RE: [Asrg] Some data on the validity of MAIL FROM addresses

[Yakov Shafranovich <research@solidmatrix.com>]

At 11:02 PM 5/20/2003 -0400, Eric D. Williams wrote:

>I would like people to seriously consider this particular paragraph. It seems
>to touch on the vital issue of how 'spam' is produced in the wild and the
>automated means for its insertion into the MTS.  Whether an SMTP 
>implementation
>is 'modern' or not is not relevant to the issue IMHO, but that is a factor in
>determining what the footprint is for the various tools and techniques are 
>that
>are being utilized.
>
>Has anyone done a forensic examination of 'spamware' and/or developed a
>taxonomy of its internals?
>Will knowing the 'weapons' - to co-opt an analogy being proposed by some - 
>aid
>in defeating the 'enemy'?
>Are there any other 'artifacts' not directly related to the 'spam' problem,
>that can aid in determining methods to defeat 'it'?
>
>-e

If you remember that article from the Oregonian about a spammer talking 
about his business, he mentioned that spammers operate all kinds of clubs 
and chatrooms where such software is discussed and developed. The only way 
to obtain this software, is for someone to find a cooperating spammer (like 
that's going to happen!) or "infiltrate" these clubs acting as a spammer. 
That requires time and effort, and all of us are working people with not 
much of that going around. The spammer discussed in the article was 
unemployed I believe, and had plenty of free time.

Nevertheless, if anyone possesses or has any type of spam software, please 
come forward.

Yakov  

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg