Helping people with computers... one answer at a time.
•
Listen to the podcast: Yes, it's getting worse..
Transcript
Hi everyone, this is Leo Notenboom with news, commentary and answers to some of the many questions I get at askleo.info.
If it seems like there's more spam in recent months than ever before, it's only because there is. More spam is being generated, and more spam is making it past spam filters than ever before.
Why the upswing? Well, I've heard two theories, both of which make sense.
First is an increase in the use of zombie networks or "botnets" to actually send spam. Zombie networks are simply machines owned by average users like you and me, which have been infected with malware that can be secretly instructed to send spam. Since the spam is sent from thousands, if not millions, of different machines spread all over the world, there's no reasonable way block it.
Second is the increased ability of spammers to fool the spam filters. Have you noticed spam that contains a paragraph or two of text that "almost" makes sense, but if you read carefully is total nonsense? Or a subject line that has just random words or phrases? Those are there specifically to fool the spam filters, and it looks like it's working.
So what's to be done?
Or more to the point, what can you do?
Well, step one is don't contribute to the problem: now I know you're tired of hearing me say it, but make sure you're running anti-spyware and anti-virus software that's regularly being updated so that it's not your machine that's sending spam. Or, as I know some listeners are yelling right now: consider Linux or a Mac.
Step two is ... don't contribute to the problem: spam only exists because it works. If you've ever responded to, or worse purchased from, a spammer, you are directly contributing to the rise in spam. If spam wasn't profitable there'd be no incentive to create it.
Step three, of course, is for us all to keep searching for that silver bullet antispam solution that doesn't exist yet.
Unfortunately the rise in spam has also caused many major ISPs to start getting too agressive and it's not at all uncommon for legitimate mail to get discarded as spam. Consumer grade anti-spam products do this as well. So far my combination of a server side spam filter to discard the obvious stuff - much like your ISP might provide, along with Outlook's built in junk mail filter is an "OK" solution - but I still have to be careful to look for false positives in the junk mail, and I still find myself deleting spam that neither tool caught.
To be honest, I'm not sure what the long term future holds, but in the short term the answer is easy: more spam.
I'd love to hear what you think. Visit ask leo dot info, and enter 10883 in the go to article number box. Leave me a comment, I love hearing from you.
This is a presentation of askleo.info, a free on-line technical question and answer service. Hundreds of questions and answers are online and ready to help solve your computer problems.
That's askleo.info.
Article C2830 - November 5, 2006
Leo A. Notenboom has been playing with computers since he
was required to take a programming class in 1976. An 18 year career as a programmer at Microsoft soon followed.
After "retiring" in 2001, Leo started Ask Leo! in 2003 as a place for answers
to common computer and technical questions. More about Leo.
I actually agree that SMTP is weak, and a large part of the problem, technically. Just about any solution that allows for absolute sender verification would go a long way to helping. Problem is getting all th e player to agree on any standard.
Posted by: Leo Notenboom at November 5, 2006 11:08 PMAll of the junk email that makes it pass my junk email filter are gifs. I simply set a filter to look for Content-Type: image/gif; in the body. Those are directed to trash but remain unread. A sort by sender and off they go.
Posted by: Daniel Ullman at November 6, 2006 2:37 PMThere was something that was working... The Blue Frog. Unfortunately spamming/botnets are large-scale industries now, so BlueFrog found themselves posted as a target & the spammers were able to take out TypePad (!) and TuCows (!!!).
The project is slowly continuing as the okopippi project, but it isn't something that you can use *now*.
The war is big enough to take out large "unsuspecting" (Neither TypePad nor TuCows knew that they were going to be attacked... but both have *huge* pipes that are good enough for just about anything else) hosts. It would be interesting to see if they can take out *aware* hosts.
Posted by: Thor Johnson at November 13, 2006 7:01 AMSpam is a real pain. My ISP does a pretty good job of filtering but some legit e-mails do get trashed in the process, perhaps a small price to pay for not having to slog through myriads of junk just to salvage one or two e-mails. I have found that changing my e-mail address is effective for a while anyway, although it is a royal pain!
Posted by: Russ Tully at November 13, 2006 4:25 PMI agree. I`m also getting tons more of the foul stuff and I used to get virtually none. Whatever happened to legal moves to curb spam? Is there no deterrent these days? Perhaps a few draconian penalties might help. The swines who send this rubbish should have every appendage removed, very, very slowly!
Posted by: David at November 14, 2006 1:59 PM