[52152] in North American Network Operators' Group
Re: How do you stop outgoing spam?
daemon@ATHENA.MIT.EDU (Scott Francis)
Tue Sep 17 13:54:51 2002
Date: Tue, 17 Sep 2002 10:52:18 -0700
From: Scott Francis <darkuncle@darkuncle.net>
To: Marshall Eubanks <tme@multicasttech.com>
Cc: nanog@merit.edu
Mail-Followup-To: Scott Francis <darkuncle@darkuncle.net>,
Marshall Eubanks <tme@multicasttech.com>, nanog@merit.edu
In-Reply-To: <web-1433886@multicasttech.com>
Errors-To: owner-nanog-outgoing@merit.edu
--yklP1rR72f9kjNtc
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Tue, Sep 10, 2002 at 08:10:46AM -0400, Marshall Eubanks
<tme@multicasttech.com> replied to Iljitsch van Beijnum <iljitsch@muada.com=
>:
[snip]
> > > When I go to Internet cafe's (I like Global Gossip), I connect my Ti-=
book
> > > to the local ethernet if at all possible (that's why I like Global Go=
ssip)
> > > and use high bit rates (i.e., file transfers) in both direction.
> >=20
> > Would the uploads be HTTP? That's the only thing I'd want to limit to a
> > few kbps. (Well, and outgoing SMTP to 0 kbps.)
>=20
> When I am at a cafe I use a web based encrypted email program, and
> if I email a large attachment (say a pdf file), then it goes http outboun=
d.
> The other major outbound bandwidth use is scp (very rarely, ftp or ssh).
>=20
> I do not really see what the touch typing limit is relevant to - whose pr=
imary
> Internet use is telnet /ssh now-a-days ?
I'd estimate that my time is divided between SSH sessions (maybe 75%) and
everything else ( mostly web browsing instant messaging (more text)), with
music streaming generally going on in the background fairly constantly.
YMMV - but text is pretty far from dead. :) On the other hand, I'm pretty f=
ar
removed from (not to mention vastly outnumbered by) your average
AOL-subscribing casual Net surfer.
The OP was asking for solutions to blocking outbound spam. The most apparent
(to me, anyway) is to rate-limit SMTP (or deny SMTP to dialup/dynamic
addresses altogether; I have yet to see a convincing argument for allowing
dialup users to run SMTP servers at this point in time). While that may take
care of relay raping, there's still the HTTP problem to contend with
(although I bet it's considerably less of a problem).
I would imagine a traffic analysis of a spammer using HTTP and casual surfi=
ng
(or even large file transfers) would reveal some pretty significant
differences that could be used to implement some shaping or rate-limiting.
> Again, when I go to a cafe in another city, I am generally there to
> get some work done, and frequently have a bunch of previously prepared
> files to send. I may not be a typical user...
Me neither. :) Hopefully this discussion is proving useful to the OP.
--=20
-=3D Scott Francis || darkuncle (at) darkuncle (dot) net =3D-
GPG key CB33CCA7 has been revoked; I am now 5537F527
illum oportet crescere me autem minui
--yklP1rR72f9kjNtc
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (FreeBSD)
iD8DBQE9h2vSWaB7jFU39ScRAoVdAJkBmcnfCNLaqYQhz0WAeFdCAJxbTACcCn8S
FO4ZC/n5V9iUJzINZdUXbZU=
=o4IU
-----END PGP SIGNATURE-----
--yklP1rR72f9kjNtc--
