[Full-Disclosure] Fighting Full-disclosure spam

[full-disclosure () lists netsys com (David Benfell)]

--X1bOJ3K7DJ5YkBrT
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, 15 Aug 2002 09:14:38 -0400, Alan Rouse wrote:
> I see three ways to fight the spam attack on this list:
> =20
> 1.    Light Moderation.  By that I mean, posts that are clearly spam
> are rejected.  (But no value judgements made on whether a certain
> security-related posting should be allowed).  Repeat spammers are banned
> from the list.  Etc...

Given the current load, who would have time to do this?  And much as I
may not approve of the phrack crap, such moderation would only filter
some of it.

I don't think the security industry is corrupt (just sometimes
misguided).

If it were corrupt, however, this would be a place to discuss it, just
hopefully on a somewhat more meaningful level than the (dare I call
it) discourse we've seen so far.

> 2.    Email client filtering.  When you get a spam message, add a
> filter for the sender of that message.  It at least makes it more
> difficult for these people to get the junk through.=20

Strongly recommended.  This, I think, is a good idea.

> 3.    Just ignore them.  Perhaps they will eventually find something
> more interesting to do.

If you don't have suitable client filtering, this is a second-best.
> =20
> What not to do:
> =20
> 1.    Don't reply to spam.
> 2.    Don't unsubscribe.
> 3.    Don't stop sending quality posts.  =20
> =20
> If you do any of these last three things you are contributing to the
> demise of the list.
> =20
I recently received an e-mail quoting a webpage stating that this list
is under attack.  Among other things, it claims participants here are
stupid, but does not explain why, if this is the case, they should not
simply permit us to wallow in our stupidity.

It also included the instruction not to forward it to the list, but to
forward it only in individual replies.  I suppose I am ethically
compelled to comply with this request, though I frankly do not see how
it helps to "beat them at their own game."

--=20
David Benfell, LCP
benfell () parts-unknown org
---
Resume available at http://www.parts-unknown.org/resume.html

--X1bOJ3K7DJ5YkBrT
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iQEXAwUBPVwEs3w5zqzgtjVOFAIfawP/RuVisQm9/Uu4x4MNyrp2vZ3qBkDlgDsB
YNCjcwmSBb+JVUMdb4wF5UJCh/ZPSXarCMvfxZNsQLv7zIvdraDsSmwgUpT04Hvk
x+8oj7BGvRMyON/7SeSplt+XPYpZbwjy+jVjNMsmekUDwO3FwXeJTaJ/hX+qhnoB
3JRn2ayL71sEAIejQ8r9JwYXZ9DHhnHD4neaFfajdzzG6rT+AofM6SJjhdykExiF
4h1dX75JuSCh0aslb9pXgzTp5n8wE0tNrk5TvstbZcGrsvJ7HIxIIvRmRNewmrR5
e5TFKOtbkf090NeCqM1r6lSRqkOYzSxcoBZ90IlNUHlt3OWzgoa1EEuq
=j/pj
-----END PGP SIGNATURE-----

--X1bOJ3K7DJ5YkBrT--