| | |  | This is the Conversation Forum for How to Fight Spam
<< Shocking
Fake headers >> | |
| | | Subject: Mail routers
Posted Apr 28, 2003 by Atlantic_Cable
| | Posting
1
 | | Something I've read about, but you didn't mention, so I'm not sure if I am telling it right is about mail routers.
I think I read it in New Scientist, on their SPAM article. It said one of the main problems with SPAM is that spammers get hold of the address of mail routers. These are servers that do nothing else, other than route email.
By sending a command to it, they can order it to sent 1000's of emails to a series of addresses, and the router just does it. It doesn't even care who is asking it to do this.
The article said that if these routers were made secure, with authentication required, spam would drop instantly.
Also a sat I heard was that currently SPAM = 40% of all emails sent, but it is rising.
If it keeps rising, sometime in July this year, it will exceed "regular" email.
Scary.
|
| | | Subject: Mail routers
Posted Apr 29, 2003 by Pezvi
This is a reply to this Posting
| | Posting
2
 | | Sounds like you're talking about a mail relay, specifically an open relay. Back in the days before spam (yeah, remember those?... I don't) mail servers would pass along anything they couldn't deliver directly to the appropriate server (relaying), no matter who sent the message. Spam-conscious admins no longer allow this, passing mail to other servers only when it's generated internally or comes from a trusted domain, typically using DNS lookups or IP filters. A server which doesn't check is called an open relay, in that it is open to relaying mail from anywhere. This allows a spammer to use it to hop on, send a ton of messages, and hop off. Now combine this with a faked header (trivially accomplished, since mail servers are a bit credulous, doubly so for open servers) and you've got an email with no trace of who sent it except at the open relay... difficult to find buried in a ton of fake headers.
Closing open relays would mean a spammer would have to use his or her ISP's mail server, or the server of the domain he or she wished to spam. Either way you'd have a much easier time of getting the spammer's IP address. If you can nail that down, you can have the spammer's account shut down (unless their ISP is spam-friendly, naturally).
|
|
|
   
Conversation list
Most of the content on h2g2 is created by h2g2's Researchers, who are members of the public. The views expressed are theirs and unless specifically stated are not those of the BBC. The BBC is not responsible for the content of any external sites referenced. In the event that you consider anything on this page to be in breach of the site's House Rules, please click on the relevant  button to alert our Moderation Team. |
Home
