Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Spam prevention vs mitigation

From: Ivan Carlos <icarlos () icarlos net>
Date: Thu, 12 Apr 2012 16:43:08 +0000
R u using the best practices? Enforcing SPF, some RBLs, maybe DKIM?

You can prevent 99.99% off spam, looking for lots of RBLs, using mandatory SPF + reverse DNS, testing open relays 
itself, blocking dsl connections, blocking some top-level domain, building keyword blocklist, but you certainly will 
get some false-positives.

Ivan Carlos
CISO, Consultant
+55 (11) 8112-0666
www.icarlos.net

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Steve Sirag
Sent: quinta-feira, 12 de abril de 2012 13:05
To: security-basics () securityfocus com
Subject: Spam prevention vs mitigation

Hi,

My bosses are demanding 100% spam prevention, and I'd like to find some industry papers, articles, etc that explains 
why that's not advisable (if even possible).  My understanding is that spam mitigation is the goal, keeping spam down 
to where it's not a distraction from business.  Our current spam level is roughly 3-6 spams received per user per day.  
That seems manageable to me, but I'd like the extra ammunition going into the meeting.

Can anyone help?

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and 
who needs an SSL certificate.  We look at how SSL works, how it benefits your company and how your customers can tell 
if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your 
Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing 
management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------




------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: