hit the ground spam fight ing
play

Hit the Ground Spam(fight)ing v2.0 LISA 06, Washington, D. C. - PowerPoint PPT Presentation

Jan 31, 2024 •173 likes •288 views

Hit the Ground Spam(fight)ing v2.0 LISA 06, Washington, D. C. December, 2006 John Rowan Littell rowan (at) hovenweep (dot) org Hit the Ground Spam(fight)ing LISA 06 Know your users Who are they? Are they

  1. ✬ ✩ Hit the Ground Spam(fight)ing v2.0 LISA ’06, Washington, D. C. December, 2006 John “Rowan” Littell rowan (at) hovenweep (dot) org ✫ ✪

  2. Hit the Ground Spam(fight)ing LISA ’06 Know your users • Who are they? Are they liberal arts professors? Professional geeks? Your family? Stock traders? • How do they access mail? IMAP , POP , web mail? Do their clients work best with quarantine folders, server-side filtering, or client-side filtering? • How much support can you give? Do you have time to debug their procmail scripts? John “Rowan” Littell 2

  3. Hit the Ground Spam(fight)ing LISA ’06 Where to fight spam • Mail client (MUA) – Pros: It’s there and ready to use, can work with enough attention. – Cons: Non-technical users may consider it too much hassle, no domain-wide benefits – Examples: Thunderbird, Mail.app • Mail server or mail exchanger (MTA) – Pros: Domain-wide benefits, can be quite effective, allows users to “just get their mail.” – Cons: More work for you OR very expensive. – Examples: SpamAssassin, dspam, Iron Port, Postini, etc., etc., etc. John “Rowan” Littell 3

  4. Hit the Ground Spam(fight)ing LISA ’06 Protocol Hacks: DNSBL • Reject mail from IP addresses presumed to be spammers via DNS lookup – Pros: Quick, widely supported – Cons: Quality varies, tends toward either false positive or false negative – Suggestions: Choose a well-respected one, have a method in place for exceptions, run a dedicated caching name server – Reference: http://en.wikipedia.org/wiki/DNSBL John “Rowan” Littell 4

  5. Hit the Ground Spam(fight)ing LISA ’06 Protocol Hacks: Greylist • Tempfail the first instance of sender/recipient/IP address triplet, accept when it tries back – Pros: Entirely within SMTP , effective against virii – Cons: Delays the first message, some server architectures don’t play well, the spammers are getting smarter – Suggestions: Choose a flexible one, use the well-known whitelist, have a method for exceptions, check against /24 address space instead of /32. – Reference: http://en.wikipedia.org/wiki/Greylist John “Rowan” Littell 5

  6. Hit the Ground Spam(fight)ing LISA ’06 Protocol Hacks: SMTP and TCP Tricks • Require senders to follow RFCs and basic good behavior – Possible Methods: HELO before data, HELO string checking, Send- mail “greet pause”, DNS sanity checking, throttling connections, feedback from MTA into firewall – Pros: Catches a number of spamware systems – Cons: Catches a few legitimate mail server implementations, some methods need maintenance, some methods are only implemented as hacks (milters, etc.). – Suggestions: Watch for exceptions, don’t use high-maintenance “tricks” John “Rowan” Littell 6

  7. Hit the Ground Spam(fight)ing LISA ’06 Content Analysis: SpamAssassin • General clearing house for all kinds of tricks: content matching, DNSBL, fuzzy checksums, auto-whitelisting, image analysis, Bayesian analy- sis. . . – Pros: Strong community support, fairly effective, plugins add accu- racy – Cons: Requires constant updates, processor intensive – Suggestions: Update frequently, look for good plugins, don’t waste time writing your own rules (unless you want to) John “Rowan” Littell 7

  8. Hit the Ground Spam(fight)ing LISA ’06 Content Analysis: Bayesian Classification + Learning • Calculate probability of spam content based on learned spam words and tokens – Pros: Over time can become very accurate, requires little mainte- nance – Cons: Diverse mail content can lower accuracy – Suggestions: Allow users to build individual Bayes databases for individual accuracy, combine with site-wide database for shared known spam – Reference: http://en.wikipedia.org/wiki/Naive Bayes classifier John “Rowan” Littell 8

  9. Hit the Ground Spam(fight)ing LISA ’06 Content Analysis: Antivirus • Identify known e-mail viruses and executable content – Pros: AV engines are very accurate for viruses, some include phish- ing matching – Cons: Takes resources – Suggestions: Dump or quarantine positive matches, do not send sender notifications – this is spam! John “Rowan” Littell 9

  10. Hit the Ground Spam(fight)ing LISA ’06 Performance Tuning • Tune your OS: for network, memory and processor • Learn your MTA: timeouts, threading, queue structure • Use your database wisely: cache and share connections, prepare statements • Cache everything: DNS lookups, user preferences, results of simple checks • Ananlyze your system: log everything and run log analysis, generate graphs and reports. . . but don’t chase every detail John “Rowan” Littell 10

Recommend

Spam, Spam, Spam Why is spam interesting? Everyone can observe spam. Spam / Anti-spam is a

Spam, Spam, Spam Why is spam interesting? Everyone can observe spam. Spam / Anti-spam is a

Spam, Spam, Spam Why is spam interesting? Everyone can observe spam. Spam / Anti-spam is a highly evolved form of information warfare. Fascinating socioeconomic study with many players - users, ISPs, spammers, technologists, legal

322 views • 17 slides
The fight against SPAM An Internet Number Resources

The fight against SPAM An Internet Number Resources

The fight against SPAM An Internet Number Resources Management Perspec5ve By Amreesh D. Phokeer 04/12/2015 Overview 1. Background 2. Sta2s2cs 3.

474 views • 32 slides
Opinion Spam Analysis and Detection Leaked Confidential Information as Ground Truth Yu-Ren Chen,

Opinion Spam Analysis and Detection Leaked Confidential Information as Ground Truth Yu-Ren Chen,

Opinion Spam Analysis and Detection Leaked Confidential Information as Ground Truth Yu-Ren Chen, Hsin Hsi Chen National Taiwan University What Is Opinion Spam? spreading commercially advantageous opinions as regular users on the Internet

1.18k views • 70 slides
Spam Fighting at CERN 28 April 2004 Emmanuel Ormancey 1 What is Spam ? What is Spam ? Spam

Spam Fighting at CERN 28 April 2004 Emmanuel Ormancey 1 What is Spam ? What is Spam ? Spam

Spam Fighting at CERN 28 April 2004 Emmanuel Ormancey 1 What is Spam ? What is Spam ? Spam is the friendly name given to unsolicited mail everyone receives in the mailbox. Comes from a Monty Python sketch, where in a caf everything

505 views • 13 slides
Opinion Spam and Analysis NITIN JINDAL & BING LIU, WSDM 08 UIUC Opinion/Review Spam All

Opinion Spam and Analysis NITIN JINDAL & BING LIU, WSDM 08 UIUC Opinion/Review Spam All

Opinion Spam and Analysis NITIN JINDAL & BING LIU, WSDM 08 UIUC Opinion/Review Spam All spam is spam but some spam is more spam than others Opinion spam similar to web spam or email spam in intent, but different in form / content Web

912 views • 38 slides
The CAN-SPAM Act of 2003 D E C E M B E R 2 0 0 3 THE CAN-SPAM ACT OF 2003 Status of Legislation

The CAN-SPAM Act of 2003 D E C E M B E R 2 0 0 3 THE CAN-SPAM ACT OF 2003 Status of Legislation

The CAN-SPAM Act of 2003 D E C E M B E R 2 0 0 3 THE CAN-SPAM ACT OF 2003 Status of Legislation When Congress returns from recess on December 8, 2003, it will finish its work on the CAN-SPAM Act of 2003 (Controlling the Assault of

323 views • 4 slides
Link Spam Alliances Zoltn Gyngyi Hector Garcia-Molina Class List Spam 101 Intro to

Link Spam Alliances Zoltn Gyngyi Hector Garcia-Molina Class List Spam 101 Intro to

Link Spam Alliances Zoltn Gyngyi Hector Garcia-Molina Class List Spam 101 Intro to web spam Spam 221 Spamming PageRank Spam farm model Optimal farm structure Alliances of two farms Larger alliances Spam

876 views • 30 slides
Web Spam Dr. Marc Spaniol Dr. Marc Spaniol Saarbrcken, June 24, 2010 Databases and

Web Spam Dr. Marc Spaniol Dr. Marc Spaniol Saarbrcken, June 24, 2010 Databases and

