AW: AW: [Full-Disclosure] Windows Messenger Popup Spam on UDP Por t 10 26

vogt_at_hansenet.com
Date: 06/23/03

  • Next message: Nick FitzGerald: "Re: [Full-Disclosure] (no subject)" 
    To: nils.ketelsen@kuehne-nagel.com, full-disclosure@lists.netsys.com
Date: Mon, 23 Jun 2003 12:52:06 +0200

    > >This isn't about you. The ISP also has a responsibility to protect
    > >the internet at large. If millions of spam are sent each day because
    > >the average user is too stupid to close off his proxy, then the
    > >ISP can either shut him down, or block the proxy port. Obviously,
    > >shutting down isn't an option for business reasons.
    >
    > In this case I would request all ISPs to block port 25.
    > Millions of spams
    > are sent via this port each day.

    True, but incomplete. I work for an ISP, but my data is only true for
    us, so as usual, YMMV.
    Most spam is NOT sent out via port 25. It arrives via port 25, but it
    almost always relayed inbetween. Some years back, open relays were the
    main problem. However, we've dug into things a bit and found to our
    surprise that not only are they not the main problem anymore, but in
    fact a tiny minority. The main problem is open socks proxies (port 1080).

    Ironically, the proposal that everyone should use a firewall makes the
    problem worse, not better - we believe one or more personal firewalls
    shipping with a bad default config are the culprits.

    So what's an ISP to do? We all know nobody wants spam (even the spammers
    don't want to RECEIVE spam, only to send it). We also know that 90% of
    the current Internet population doesn't know the difference between an
    open proxy and a cup holder.

    best regards / mit freundlichen Gruessen,

    Tom Vogt
    Hansenet Webfarm Security
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Nick FitzGerald: "Re: [Full-Disclosure] (no subject)"

    Relevant Pages

    • Re: Current status?
      ... You would still need to know who your MTA is ... justification for allowing anybody to use port 25. ... to the problem of how to get the email system to be more immune to SPAM. ... your ISP should never allow you ...
      (comp.os.vms)
    • Re: Current status?
      ... spam will not stop because you start blocking port 25. ... I still won't use the idiots running the ISP for my mail. ...
      (comp.os.vms)
    • Re: Current status?
      ... I'm on Verizon FIOS at home and I know the FIOS converter box ... port 25 traffic wouldn't make it to my LAN (or single computer ... ISP, ... Spam is definitely a scurge, but letting the ISPs get monopoly on mail is not ...
      (comp.os.vms)
    • Re: Authenticate domain users and port issues
      ... All internet SMTP traffic occurs on port 25. ... Makers of Spam Filter ISP ...
      (microsoft.public.exchange.admin)
    • Re: Help with email setup for small network (imap)
      ... Geilman" wrote: ... >> Every ISP I've had allowed me to connect to port 25 on every ... >> computer on the internet. ...
      (alt.os.linux)