Tech Support Guy banner
  • IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Status
Not open for further replies.
1 - 1 of 1 Posts

· Moderator (deceased) Gone but never forgotten
Joined
·
48,309 Posts
Discussion Starter · #1 ·
New SPAM fighting tools!

A New Tool In The Spam War
Arbitration is part of the next wave of security measures, and can be effective against spammers who illegally harvest email addresses from a honeypot on your website.
By Ethan Preston Jan 12 2005 03:03PM PT

Anti-spammers have a new weapon in their arms race with the spammers. A robot recently rummaged through Mike Wendland's website, harvesting email addresses to spam. But, as a participant of Project Honeypot, Wendland was prepared with an anti-spam honeypot. (Project Honeypot is coordinated by Matthew Prince, CEO of unspam.) The script automatically generates bogus web pages (like this) that contain a control email address for the robot to collect. Project Honeypot both records the robot's IP address, the date and time the bogus web page is downloaded, and also receives any email sent to the control email address. The control email addresses are unique, so the Project can positively correlate a robot's IP address and time-stamp with any spam sent to the control email addresses. The end result: Wendland was able to identify the illicit harvester, an ostensibly legitimate marketing company.

By identifying illicit harvesters, Project Honeypot opens up a new front in the war on spam. Webmasters can now identify and block robots that harvest email addresses from their websites. Indeed, because the Project collects participants' data and publishes a list of IP addresses associated with spam harvesters, webmasters and ISPs can block all the harvesting robots identified through Project Honeypot. Moreover, once harvesters have been identified, they can be prosecuted and sued under the CAN SPAM Act of 2004. And the states have their own anti-spam statutes, whose penalties as seen recently can be quite severe.

....http://securityfocus.com/columnists/291

------------------------------------------
A list of IP addresses for known SPAMers
http://www.projecthoneypot.org/bots_and_servers.php
 
1 - 1 of 1 Posts
Status
Not open for further replies.
Top