>One of the things I like about it is that if hackers are sending spam >into my fake server then it takes away from their efforts on real >accounts that they could hack. I'm wondering if enough of us put up fake >authentication not only can we detect spam that way but we could waste a >lot of spammer's resources.
Tarpitting is so 1990s. (Ask Ron Guilmette, who wrote an amazing event driven tarpitter that could keep thousands of connections active for days at at time on a 486.) Spammers have botnets, so you can take it as a given that they have more resources to waste than you do. A fake AUTH server might be interesting to see how the spam differs from ordinary spam, but it's not going to slow down anyone's sending.
