Re: Frank Carmickle and Marco Paganini must die

To: debian-devel@lists.debian.org
Subject: Re: Frank Carmickle and Marco Paganini must die
From: Russell Coker <russell@coker.com.au>
Date: Thu, 23 Sep 2004 03:12:33 +1000
Message-id: <[🔎] 200409230312.33286.russell@coker.com.au>
Reply-to: russell@coker.com.au
In-reply-to: <[🔎] 1095693993.6700.4.camel@arrakis.localnet>
References: <[🔎] 20040920130505.GA18555@complete.org> <[🔎] 20040920133826.GP21944@freenet.de> <[🔎] 1095693993.6700.4.camel@arrakis.localnet>

On Tue, 21 Sep 2004 01:26, Josselin Mouette <joss@debian.org> wrote:
> It won't achieve *anything*.
> If a spam is issued by an infected machine with a dynamic IP, it can use
> the SMTP server from the ISP as well. How do you make the difference
> betwen the two?

Most ISPs have limits on the number of messages that their mail server will 
receive from each IP address.  So if a spambot can send direct it can send 
hundreds of messages per second, but if it goes through the ISP mail server 
then it is limited to only a few per second.

If the ISP does not quickly stop the spam then their server will end up in the 
SpamCop listing.  So again it's not a problem.

On Tue, 21 Sep 2004 01:51, Adrian 'Dagurashibanipal' von Bidder 
<avbidder@fortytwo.ch> wrote:
> Ask the people in China, or in (parts of) Spain and Italy. You *can't* just
> change your Internet provider - there is only one, really. Or do propose
> people should call long-distance/international to dial-in?

Of course not.  They can get an account on a Linux machine somewhere sane and 
use a ssh tunnel.

On Tue, 21 Sep 2004 01:58, Adrian 'Dagurashibanipal' von Bidder 
<avbidder@fortytwo.ch> wrote:
> Same as with greylisting (which, incidentally, blocks 99.9% of the same
> spam that blocking DUL does bad without most of the bad effects): spammers
> can retry (and, in time, will) - but right now, they don't, and right now,
> I'm enjoying a virtually spam free INBOX.

Maybe you aren't as popular as I am.  Even with greylisting and DUL I still 
get more spam than I like.

On Tue, 21 Sep 2004 03:18, Marco d'Itri <md@Linux.IT> wrote:
> What you get are huge spam sources like the comcast network, which now
> is deploying port 25 ACLs because it's much cheaper than effectively
> policying users.

There's another thing we could do instead of using a DUL.  We could complain 
to the ISPs in question when dial-up links spam us.  Complaining by email 
doesn't work, so we would have to use FAX and phone calls to the support 
lines of the ISP.  If enough people do this then the ISP will block outbound 
port 25 connections just to save the cost of dealing with the complaints.  
Then the people who want to run mail servers on dial-up IP addresses wouldn't 
complain to us, they could complain to their ISP but that wouldn't do any 
good either.

-- 
http://www.coker.com.au/selinux/   My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/  Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/    Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/  My home page

Reply to:

Follow-Ups:
- Re: Frank Carmickle and Marco Paganini must die
  - From: Josselin Mouette <joss@debian.org>

References:
- Re: Frank Carmickle and Marco Paganini must die
  - From: John Goerzen <jgoerzen@complete.org>
- Re: Frank Carmickle and Marco Paganini must die
  - From: Michelle Konzack <linux4michelle@freenet.de>
- Re: Frank Carmickle and Marco Paganini must die
  - From: Josselin Mouette <joss@debian.org>

Prev by Date: Re: Frank Carmickle and Marco Paganini must die
Next by Date: graph of the debian organisation
Previous by thread: Re: Frank Carmickle and Marco Paganini must die
Next by thread: Re: Frank Carmickle and Marco Paganini must die
Index(es):
- Date
- Thread