Re: Publishing your spamtraps list, is that a wise move? | KernelTrap

Re: Publishing your spamtraps list, is that a wise move?

view
thread

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: mark reardon <mcreardon@...>

To: Darrin Chandler <dwchandler@...>

Cc: Peter N. M. Hansteen <peter@...>, <misc@...>

Subject: Re: Publishing your spamtraps list, is that a wise move?

Date: Thursday, July 5, 2007 - 11:58 am

If you have a good whitelist this won't bother you.

Why make it obvious that the addresses are spamtrap ones?
Just hide a comment somewhere on the homepage that only harvesters will see
but
not people who browse your web site ( unless they read the html source ).

I have been hit where a spammer has used one of our addresses as a reply_to
address.
No worries. spamd doesn't even break a sweat. The mail doesn't ever hit our
server
and the only servers that have the problem are the mail servers that believe
the forged reply to address
as they bang their heads trying to deliver the bounced mails. They should
try spamd :-)

g'day

Mark




On 05/07/07, Darrin Chandler <dwchandler@stilyagin.com> wrote:
quoted text>
> On Thu, Jul 05, 2007 at 11:07:55AM +0200, Peter N. M. Hansteen wrote:
> > Now I wonder if it would be a good idea to put that list of spamtrap
> > addresses on a web page for the address slurpers to find and use, so I
> > can detect spam senders early and either treat them to 24 hours at the
> > time in the tar pit or have them move on to the next target.
> >
> > The only downside to this that I can see is that occasionally somebody
> > naive and innocent sending backscatter (bounces of undeliverable spam)
> > would be tarpitted for a while.
> >
> > Does anybody else here have views or relevant experience they want to
> > share?
>
> I thought about this a while back, and I found a weakness. Now, I
> haven't seen this used, but it's trivially possible. Here's the deal:
>
> You publish spamtrap addresses, and of course you make them easily
> recognizable as such so you don't trap real people. Spammers spend a
> very small amount of effort and harvest spamtrap addresses *on purpose*
> and use them as sender addresses (joe job). The result being, of course,
> that you blacklist significant valid portions of the internet. Am I
> wrong here?
>
> --
> Darrin Chandler            |  Phoenix BSD User Group  |  MetaBUG
> dwchandler@stilyagin.com   |  http://phxbug.org/      |
> http://metabug.org/
> http://www.stilyagin.com/  |  Daemons in the Desert   |  Global BUG
> Federation

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Publishing your spamtraps list, is that a wise move?, Peter N. M. Hansteen, (Thu Jul 5, 5:07 am)

Re: Publishing your spamtraps list, is that a wise move?, Peter N. M. Hansteen, (Mon Jul 9, 4:30 am)

Re: Publishing your spamtraps list, is that a wise move?, Bob Beck, (Thu Jul 5, 11:55 am)

Re: Publishing your spamtraps list, is that a wise move?, Jim Razmus, (Thu Jul 5, 1:58 pm)

Re: Publishing your spamtraps list, is that a wise move?, Darrin Chandler, (Thu Jul 5, 11:35 am)

Re: Publishing your spamtraps list, is that a wise move?, Peter N. M. Hansteen, (Thu Jul 5, 12:49 pm)

Re: Publishing your spamtraps list, is that a wise move?, Mike Erdely, (Thu Jul 5, 11:59 am)

Re: Publishing your spamtraps list, is that a wise move?, mark reardon, (Thu Jul 5, 11:58 am)

Re: Publishing your spamtraps list, is that a wise move?, Mike Erdely, (Thu Jul 5, 9:56 am)

Navigation

Mail archive search

Popular discussions


linux-kernel:
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Greg KH	[patch 00/04] RFC: Staging tree (drivers/staging)
James Bottomley	Re: Integration of SCST in the mainstream Linux kernel
Steven Rostedt	[RFC PATCH 1/3] Unified trace buffer
git:
Jon Smirl	! [rejected] master -> master (non-fast forward)
Marco Costalba	[ANNOUNCE] qgit4 aka qgit ported to Windows
Andi Kleen	Re: [kernel.org users] [RFD] On deprecating "git-foo" for builtins
Sverre Rabbelier	Git vs Monotone
openbsd-misc:
Richard Stallman	Real men don't attack straw men
GVG GVG	ssh_exchange_identification: Connection closed by remote host
Damian Gerow	Oddly high load average
Benjamin Adams	BSD Port from OpenJDK
linux-netdev:
Michael Grollman	Re: 8169 Intermittent ifup Failure Issue With RTL8102E Chipset in Intel's New D945...
Volker Armin Hemmann	build error with 2.6.27.6+reiser4+ehci-hub patch. ERROR: "mii_ethtool_gset" [drive...
Evgeniy Polyakov	[resend take 2 0/4] Distributed storage.
Wenji Wu	A Linux TCP SACK Question

Latest forum posts


serial driver xmit problem	1 hour ago	Linux kernel
Why Windows is better than Linux	1 hour ago	Linux general
How can I see my kernel messages in vt12?	7 hours ago	Linux kernel
Grub	19 hours ago	Linux general
vmalloc_fault handling in x86_64	1 day ago	Linux kernel
epoll_wait()ing on epoll FD	1 day ago	Linux kernel
Framebuffer in x86_64 causes problems to multiseat	1 day ago	Linux kernel
Difference between 2.4 and 2.6 regarding thread creation	1 day ago	Linux general
Netfilter kernel module	1 day ago	Linux kernel
Compiling gfs2 on kernel 2.6.27	1 day ago	Linux kernel

Show all forums...

Recent Tags

Colocation donated by:

Who's online

There are currently 5 users and 1277 guests online.

Online users

Syndicate