nanog mailing list archives

RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus )

From: Todd Vierling <tv () duh org>
Date: Fri, 9 Dec 2005 12:22:47 -0500 (EST)


On Fri, 9 Dec 2005, Geo. wrote:

I hear you but you and I both know AV companies are not going to give up the
automated spamming feature that easily.


I don't doubt that.  Their generated UBE is often commercial in nature, too,
because they usually carry an advertising link along with the spew.

A standard message beginning they might be willing to impliment


I have enough regex filters, thank you.  I don't plan to encourage yet more
UBE by standardizing it -- think [YOU-]CAN-SPAM for antivirus apps.  I
should not have to waste the bandwidth cost at DATA for yet more UBE.

As for the quantity you receive, its nothing compared to the amount of spam
those infected machines are soon going to be generating.


Actually, I get about ten to twenty times as much virus blowback as I get
spam from trojan-zombie boxes.

That's because the virus blowback comes from otherwise "reputable" MTAs,
whereas the spam comes form zombies that are often already blacklisted, or
are in known dynamic pools that are blocked here.  Thus the zombies get
blocked long before DATA, but the "reputable" MTAs sending the backscatter
don't get caught so early.

-- 
-- Todd Vierling <tv () duh org> <tv () pobox com> <todd () vierling name>

Current thread:

Re: Clueless anti-virus products/vendors (was Re: Sober), (continued)
- - - Re: Clueless anti-virus products/vendors (was Re: Sober) Steven J. Sobol (Dec 07)
    - Re: Clueless anti-virus products/vendors (was Re: Sober) Micheal Patterson (Dec 07)
    - Re: Clueless anti-virus products/vendors (was Re: Sober) Michael . Dillon (Dec 08)
    - Re: Clueless anti-virus products/vendors (was Re: Sober) Douglas Otis (Dec 08)
    - Re: Clueless anti-virus products/vendors (was Re: Sober) Simon Waters (Dec 09)
    - SMTP store and forward requires DSN for integrity (was Re: Clueless anti-virus ) Douglas Otis (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Geo. (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Todd Vierling (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Geo. (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Steven J. Sobol (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Todd Vierling (Dec 09)
    - Re: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Douglas Otis (Dec 09)
    - Re: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Micheal Patterson (Dec 09)
    - Re: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Matt Ghali (Dec 09)
    - Re: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Micheal Patterson (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Douglas Otis (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Steven J. Sobol (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Todd Vierling (Dec 09)
    - RE: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Steven J. Sobol (Dec 09)
    - Re: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Douglas Otis (Dec 09)
    - Re: SMTP store and forward requires DSN for integrity (was Re:Clueless anti-virus ) Todd Vierling (Dec 09)

(Thread continues...)