statistcs Study(tm), it seens to me that your domain is more relevant to the amount of spam you receive then the country of it
Just to give an additional data, my
Something like 15 spams reach my e-mail boxes every day, which amounts for something like 5475 spams/year. Considering that my evasive measures and filters get something like 80% of all the spam directed to me, we can consider that I have around 30000 spams/year target at me. And I live in Brazil. So not, it's not something only Americans are subject to.
Re:Hotmail included? (Score:3, Informative)
We use only the rbl lists right now. Filters take CPU/mem and our E450 2*250mhz 1gb is running at 80% now.
It's an ongoing fight to catch those spamers. It seems to be getting worse at christmas too.
Most spam are "guessing spam" where the spammers are just guessing username@ourdomain.
Re:"forwad"? (Score:2)
Re:Text of the article for when is gets /.ed (Score:2)
If slashdot determines that this is so bad, how about slashdot automatically caching the page's text for everyone [who is stupid enough to not find Google cache]?
Re:Simulating bounce-backs? (Score:2)
Re:Simulating bounce-backs? (Score:2)