On Thu, 2004-07-29 at 09:35, Chris Santerre wrote:
> Mariano Absatz sez:
>
> >What would happen if a spammer intentionally starts putting hundreds
> >of different invisible random URIs within the message trying to DoS
> >SURBL?
> It picks a random sample of URLs.
Suggestion for the SURBL Ninjas: you might want to skew the selection a
bit toward checking longer domain names. Shorter domain names are
probably more likely to be legitimate and less likely to contain random
poison subdomains.
e.g. "ideologue.adulterously.coordaut.com" vs. "djn.org", "djn.com",
etc.
'course, it's just as easy to fake long domain names as it is to fake
short domain names.
--
John Hardin KA7OHZ <[EMAIL PROTECTED]>
Internal Systems Administrator voice: (425) 672-1304
Apropos Retail Management Systems, Inc. fax: (425) 672-0192
-----------------------------------------------------------------------
If you smash a computer to bits with a mallet, that appears to count
as encryption in the state of Nevada.
- CRYPTO-GRAM 12/2001
-----------------------------------------------------------------------
