One thing I notice with some spammers is that once an email's been blocked, they will immediately resend it through another machine with a different subject and sender (same recipient). The attempt is tried, sometimes up to *15* times, at which point it either passes one of my tests or gives up.
If I can stall a few of these long enough.. perhaps the real server behind the proxies will give up sooner (and possibly drop the email address from its list?)...
At the very least, it's just like Matt said.. might not make a difference, but it sure is fun to tease them...
-- Bryan
Guillaume Filion wrote:
Tim Meadowcroft wrote:
I started off thinking that I'd suggest adding basic tar-pitting (http://www.gordano.com/kb.htm?q=1112) to selected plugins[...]
About tarpitting. It seems to me that any half technical spammer will use a multi threaded program that opens thousands of simultaneous SMTP connections. A tar pit would only stall one of those connections, using a few KB of RAM. Hundreds of tar pits would only slow the spammer by a fraction of a percent.
Am I missing something? Are you guys all wasting you time doing tar-pits? 8)
Cheers, GFK's
