I wanted to run this past you to see what you thought of it and get some
feedback on pro's and cons of this type of system.
I have been thinking recently about the ever increasing amount of spam that
is flooding the internet, clogging mail servers, and in general pissing us
all off.
I think it
I am trying to find all of the rouge relays out there created by the more
recent worms that have spread throughout the internet, and improve the speed
at which it is done, instead of say a list that updates daily with SOME of
the relay changes, this list would be rebuilt daily from the ground up
There are several groups working on identifying open relays, proxies, etc
and creating lists of such ips for active blocking. For example see
http://www.spamhaus.org/xbl/index.lasso
The problem is not as much actual open relays (which are now rare and
almost universlly blocked) but open
Tim Thorpe wrote:
95% of spam comes through relays and its headers are forged tracking an
E-mail back that you've received is becoming next to impossible, its also
very time consuming and why waste your time on scumbags?
I don't think open relays are that big a part of the picture anymore.
The
On Feb 14, 2004, at 5:23 AM, Sven Huster wrote:
Dumb question:
If I apply a equal weight to all our transit/peers, will
that affect route announcements to iBGP or eBGP peers anyhow?
Yes, given that it's a local parameter (i.e., not BGP,
per se, though it does impact what's installed in the BGP
SH Date: Sat, 14 Feb 2004 12:23:06 +
SH From: Sven Huster
SH We had some recent issues were it looks like the core got
SH out of sync with the border (looks more like a sw issue
SH than just convergence delay) and packets bounced back and
SH forth between them.
Yikes. I'd try to see what
It just doesn't work :( A few years ago I developed a sendmail
milter system that would perform an open relay test on all new
IP's that attempted to send mail to or through our server. If
the test failed (open relay), the mail was rejected before it
was even sent. If the test passed, the mail was
Dumb question:
If I apply a equal weight to all our transit/peers, will
that affect route announcements to iBGP or eBGP peers anyhow?
No it wont affect announcements, weight is local to the router you apply it.
We got a very simple setup:
- 2 routers on the border to transit/peers (that's
On Sat, Feb 14, 2004 at 12:46:09PM -0500, Stephen J. Wilcox wrote:
Dumb question:
If I apply a equal weight to all our transit/peers, will
that affect route announcements to iBGP or eBGP peers anyhow?
No it wont affect announcements, weight is local to the router you apply it.
What
On Sat, 14 Feb 2004, Sven Huster wrote:
On Sat, Feb 14, 2004 at 12:46:09PM -0500, Stephen J. Wilcox wrote:
Dumb question:
If I apply a equal weight to all our transit/peers, will
that affect route announcements to iBGP or eBGP peers anyhow?
No it wont affect announcements,
On Sat, Feb 14, 2004 at 01:49:05PM -0500, Stephen J. Wilcox wrote:
On Sat, 14 Feb 2004, Sven Huster wrote:
On Sat, Feb 14, 2004 at 12:46:09PM -0500, Stephen J. Wilcox wrote:
Dumb question:
If I apply a equal weight to all our transit/peers, will
that affect route
On Sat, 14 Feb 2004, Tim Thorpe wrote:
I wanted to run this past you to see what you thought of it and get some
feedback on pro's and cons of this type of system.
I have been thinking recently about the ever increasing amount of spam that
is flooding the internet, clogging mail servers,
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Michael Wiacek
Sent: Saturday, February 14, 2004 9:12 AM
To: Tim Thorpe
Cc: [EMAIL PROTECTED]
Subject: Re: Anti-spam System Idea
It just doesn't work :( A few years ago I developed a
On Sat, 14 Feb 2004, Tim Thorpe wrote:
95% of spam comes through relays and its headers are forged tracking an
E-mail back that you've received is becoming next to impossible, its also
very time consuming and why waste your time on scumbags?
s/relays/proxies/
The proxies are tough to find
If these exist then why are we still having problems? Why do we let
customers who have been infected flood the networks with traffic as they do?
Should they not also be responsible for the security of their computers? Do
we not do enough to educate?
... addresses (or even
addresses that are
on Sat, Feb 14, 2004 at 03:55:40PM -0800, Tim Thorpe wrote:
If these exist then why are we still having problems?
See my reply to the thread SMTP relaying policies for Commercial ISP
customers...? -- we have problems because the spammers are a lot smarter
than any of us and can bounce from
On Sat, 14 Feb 2004, Tim Thorpe wrote:
If these exist then why are we still having problems?
Because the spammers are creating proxies faster than any of the anti-spam
people can find them. Evidence suggests, at least on the order of 10,000
new spam proxies are created and used every day by
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Sunday, February 15, 2004 01:21 AM
To: 'Tim Thorpe'
Cc: [EMAIL PROTECTED]
Subject: RE: Anti-spam System Idea
On Sat, 14 Feb 2004, Tim Thorpe wrote:
If these exist then why are we still having problems?
Getting a bit long, I like it :D.
What would be a netops general response to scans of this nature?
SH Date: Sat, 14 Feb 2004 18:00:51 +
SH From: Sven Huster
SH The thing that happend was that the core believed that the
SH best path out is via R1, which R1 thought it was via R2. So a
SH little loop there.
So core sends to R1, which sends to R2... where does R2 send the
packets? Back to
On Sat, 14 Feb 2004 [EMAIL PROTECTED] wrote:
On Sat, 14 Feb 2004, Tim Thorpe wrote:
If these exist then why are we still having problems?
Because the spammers are creating proxies faster than any of the anti-spam
people can find them. Evidence suggests, at least on the order of
21 matches
Mail list logo