IETF Logo Mail Archive

Re: [Asrg] Computer Security Communication Network

Martijn Grooten <martijn.grooten@virusbtn.com> Sun, 16 December 2012 16:03 UTC

Return-Path: <martijn.grooten@virusbtn.com>
X-Original-To: asrg@ietfa.amsl.com
Delivered-To: asrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 30A2B21F8856 for <asrg@ietfa.amsl.com>; Sun, 16 Dec 2012 08:03:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.195
X-Spam-Level:
X-Spam-Status: No, score=-9.195 tagged_above=-999 required=5 tests=[AWL=-1.197, BAYES_50=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9ZfSHGKysKcW for <asrg@ietfa.amsl.com>; Sun, 16 Dec 2012 08:03:57 -0800 (PST)
Received: from mx5.sophos.com (mx5.sophos.com [195.171.192.175]) by ietfa.amsl.com (Postfix) with ESMTP id 60C6321F8822 for <asrg@irtf.org>; Sun, 16 Dec 2012 08:03:56 -0800 (PST)
Received: from mx5.sophos.com (localhost.localdomain [127.0.0.1]) by localhost (Postfix) with SMTP id 5B42A540BCD for <asrg@irtf.org>; Sun, 16 Dec 2012 16:03:54 +0000 (GMT)
Received: from ABN-EXCH1A.green.sophos (unknown [10.100.70.61]) by mx5.sophos.com (Postfix) with ESMTPS id 29BF6540BC1 for <asrg@irtf.org>; Sun, 16 Dec 2012 16:03:54 +0000 (GMT)
Received: from abn-exch1b.green.sophos ([fe80::dc96:facf:3d2c:c352]) by ABN-EXCH1A.green.sophos ([fe80::67:3150:dacd:910d%16]) with mapi id 14.02.0247.003; Sun, 16 Dec 2012 16:03:53 +0000
From: Martijn Grooten <martijn.grooten@virusbtn.com>
To: Anti-Spam Research Group - IRTF <asrg@irtf.org>
Thread-Topic: [Asrg] Computer Security Communication Network
Thread-Index: AQHN26E1SoU3UA4oIEiye3MBc2WjdJgbkimn
Date: Sun, 16 Dec 2012 16:03:53 +0000
Message-ID: <0D79787962F6AE4B84B2CC41FC957D0B20AF7693@abn-exch1b.green.sophos>
References: <SNT002-W1162FDBE7C267DEF68DAD46C5330@phx.gbl>
In-Reply-To: <SNT002-W1162FDBE7C267DEF68DAD46C5330@phx.gbl>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.100.64.11]
Content-Type: multipart/alternative; boundary="_000_0D79787962F6AE4B84B2CC41FC957D0B20AF7693abnexch1bgreens_"
MIME-Version: 1.0
Subject: Re: [Asrg] Computer Security Communication Network
X-BeenThere: asrg@irtf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: Anti-Spam Research Group - IRTF <asrg@irtf.org>
List-Id: Anti-Spam Research Group - IRTF <asrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/options/asrg>, <mailto:asrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/asrg>
List-Post: <mailto:asrg@irtf.org>
List-Help: <mailto:asrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sun, 16 Dec 2012 16:03:58 -0000

Adam,

I am a bit unsure about what the problem is you're trying to tackle in your post, and how you intend to tackle it.

But since this discussion started with the problem of bots sending spam, can you explain how it would solve or mitigate the following two cases:

1. I run a small site using WordPress as the CMS. Because of laziness, not being well-informed about the need for security, or because I run a plug-in that isn't compatible with the most recent version of WordPress, I haven't updated in a while. My site has been compromised and is used to spread spam.

2. I have an old computer running Windows XP that's still working well enough to browse the Internet with. I haven't run any updates unless strictly necessary for my browsing experience. Through a drive-by download on a compromised website, my computer has been turned into a spam-sending bot.

In both cases, let's assume I don't live in the US.

Martijn.


________________________________

Virus Bulletin Ltd, The Pentagon, Abingdon, OX14 3YP, England.
Company Reg No: 2388295. VAT Reg No: GB 532 5598 33.

v2.23.0 | Report a Bug | By Email