funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: 95% of User Generated Content is spam or malicious

From: Joel Esler <joel.esler () me com>
Date: Tue, 23 Feb 2010 15:03:56 -0500
95% of this thread is nonsense.

----

100% of the statistics in my email are made up.

--
Joel Esler
joel.esler () me com
http://www.joelesler.net

 
On Tuesday, February 23, 2010, at 02:48PM, "Hubbard, Dan" <dhubbard () websense com> wrote:

All;

I am guilty of being way late to this party, however...

Whoever started this thread where did you get the 95% stat from? This may be completely off and/or irrelevant but I am 
*guessing* that the stat 95% of User Generated Content (UGC) is coming from us. This actually is *not* email SPAM. 
This is comment-spam in the form of web-posts into blogs, forums,etc..

Just wondering if the leap was made from UGC to email SPAM somehow. 





-----Original Message-----
From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On Behalf Of Dan Kaminsky
Sent: Monday, February 22, 2010 5:42 AM
To: Rich Kulawiec
Cc: funsec () linuxbox org
Subject: Re: [funsec] 95% of User Generated Content is spam or malicious

On Mon, Feb 22, 2010 at 8:23 AM, Rich Kulawiec <rsk () gsp org> wrote:

On Mon, Feb 22, 2010 at 07:34:56AM -0500, Dan Kaminsky wrote:

All I know is that I have a couple of email accounts that get
negligible amounts of spam.  Oh, they're *sent* huge amounts, but they
receive almost none.


But this is not the only metric with which to evaluate mail defenses.


I disagree.  This is the only metric that matters:  In 2007, I got a
lot of spam.  In 2010, I get a few messages *a month*.

A MONTH!


Anyway, one of the direct consequences of this reality is that testing
methodologies need to be very carefully constructed.  Anyone who
just plugs boxes from vendors X Y and Z into their network and does a
head-to-head comparison is not going to get a true picture of how those
systems really compare: they're only going to get a limited picture of how
those systems compare at the moment on their network(s) on their ASN(s)
with their domain(s).


Spam fighting as a product seems to be having problems.  Spam fighting
as a service is doing extremely well.

Who knows.  Maybe the bad guys are reverse engineering all the
products, but can't do the same to the services.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.


Protected by Websense Hosted Email Security -- www.websense.com 

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.




_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: