|
|
|
Google Named No. 3 Spam Provider
By: Larry Seltzer
2009-01-06
Article Rating:  / 6
There are 5 user comments on this Network Security & Hardware story.
Google Named No. 3 Spam Provider (
Page 1 of 2 ) New forms of spam and similar abuse find a welcome home at Google, and the company doesn't yet seem up to the security task of fighting them. Perhaps it's a responsiveness issue.Much has been made of the recent
revelation that Google had reached No. 4 on Spamhaus' list of "The 10
Worst Spam Service ISPs." In fact, as I check now, Google is No. 3.
It's no secret why Gmail is such a big spamming source now: Spammers have
had success cracking the CAPTCHA tests and creating Gmail accounts from
which to spam. Because the spam comes from a domain reputation systems can't
block because it's so popular, spam from these accounts has an advantage in
getting past many anti-spam systems.
But some other ISPs and mail service providers with lousy reputations, in
the older sense of the word, are not in the top 10. Microsoft
had been a fixture in the Spamhaus list and Comcast was once known as a
happy hunting ground for botnet herders. Both of these companies seem to have
turned the corner.
I could tell Comcast had changed its ways when I saw a discussion on a
mailing list I'm on (I'll protect their
reputations by not mentioning the name) where users were all steamed that
Comcast had blocked access to external SMTP connections through TCP
port 25.
This is the single most effective way that ISPs can block spam from
coming out of their networks from botnets, and in fact there are other ports
that need to be blocked nowadays, like SMB networking. Bots usually send e-mail
directly out port 25 to the recipient domain, which usually works because, by
default, port 25 is unauthenticated. If you want to use an non-Comcast mail
server, you have to use TCP port 587, which
is authenticated by default. I don't know for sure, but I'll wager the
conventional ISPs on Spamhaus' list, headed up by sistemnet.com.tr (that's
Systemnet Telekom in Turkey),
give unfettered access to port 25.
Richard D G Cox, CIO of The Spamhaus
Project, says the real difference these days isn't just stuff like port 25
blocking ("That's such a 'nineties' (or should that be 'eighties'?) issue"),
but responsiveness to complaints, and not just from well-known complainers like
Spamhaus.
Cox said, "You see, one of the most difficult things for any organization
to accomplish is to see their own operation as it is seen from outside the
organization. And that is especially true of IT-related organizations."
It's easy to relate to this. And it's not just having the right perspective;
lots of organizations probably figure they have their hands full going after
the problems they know about. But if they're falling behind, it means they're
not dedicating sufficient resources to the problem.
| | Reader Comments: Google Named the #3 Abuse Provider | | >>> Post your comment now!
| | red condorcheck out red condor if spam is your problem they are amazing Posted At: 04-04-09
By: Anonymous | | | | | | No, I didn'tI mention port 25 blocking with respect to conventional ISPs, but not with respect to Google. Their problems are different. Posted At: 01-11-09
By: Larry Seltzer | | | | | | gmail and port25Larry - I don't follow: You mention port 25 blocking in the context of spam originating from 'google'. I am assuming you're referring to stats... Posted At: 01-11-09
By: Arnon Zangvil | | | | | | A user comment on this articleMicrosoft still has problems with spammers using their hotmail & live accounts for Receiving replies. If the spam does not originate from a microsoft... Posted At: 01-07-09
By: Anonymous | | | | | | ISPs and abuseHi, I'm Larry Seltzer. Do you think that your own ISP does a good job of rooting out abuse from their network? Tell us what you think. Posted At: 01-06-09
By: Larry Seltzer | | | | | | >>> Post your comment now! | | | | | |
|
|
|
�������x}r۸j�9km"u�iJX+e)$uT� I�S$�IY?_v8x��%eS%�l�ݍFޛ$\8acr�3c�|{ޤ�>�? !�?F0Bo92tdPt�-2訞þ�ɲf
g�3n]ަ[wǪR.�BX-U��cWC
L{hTyݙz۷>.
�EU�U:G���-;��жD^Ԣz�Cq9g}rоx#����;A:�� FֶRߙ�0Q\�&*+Jxj��`%rM7JQ߹�aQ-jR;֓,f3}�3�+i3��YN:~K~6NMN�;l,a�ZUU
2Z*]鬘FȏNժu|q۹juo{{CZ�v�Y3��a
Og�ɗV�}k!�-�=:$~}Zz>54�0���V+�JJWdZ6�)I|[ z%Ke}7�pWMmzlNTW꒮2Wb{熷(��.�ϱǍv"U.۽^m�8^%g�5F8�,h�eݴ%!��8WG5MGZ9Mfv\��J���G'�-dj`q�aeJݠ#mf�yw��Ӂ��NӦE|J
s6�5N<
E�C!ɠ��ڴb�\�f��4!>F�&MЀ?`;Ah>[W �k2
'�yvw�=g&.Q>j�uϙO#k[}7� �e j�J=Ss���A|5
�i!3L&Ze�nMn�^ʚtɕ�\=P9P�U_I�VT$�V3�Q2}�h=�ӧ�L)Eۋ�)I
:SX-��8G/4- �e]Zr{{#Uv/KƠ\>�_/
B[+�(� M��2L%���kZ1�%/D�4$B]�`}.�E�GQH�l�-
�&m;@=pl=5G0_ܰ큡�KQ"��OLYZfi '�[aH�z{�>8`�Tf he82-0�|�z;Hy�&�ofJPT$�P�/#Y%�/9-0cYC6eDm6'k(MER&=��G.6uT83[-O#BU��DdqxS??4X)02�y�6/�ʿ|u���N�0\��Cњa+34тq-*I�-b[X(T�Lb
֚΄��O5Oc_c��Ҁ�ap:�pHE&@|Zkhp ���B�@�E.�b�r>+j*�WT0pn�@AR�Ԓ.ZE^~v�V��KI:�hl��zTyBQ�7ߏ90gted��-��IZ+�k�fr�E)WKJZ9
_�|�}3??]e��t4R��8�pL:k}�SW
ZQa߯YU�P^مH��B&���dH�t=k�;J8K-f1�[5}��{AqM|ٌ�m!yUq@WIe�&�24Zڽ/ZdקWT�JE晛>67.ý�d:|8'gkJ�}6�k[; Uɭ6Zqd���F&оȣ�+ZNǂa0&3(�ڃzbs�uyus�lʬ.n>�a��=/ u�jGOpS�V3Wnf�mG*|�z&:vi0v-0\]>w6EL 5#��"��١
{Q!<�4`t,\Ů�vx�+mـyQ�䂲tyoD]lУA$�v)P\�E�7DF$۽6�R.�e�f��ĺnU(�*"X\5 Z_A�Ұg.3_�5u_f&OIT�z�[R>1�ZeƌRo(SY-iq#,�F.҄^ߵ{�N3 al�?/��q�)ր
+Viف%�jR�.;Zz�)�jJX�
�g0R 7TQ_cO3(~��TCy�u�{~&T˲X�\HmX�JP3YTAtUUT nb˨mMPJpf�X$$�\�\cz3Ή�(d(Qa�D@}R 3nQ/�eg�]:�S?�PG�#teX݂��t;f̬9_IfY{�Vŵ]2uH�"U�H�~'+jP`NSkZ�%,: ?��>w�d,j+�BGI}/�[&�IOS+f+
Cut�g\D@0|=�h��/$ΆR%*m\ܓN�\�8⺆a�R�Q��Xr�r�ZR��`?�'�ɠ��K=� �J�;!9�O)�I4C�^Jn�;�T'�nr\'7ƒ"'!
*7�3,��`މjbU\kGccbh^j>Q�_�'�/(0I�h_�pSi;U2��:;_tM`�/ax�mҤYԕºpiϏHQe[gݫtּ\|^toicrѹjK^k �R h�FHӋv&<�f�ShmǛ&E��a��kCuWidD��R �J_ƥ{jpfaj�^k-W&�27L��]?^Fhl[�_aY[�XȬE`�|S7$�"ǻ0�±�=`����`�VVw}�JN�.�f_$BAnp�+z!N)0F�D_TJi�)4z'u�3xjvo)��5;E_g%'�F{}.$��:,#=]/8�ʚ��=�?E���Nju>�!������4x㿜Y$�!rz e�n1�~KP -Mu?oSo4�jG�Yk�NE i�=O[�?�
�cd9�Ga��R)%Z)�
[4wiQEn%eє9r�tJ)SBt��(2H PU,O$e=l�I2 KBh%�bbVHG�o�wݼڞ6<1ޥ]ƙBƗH�at>fKe
�Kq�kP�i"��+�`-�>�ϓ��gԢᬖ^}�y����D��R̅)�O��f�S�r/гO]*Ubw�!� �sgkS
{:`��
[ıp߆�ء�?O.yr�os7&_[�O&氎ʦ
jpt�g�PbxYa)~h8Sʹ��iuUO�
i^}쟃�&'m_ |1�$?[н�>�u?�z}l^ﯣ&�<)ǣAl�k5�9obJwjin�=hK_x?OKҽ{c;ᧅmE��st33TT{I6ӱ$B�Eͫ*�ʾ\EVd.tՓ�s|<0���31�@7YM��(fެ�#zi16�Q35�|c1Bo~<Ϥ�
]ek��*)��7�o}VZ�tC.q�D�)n&�d/.%o.E ju O�Kt�1ڮ/=ا�HkYX�xlQ+Wg�
?u'|ȞF8^j[ɼci��2��>
AC^ؖrbL�p��Pf�pvn
֔I���i#ĠHߛӾsEs ��_5D��N��
X��W+Oi�ƿB&[qVL|{�rx�8m�ŗ�3S�O�p&k
�9p����_B_b��JKѴg=.00Q�/soK[��^}lQߏo_%~2A+��gsX#gqO�t�a���hdp-C c(˚E``��]{�+W[�$B4j91j/?/:\g�GbY�[mQ@vGj1b�(!'�&W7Or�I씤�xްF@]��DCY?K�Dveڎ�vXQi�;�& IYRX_:%X,�Ve!b4�0#��%�( d56.�B�?!{;')O_*!AB�^ZN*w
RR�IN�}7Mt=A�L�/m��T�`Y?Z��@�NpJ`��RVUV|Ǡ$t�'�&;ҍ��t(e#��_2}�թf#B#}0hC������a-E$x�'�U*)m|s����r{3ì��M��\_���p��h0{p88kG�F.�7v#�)�x<�c@y �*]`"@ML?��aJ=|ikQM�)�T¡*P���k�$�m1س�Yh<'(ҶXyqfP�IyL�!XocHDAt}n,>]o���UW|sX� ��7ҕc�}ab,zNīwSH�Ce����_�zXV�~P����0J�؉���K҉�r.̐|순�I� A41�A�E1U\���otc[�+[j_j�{x/9��-�G@ejǜ~=�,ܢ5O�:-�żvh&X^}Tn#
;:��2�i3(i�4ך�+B`S9����ysp�ᑸ9r�F�åCQ� o�}ⷣ� iR�H-7Qw}C ��a��@4 ���Kht��;T^O!PA====߸GR R/X�EMeHH19tf�[,L=�3HcB:foMl~�C@_x �![ئW�5DWߡ
|T+��1t�Ē|"֩�w�gj3tƊ|-vU:|�Yc8|\R Jnr^7g�X͇8x�eJe�ao�W'b�5֕|5WyՃŬ+Eч�`
7�aÇ��o" #�6�·X=B{[\�uAԖ�Cr�=۳�8>7%|5q�_Fz3Ѳq#rU>kc���{=rqӱ�S�K�7�� ��N"8/C�m�nl[;+Ա,
�ͽmr�|� +Rd��T-b
V�4tdge._�
s5gr���
m�Y&ݍ%n��rΠZ~TxMEܳ;u%VpD\>j
d\3uu\ͲE?��H^<%T�08rO|k�nfvSǤ>f]t�ˠBtϡ6k?1�R_Ktym]$%�?۾^�c+@m���U-0�VEQz.� [~�1{tӥQJY
%VC|_~߉�-g�����d^fph֒�_fXD(l%I"q0M�+┉fne�O�%3s�fH4�p�7�D�X�ȓw5��r�z�2�sƫ��5x�|O_/En/YO<[�L�_UfkZb72О$/L#}L[\�bd=�-T�?^<@�f2!f��*@
aL槚9l;gCQ{Ec��tq"�o��,����
�j�`܀���FdZP_h��s| ��ך��ΐ[?qCb$2{�"u�?C�*�O2OY&�l
BLq�ì�fo!_`n3�y+/9q-,(�ga(�(�,O�W���^x~
j~h!Dr0�vOr@Ym�2}-1ve1h}(F�y�B4���ĸWhn"9�IpH�VT�kU+� ,�F+P"V+��Y�"�'"��H�^XA0~8�.
dP]�m���/-Iy�oYK6�qNfAfQȢi�\1��V�j~zz_ZbiE�.c
2�u5WHk̘x/j4�vlNz
yԥ�BMJE�TChR��fx�k>֍qW곚bfƆX5�0�Vz^3�llz^CM` kJ�.қ≠D37:Q�Rsw'7zE[T�vX��i�b{�AƎ��lMᗚk惔K�pʭBף�:F�yH$LĀo[n��9VRԎ�y-0�#M_�;RS�UVR,���(��뱋p+FnTrwQ]c>=C4`z҇�Ed#u��s{�Z**)ۚg���R`cc�)q |-�>v"A�f�ӃQ�|K��q->Ø�zpҸFή6jWIζJ�4�I v0���㽻�o%5D��͜:�V�:ac�i7t�16)tof|{HI �-g��'b^m9�0�؞b,,9+?d�a�=eE&d[j�il�wAQg)q8�@縥٦v� l�AK�!?kHuSi�?R)!l%:*=�sr�c6ފjMdJ�]0]�aLĈV�R>fD9m�FN�W2h?bҘC�F?�W<00t+PʲjN�T]OpY�=XCE3 C��^_^ǭbQ�_�'ru�Y��_�D@�_�dqX�m-�`A~] �}�ޣLM
��.�J@Q˯Ig/4� ��Pm̼ϴHGbSx����iGd.$���q�m5`G�8;���
roE�VIz# ,Ő?ZED���w#��q}nC~hv.Uw7=
d'ܙ6 ���<�ySM\
hj,�9B;"��,>9 C�O�
2ۂ0wKys\v���к�lɧtC�!嘭#!+^�bΑ,^o߾���E�cDRw2O0�枩�TH/TdL4B&(qTi+$<49|zLYJ�%��
�5"g�]H�b�Ř!�&"��[36#&|M�H�S7At|v�[/� T6CĊ�1�gGi>'_@1~Z��H-*�'�vqY�@��y+��LL�݂`Aa~N�!�Rjs# h_i48`�����F�"O�g8=���ܕŭ�x��dj��,yǥ}-AGjp ��P�:ςmx�s!aZ;<�Q6IB�u�XRFB(6s�
��מO릧u;1u_F`��p���3�W�.Ԕj�> MZ��
E>g�ٕa)豢��_coSI�wV7+e{�=M蕴B��^��Ȉp~�/Y���_�Ч�6#&D�spмHκ7Inm{;\;+rҾq'lkEQvI{sվ\s
�R6/M&E`,�e�je)3C9�-j6�W#\]dqx�ixɎ(ah,.6qLO|ӿ@)Qe;ʋ
QN}g3�s�=VԊkm9�
g5>;ٙKOKN�#C)^2%h7Q`1D�*'M&7�b�QhIk&5+ۼ�v(�2?A�(Y_~�NmfwQ__���P~�sA��߯/?�VieC:�CL*�^Q�?/���ak\f%%̂�̠%2>e��y y(W�_}��P~Q�(GF%_f^e�U\]e_��O7CtAt35u�\��dO�e�{��
[_�}�}�Y߇�>�>d�oʁo3�ڿh�6s$eCP̐5.N�pN2˹I�+/ޯu"[~|^P�`26UJ`
P�z!�J1
�4c֭dKb(�p
E���Уc�/˘E͛YȌ�N�E5//��{_۱�B��
�R1��1@e^*q0*z6d%Q<83`��>&�\ʠaC�ao/XbKZ;�c`��\;y�=2�gy߳y>}v$<}r �1-�XhkоxA�I4�[HN,'c@诿J`Xkt JV7B����3Ff���rw^f$�W"r3�Sw�pa`O�*}�q���Aflk8ӕc�XS1wUWw�-;�'/Հ�&�_L'$e:X3!?glITÓȘ����b0OF>ಓH_�`.-3��/DBlv����Kߞ1�={d .���l> a"q0q?K+_{l�x Qh/I'�kQ��
�`8wO�
챧�4L6 郧rS�+.Ġ/2>g'4WB&*�Up6�n:8Yzt<�&р����ė[VX#e� �\3S�FӹƋ
g�=U7.,�?h�Ќa)x�<�AR(�~Q�^xjA߭e�oLDπj���UMf@gQl)VxRWdRq1^R�s]q74{4OHm{X�|@ăx!$K�/<�>,˞2GdY�z�,XoOT�*L[�
|�iK:AM6�_7sԶeEQ&PL��+3��Z;@B���!#R.ܐO�ߦ "?�`A�]e�D$ug�
�Eϩf���C��>X�읙f�c.Mc(ŬBCd��=�)O{bQ%�76x��}�҄��O1S�u .Ы�v�l>cx Lw�/�C2z
l|$_Oxƪ~Saxr=&���gsx���m-I�S`i�oA�s^nT "+1��<&�mEߟ�2"�L�-� �ԢLSg(\*],1Ał?�vLwSM�lZ�t�ȉ(�l}�j��f�)+ot%(�5x2{n�ΆOV�ek[$�v/-�'�yvJ^�S.u�7tleb�@�J�� �D7#D*M|�X^c �0У,*059ss::hՆG���X�xЬ;�[)�qy6` <Щ0DM.vj]�nJQa#®54-���v�щ���߉�n^sQaW_[z0�XjPtP�9˓wZ��0��
��9LMhc{pfi�#fS�SG�3��τ �ix�v�4<1TF�_E@�G7dyUĔ�f�ٵ\RKnr�m�mSk
Q�}�˦bN܌aBBb�r��=hL%g�%�s^��|�,/�A-r*r*]x�D4�Nb�biS<�\B�/1,#�N�|Mt1^��ʳU_:k^v.>�Jzfk�`�g^S;O�(QF2y{?ZQ|ڽ`ghi�/=i{{}Ւ�Ҝ%!toZ4��!ջnZɊxYa(X��E�Ch�⍿#01�45]Ө+jE&I#;ov[�b$-�U.aT+nu� o]��F'e1T�>\J�BS+$�WY/WfTN�ƇZJ܄;6�6BKFslx�6�1��i&��
|
Network Security & Hardware 
