Re: MS mail bombs

To: debian-user@lists.debian.org
Subject: Re: MS mail bombs
From: "Jacob Anawalt" <jacob@cachevalley.com>
Date: Thu, 25 Sep 2003 20:20:34 -0600 (MDT)
Message-id: <[🔎] 3603.192.168.1.4.1064542834.squirrel@scsi-burn.office>
In-reply-to: <[🔎] 20030926014843.GA12375@guildenstern.dyndns.org>
References: <xIk5.4c8.1@gated-at.bofh.it> <[🔎] E1A0en2-0000Jz-00@jaguar> <[🔎] 3F6E728F.8040204@cachevalley.com> <[🔎] 200309222307.50195.wayneg@ananzi.co.za> <[🔎] 3F6F78BD.8030504@debian-gnu.com> <[🔎] 2248.192.168.1.4.1064279027.squirrel@scsi-burn.office> <[🔎] 20030926014843.GA12375@guildenstern.dyndns.org>

Karsten M. Self said:
> on Mon, Sep 22, 2003 at 07:03:47PM -0600, Jacob Anawalt
> (jacob@cachevalley.com) wrote:
>
>> There's a company that provides this service. First time emails to you
>> get
>> an auto-response "You aren't authorized to send me email, visit this web
>> page to get authorized" or something like that. I Googled and can't find
>> it again. Interesting idea.
>
> This is known as "challenge-response", and as an anti-spam / anti-virus
> method, without mitigation, it's simply unacceptable.
>
> Swen spoofs addresses resolving to nonexistent addresses (challenge to
> Verisign), Microsoft (ditto), or Morgan Stanley (ms.com).  As Verisign
> has elected to receive this crap, and Microsoft is responsible for the
> problem, I'm not shedding tears for their admin teams.  Morgan Stanley,
> however, is taking a hit on about 5% of all Swen bounces, and is a
> completely innocent party.  When their lawyers pay you a visit for
> Joe-job DDoSing them, note you've been warned.
>
> SoBig.F spoofed arbitrary senders.  Same problem except that the load
> was more broadly distributed.
>
> I've received far more invalid, than valid, C-R challenges.  This is
> simply spam by another name.
>
>     http://kmself.home.netcom.com/Rants/challenge-response.html
>
> ...also discussed at some length in d-u last month.
>

Since I posted this I've read the whole challenge and response (C-R)
thread and updated myself on some of the content on your site including
the aforementioned link. I won't be seeing Morgan Stanley lawyers about
bouncing email at them because I don't bounce email. I stop it at SMTP.

-- 
Jacob
Trying out SquirrelMail

Reply to:

Follow-Ups:
- Re: MS mail bombs
  - From: "Karsten M. Self" <kmself@ix.netcom.com>

References:
- Re: MS mail bombs
  - From: "Michael C." <mcsuper5@usol.com>
- Re: MS mail bombs
  - From: Jacob Anawalt <jacob@cachevalley.com>
- Re: MS mail bombs
  - From: Wayne Gemmell <wayneg@ananzi.co.za>
- Re: MS mail bombs
  - From: daniel <daniel@debian-gnu.com>
- Re: MS mail bombs
  - From: "Jacob Anawalt" <jacob@cachevalley.com>
- Re: MS mail bombs
  - From: "Karsten M. Self" <kmself@ix.netcom.com>

Prev by Date: (Potato) dselect: Some index files failed to download
Next by Date: apt-get upgrade: dpkg error
Previous by thread: Re: MS mail bombs
Next by thread: Re: MS mail bombs
Index(es):
- Date
- Thread