Viva Liberacion: A Guide to Nuking Spammers, Part 1 - Page 2

By Carla Schroder | Posted Apr 23, 2003
Page 2 of 2   |  Back to Page 1
Print ArticleEmail Article
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn

"It's No Big Deal; Just Hit Delete"
If this is your philosophy, you haven't been paying attention. Go back and start over. William R. James wrote a wonderful essay called "Thank The Spammers". It is a must-read. My personal favorite quote is:

"They found that they could abuse the relays and cost others hundreds or even thousands of dollars, but it prevented them from losing the $10 dialup account or free NetZero account. It's like a thief who steals a $1000 wedding ring with priceless sentimental value just to sell it for a $20 cocaine fix."

Spammers are vandals and parasites. Some estimates put the annual industry cost of being forced to deal with spam at $10 billion. AOL estimates spammers cost them $5 per account. Just think, if it wasn't for spam, AOL customers could be paying $17 per month instead of $22.

What to Do
First you must protect yourself. The most important things you can do are: 1) Do not use Outlook or Outlook Express, and 2) Turn off everything in your mail client that a spammer can exploit:

  • Disable automatic 'read' and 'reply' confirmations
  • Disable HTML -- read mail in plain text only. Spammers use an astounding assortment of web bugs and scripts that collect and send data, download images and Web pages, and automatically sign you up for yet more spam
  • Block your email client from port 80
  • Never ever respond to a spam message -- do not purchase any product and do not reply
  • Do not use any "remove" links, as all they do is confirm a live address and get you more spam (trust me on this one)

If you must use Outlook, disable everything: scripting, preview pane, HTML, auto-replies, the works. There's a reason spammers and virus authors target Outlook -- it's very accommodating of misuse.

Use whatever filtering and blocking it takes to save your sanity, and maintain the usability of your inbox. The next step is to actively combat spam. The spam war is fought on two major fronts: technical and legislative. Most spam legislation is along the lines of requiring honest headers and contact information; legislators still don't understand the "theft of service" aspect, and so they continue the precedent that our private, personal property is fair prey for mass-marketers. As Mitch Wagner said in his excellent article, "There's No Such Thing As Legitimate Spam": "If the dirty-raincoat-and-five-o'clock-shadow crowd are cleared away from spam, the problem of volume won't get any better. Indeed, it'll get WORSE when multibillion-dollar consumer corporations get into it."

Whatever your feelings on the subject are, there's a great deal of legislative activity happening at the state and federal levels, so if you wish to get involved, you need to get moving.

On the technical front, there is a bewildering array of activist groups and resources. There are two that I use extensively: Spamcop and NANAE/NANAS. Spamcop is an automated spam-reporting service that digs through all the deceits and obfuscations to find the true origins of spams and then sends out abuse reports. Spamcop offers other services as well, including filtered email accounts and an excellent DNS-based blocklist (DNSRBL). Spamcop adds entries to its DNSRBL based on spam reports, so false positives and collateral damage are kept low.

NANAE is the Usenet group news.admin.net-abuse.email. It's a great place to get educated on spammers and their tactics, how to collect evidence, and how to make abuse complaints. NANAS (news.admin.net-abuse.sightings) is a companion group to NANAE. Post spams there to create a public record. NANAS is extremely useful for penetrating spammers' lies and for documenting how huge the spam problem truly is.

In Part 2 we'll look at specific ways to cut off spam at the source.

Resources
Stomping Out Spam: The Spam Series, Part 1
Picking Your Anti-Spam Poison: The Spam Series, Part 2
In the Year 2005, Will Your Anti-Spam Arsenal Be the Same? The Spam Series, Part 3
Spamfaq
Realtime Black-hole Lists: Heroic Spam Fighters or Crazed Vigilantes?
Spam's Cost To Business Escalates
Thank The Spammers
There's No Such Thing As Legitimate Spam


» See All Articles by Columnist Carla Schroder


Comment and Contribute
(Maximum characters: 1200). You have
characters left.
Get the Latest Scoop with Enterprise Networking Planet Newsletter