Security Basics mailing list archives
RE: Spam prevention vs mitigation
From: Ivan Carlos <icarlos () icarlos net>
Date: Thu, 12 Apr 2012 16:43:08 +0000
R u using the best practices? Enforcing SPF, some RBLs, maybe DKIM? You can prevent 99.99% off spam, looking for lots of RBLs, using mandatory SPF + reverse DNS, testing open relays itself, blocking dsl connections, blocking some top-level domain, building keyword blocklist, but you certainly will get some false-positives. Ivan Carlos CISO, Consultant +55 (11) 8112-0666 www.icarlos.net -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Steve Sirag Sent: quinta-feira, 12 de abril de 2012 13:05 To: security-basics () securityfocus com Subject: Spam prevention vs mitigation Hi, My bosses are demanding 100% spam prevention, and I'd like to find some industry papers, articles, etc that explains why that's not advisable (if even possible). My understanding is that spam mitigation is the goal, keeping spam down to where it's not a distraction from business. Our current spam level is roughly 3-6 spams received per user per day. That seems manageable to me, but I'd like the extra ammunition going into the meeting. Can anyone help? ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Spam prevention vs mitigation Steve Sirag (Apr 12)
- RE: Spam prevention vs mitigation Ivan Carlos (Apr 12)
- Re: Spam prevention vs mitigation List Man (Apr 12)
- RE: Spam prevention vs mitigation Erik Soosalu (Apr 12)
- Re: Spam prevention vs mitigation Champ Clark III (Apr 12)
- RE: Spam prevention vs mitigation Steve Melcher (Apr 12)
- Re: Spam prevention vs mitigation Clint Davis (Apr 12)
- Re: Spam prevention vs mitigation Champ Clark III (Apr 12)
- RE: Spam prevention vs mitigation Gillmer, Renier, VF-NZ (Apr 15)
- Re: Spam prevention vs mitigation Champ Clark III (Apr 12)
- Re: Spam prevention vs mitigation Todd Haverkos (Apr 12)
- Re: Spam prevention vs mitigation Champ Clark III (Apr 12)
- RE: Spam prevention vs mitigation Joseph Laico (Apr 12)
(Thread continues...)