Web Dynamics Web Spam Web Spam Dr. Marc Spaniol Dr. Marc Spaniol Saarbrcken, June 24, 2010 Databases and Information Systems Prof. Dr. G. Weikum MPII-Sp-0710-1/49 Agenda Web spam - Why and what? Web Spam - Spam taxonomy

669 views • 49 slides
starting point to fight crisis Ireland reached the higher ground of budget surpluses, full

starting point to fight crisis Ireland reached the higher ground of budget surpluses, full

Ireland: Good starting point to fight crisis Ireland reached the higher ground of budget surpluses, full employment and stronger balance sheets: will help it to weather black swan event April 2020 Index Page 3: Summary Page 8: Macro Page

1.21k views • 67 slides
Web Spam Marc Spaniol Marc Spaniol Saarbrcken, July 23, 2009 Databases and Information

Web Spam Marc Spaniol Marc Spaniol Saarbrcken, July 23, 2009 Databases and Information

Web Dynamics Web Spam Web Spam Marc Spaniol Marc Spaniol Saarbrcken, July 23, 2009 Databases and Information Systems Prof. Dr. G. Weikum MPII-Sp-0709-1/49 Agenda Web spam - Why and what? Web Spam - Spam taxonomy Overview

806 views • 49 slides
TAKE THE HIGH GROUND. PLANT YOUR FLAG. FIGHT DOWNHILL. NAVY SEALS PASSION DESIGN INNOV

TAKE THE HIGH GROUND. PLANT YOUR FLAG. FIGHT DOWNHILL. NAVY SEALS PASSION DESIGN INNOV

TAKE THE HIGH GROUND. PLANT YOUR FLAG. FIGHT DOWNHILL. NAVY SEALS PASSION DESIGN INNOV ATION E X P E R I E N C E T H E U N I T E D O R T H O D I F F E R E N C E | 0 4 RETAIL SPORTS MEDICINE - RETAIL RECREATIONAL ATHLETE 1.

1.32k views • 36 slides
ARENA FIGHT BEST FRENCH KICKBOXING & MMA FIGHTS ARENA FIGHT / 2019 / COMPETITION /

ARENA FIGHT BEST FRENCH KICKBOXING & MMA FIGHTS ARENA FIGHT / 2019 / COMPETITION /

ARENA FIGHT BEST FRENCH KICKBOXING & MMA FIGHTS ARENA FIGHT / 2019 / COMPETITION / VISIBILITY / FIGHTERS / MEDIA RIGHTS ARENA FIGHT ARENA FIGHT is the new top fight sport competition series launched in France in 2019. Committed to

108 views • 10 slides
Detecting Product Review Spammers using Rating Behaviors Itay Dressler What is Spam? Why

Detecting Product Review Spammers using Rating Behaviors Itay Dressler What is Spam? Why

Detecting Product Review Spammers using Rating Behaviors Itay Dressler What is Spam? Why should you care? How to detect Spam? 2 What is Spam? What is Spam? All forms of malicious manipulation of user generated data so as to

943 views • 56 slides
Web Spam Know Your Neighbors: Web Spam Detection using the Web Topology Presenter: Sadia Masood

Web Spam Know Your Neighbors: Web Spam Detection using the Web Topology Presenter: Sadia Masood

Seminar: Future Of Web Search University of Saarland Web Spam Know Your Neighbors: Web Spam Detection using the Web Topology Presenter: Sadia Masood Tutor : Klaus Berberich Date : 17-Jan-2008 The Agenda Focus of the First Paper

1.22k views • 53 slides
spam, ham and other food or how to distribute spam to 100k email addresses Who am I? Debian

spam, ham and other food or how to distribute spam to 100k email addresses Who am I? Debian

spam, ham and other food or how to distribute spam to 100k email addresses Who am I? Debian Developer since 2003 Listmaster Alioth Admin Maintainer of packages like iproute, icinga, nagios and a lot of other useless stu ff

219 views • 20 slides
Machine Learning in Spam Filtering A Crash Course in ML Konstantin Tretyakov kt@ut.ee

Machine Learning in Spam Filtering A Crash Course in ML Konstantin Tretyakov kt@ut.ee

Machine Learning in Spam Filtering A Crash Course in ML Konstantin Tretyakov kt@ut.ee Institute of Computer Science, University of Tartu Overview Spam is Evil ML for Spam Filtering: General Idea, Problems. Some Algorithms Nave Bayesian

