[Hidden-tech] Anti-spam help SUMMARY of suggestionsand preliminary results

ussailis at shaysnet.com ussailis at shaysnet.com
Sat Apr 19 20:00:34 EDT 2008

Previous message: [Hidden-tech] HT folks, Amherst and the virtual economy on Forbes.com
Next message: [Hidden-tech] An interview with Zak Barron of Constant Contact. No Sales Just info.
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I could be wrong, but

There is a program, DL.exe which does just what is discussed below. It
sends spam to email addresses that are on a computer that it infects.
That's part 1.

Part 2. recently I acquired a couple NetGear WiFi cards to add a couple old
laptops to our network. The NetGear software is designed to find a network
at install. This is done without any window requesting if the network the
software has found is OK to use

Part 3. There are several WiFi networks in the neighborhood. One of them is
unsecure, and contains DL.exe on it.

I never saw something download so fast. Fortunately, that program causes a
command box to pop up, so I knew it was there, and could deal with it.

Moral: Install netgear cards during the wee hours. Select the appropiate
network. Do a search for DL.exe. Edit registry. Otherwise I, too, could
become a spammer.

Jim Ussailis
jim at nationalwireless.com

Original Message:
-----------------
From: Chris Hoogendyk hoogendyk at bio.umass.edu
Date: Fri, 18 Apr 2008 11:33:10 -0400
To: andrew at stakeholdersinc.com, hidden-discuss at lists.hidden-tech.net
Subject: Re: [Hidden-tech] Anti-spam help SUMMARY of
suggestionsand	preliminary results

   ** The author of this post was a Good Dobee.
   ** You too can help the group
   ** Fill out the survey/skills inventory in the member's area.
   ** If you did, we all thank you.

andrew bellak wrote:
>
> Thanks everyone for your help and suggestions. Let me summarize the 
> feedback I received below.
>
> Switch to Mac, it may get less spam
>

I've been variously a Mac user, supporter, enthusiast, business owner 
and programmer since 1985. But I cringed at that naive suggestion. 
Whether or not you get spam has little to do with your platform and much 
more to do with your online exposure and use of your email address.

I will say that there is a huge difference in susceptibility to viruses 
and trojans and so on depending on your platform. I would further point 
out that the huge quantities of spam on the internet are a consequence 
of the huge numbers of compromised Windows PCs that comprise the botnets 
that are used to distribute spam, and that make it difficult to block 
(because it is coming from everywhere). So, if we *all* switched 
platforms, . . . well, but that opens the hypothetical question of 
whether the dominance of Macs would lead hackers to focus on them more 
and end up developing ways of accomplishing the same thing with Macs. I 
don't think so, but, then, it's hypothetical. From an ecological and 
evolutionary point of view, perhaps a more diverse stew of operating 
systems with no one dominating would be better. However, I don't think 
we could be much worse off than with Microsoft being dominant. Some 
people say that 80% or more of the traffic on the internet is spam. I've 
even heard some claims of 90+%. There are also indications that there 
are several botnets that are on the order of millions of compromised 
PCs. If one of them wants to shut down a major site with a denial of 
service attack, they can. And they have.

Just as a small example, two of the mail servers I run, which are on 
separate domains and subnets, were each being hammered about 3am this 
morning from a site that was continuously changing it's server's names 
in the smtp envelope. At first both our servers were rejecting the 
connections because the server names looked to be forged. Then both our 
servers began rejecting the connections because our allowed connection 
rate from a single site had been exceeded. However, even while rejecting 
connections, this still takes processing time. Both of our servers were 
showing high peak loads that would have made them slow to respond if 
there had been users trying to do things on them (but it was 3am). Were 
it not for viruses, trojans and botnets, being a sysadmin would be a lot 
simpler, and we would all be more productive.

I should note that, overall, the suggestions you got seemed informed and 
helpful.

> Switch e-mail client interface to Mozilla mail (Thunderbird), it 
> probably will reduce spam. I’ve considered this in the past but 
> thought the hassle of importing Outlook into Thunderbird was greater 
> than what I chose to try first.
>
> Switch domain hosts or urge current host to really use the mail server 
> tools like Spam Assassin, etc better.
>
> Switch e-mail addresses, that is, ditch the current and get new; or 
> similarly, use ‘throw away’ addresses AND be very careful with where 
> one uses addresses. i.e. – use personal/business addresses for friends 
> & colleagues, and use web mail addresses for listservs/web sites, etc.
>
> Use anti-spam software – 2 people liked Cloudmark and 1 liked open 
> source Spam Bayes
>
> And the one I decided to try first is ‘scrub’ mail through a web mail 
> account like Yahoo, Hotmail, or Gmail. I have a Yahoo account but it’s 
> not premium and so doesn’t allow forwarding.
>
> Therefore, I opened a gmail account and now forward mail to gmail and 
> then get this mail via Outlook. In essence, I send directly from my 
> addresses but I receive mail through the gmail scrubber. Preliminary 
> results are that I received 6 spam this morning versus 150-200 yesterday.
>
> This has not been totally seamless as I am still prompted by Outlook 
> for a password for 1 account which I’m still wrestling with.
>

-- 
---------------

Chris Hoogendyk

-
   O__  ---- Systems Administrator
  c/ /'_ --- Biology & Geology Departments
 (*) \(*) -- 140 Morrill Science Center
~~~~~~~~~~ - University of Massachusetts, Amherst 

<hoogendyk at bio.umass.edu>

--------------- 

Erdös 4

_______________________________________________
Hidden-discuss mailing list - home page: http://www.hidden-tech.net
Hidden-discuss at lists.hidden-tech.net

You are receiving this because you are on the Hidden-Tech Discussion list.
If you would like to change your list preferences, Go to the Members   
page on the Hidden Tech Web site.
http://www.hidden-tech.net/members

--------------------------------------------------------------------
mail2web.com – Enhanced email for the mobile individual based on Microsoft®
Exchange - http://link.mail2web.com/Personal/EnhancedEmail

Previous message: [Hidden-tech] HT folks, Amherst and the virtual economy on Forbes.com
Next message: [Hidden-tech] An interview with Zak Barron of Constant Contact. No Sales Just info.
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Hidden-discuss mailing list