[91723] in North American Network Operators' Group
Re: ISP wants to stop outgoing web based spam
daemon@ATHENA.MIT.EDU (Peter Corlett)
Thu Aug 10 14:32:25 2006
In-Reply-To: <Pine.LNX.4.64.0608102107490.7835@efes.iucc.ac.il>
From: Peter Corlett <abuse@cabal.org.uk>
Date: Thu, 10 Aug 2006 19:31:09 +0100
To: NANOG <nanog@merit.edu>
X-SA-Exim-Rcpt-To: nanog@merit.edu, abuse@cabal.org.uk
X-SA-Exim-Mail-From: abuse@cabal.org.uk
Errors-To: owner-nanog@merit.edu
On 10 Aug 2006, at 19:12, Hank Nussbacher wrote:
> I'll answer on-list since this answer can benefit others. The
> primary reason that the ISP wants to block outbound webmail spam is
> because the 100s of BLs on the Internet end up blocking large
> segments of the IP space due to spam reporting by end users. The
> spammer can end up "burning" quite a few IPs before the feedback
> loop of user->spam report->BL->ISP->block is completed. Therefore
> the ISP wants to be proactive and shut off the spam before it even
> starts. Even if it means losing revenue.
This seems to imply that you're using dynamic addressing.
The rather obvious solution would seem to be that you provide static
addressing. It also makes it rather easier to identify the spammer
when the complaints come in since you won't need to grovel through
your RADIUS logs.