391 views • 35 slides
x 2 > b w T x > 0 SPAM!! x ( x , 1) w 3 x 3 w T x + b ( w , b ) T ( x , 1)

x 2 > b w T x > 0 SPAM!! x ( x , 1) w 3 x 3 w T x + b ( w , b ) T ( x , 1)

A neuron (or how our brains work) Linear models Subhransu Maji CMPSCI 670: Computer Vision November 3, 2016 Neuroscience 101 CMPSCI 670 Subhransu Maji (UMASS) 2 Perceptron Example: Spam Input are feature values Imagine 3 features (spam

682 views • 8 slides
Spam Filtering with Naive Bayes Classifier Yuriy Arabskyy June 6, 2017 Table of contents What

Spam Filtering with Naive Bayes Classifier Yuriy Arabskyy June 6, 2017 Table of contents What

Spam Filtering with Naive Bayes Classifier Yuriy Arabskyy June 6, 2017 Table of contents What is spam? Different spam types Anti-Spam Techniques Probability theory basics Conditional probability Bayes Theorem Naive Bayes Theorem Spam

1.04k views • 27 slides
Exercise 4: Fight Club Karl Gmeiner 2015 Exercise 4: Fight Club 1 Exercise 4: Fight Club The

Exercise 4: Fight Club Karl Gmeiner 2015 Exercise 4: Fight Club 1 Exercise 4: Fight Club The

Exercise 4: Fight Club Karl Gmeiner 2015 Exercise 4: Fight Club 1 Exercise 4: Fight Club The first rule of this exercise is, do not talk about this exercise. Implement a round and text-based fighter game. In this game, you can create fighters

196 views • 3 slides
Spam-URL Detection via Redirects Heeyoung Kwon Mirza Basim Baig Leman Akoglu Era of Spam Era

Spam-URL Detection via Redirects Heeyoung Kwon Mirza Basim Baig Leman Akoglu Era of Spam Era

A Domain-Agnostic Approach to Spam-URL Detection via Redirects Heeyoung Kwon Mirza Basim Baig Leman Akoglu Era of Spam Era of Spams [1] [1] Social Media Spamming Grew By 658% Between 2013 And 2014: Entertainment, Financial And News

241 views • 20 slides
LEARNING TO FIGHT EXODUS 17:8-16 New Experience: Israel must learn to fight EXODUS 17:8-16 At

LEARNING TO FIGHT EXODUS 17:8-16 New Experience: Israel must learn to fight EXODUS 17:8-16 At

LEARNING TO FIGHT EXODUS 17:8-16 New Experience: Israel must learn to fight EXODUS 17:8-16 At Rephidim, Amalek came and fought against Israel. Moses said to Joshua, Select some men for us and go fight against Amalek. Tomorrow I will stand

855 views • 49 slides
LOCAL ACTION PLANS FOR FIGHT AGAINST FIGHT AGAINST CORRUPTIOON AT THE LOCAL LEVEL ZRENJANIN

LOCAL ACTION PLANS FOR FIGHT AGAINST FIGHT AGAINST CORRUPTIOON AT THE LOCAL LEVEL ZRENJANIN

LOCAL ACTION PLANS FOR FIGHT AGAINST FIGHT AGAINST CORRUPTIOON AT THE LOCAL LEVEL ZRENJANIN POEGA KRAGUJEVAC NI GOAL OF PRESENTATION Presenting the process of creation of Local Action Plans for fight against corruption (LAPs) in

337 views • 21 slides
Advanced Topics of Mail Service Deal with Malicious Mail, including Virus, Phishing, Spam,

Advanced Topics of Mail Service Deal with Malicious Mail, including Virus, Phishing, Spam,

Advanced Topics of Mail Service Deal with Malicious Mail, including Virus, Phishing, Spam, Computer Center, CS, NCTU Nature of Spam Spam Simultaneously Posted Advertising Message UBE Unsolicited Bulk Email UCE

915 views • 89 slides
Spam Is Bad John R. Levine Chair, IRTF ASRG Chair@asrg.sp.am http://asrg.sp.am Why is spam

Spam Is Bad John R. Levine Chair, IRTF ASRG Chair@asrg.sp.am http://asrg.sp.am Why is spam

Spam Is Bad John R. Levine Chair, IRTF ASRG Chair@asrg.sp.am http://asrg.sp.am Why is spam bad? Theres too much of it Its offensive Its fraudulent 2 Why is spam bad? Theres too much of it 98% More spam

655 views • 31 slides

More recommend