On the other hand, when I've had actual compromised accounts that start spamming, AOL's SCOMPs have always been the first external report, so I actually find them quite useful. Only once did they notice a problem before I did (or my systems) found and plugged the hole, but still, it's nice to have the feedback. Other feedback loops seem far less useful to me, most sent more messages in the verification/signup phase than have sent actual ARF reports. Maybe I just don't send enough spam to get value out of the other FBLs out there?
Yes, AOL SCOMPs are invaluable for that. Unfortunately, we have seen situations where the SCOMP WAS our notification because rather than being obvious and sending out spam/malware full blast, the spammer was being sly and throttling the output to a couple a second, where it blended in with real email.
_______________________________________________ mailop mailing list [email protected] http://chilli.nosignal.org/mailman/listinfo/mailop
