TechTheft DNSBL

We are watching you...
TTBL:
  Rant
  Policies
  FAQ
  Latest 25

Books:
  Spam Wars
  Building a DNSBL

Projects:
  Global WHOIS
  DNSBL Scan
  TTBL
  RBL Registry

General:
  NANAE Advice
  Network Tools
  Humour

Login



Forgot Password?

Hi-Technology Theft. That is what it breaks down to at the core. Viral Attacks, Spam emails, DDoS, IP hijacking, PC hijacking.

It has been going on too long and there IS a solution. Groups of administrators and hobbyists have been working since the first to prevent these malicous attacks from going anywhere, and succeeding.
Despite the amount of garbage you DO see today, 90% of all email is identified and discarded as Spam before it ever reaches you.
Without the ongoing hard work of those groups it would all be in your inbox waiting to be read.

This site has been constructed to provide a collaboration point for anyone wishing to help in this war against technology abuse.

MAPS (Mail Abuse Prevention System) formed the first antispam DNSBL of machines to be blocked and ignored. It was and still is run in a completely open fashion. This has proven to be their downfall as spammers and marketing associations pulled out their chequebooks and started sueing.
When MAPS service was crushed under legal restraints a russian group built SPEWS (Spam Prevention and Early Warning System) to anonymously block sources of spam email, bad robot crawlers, and extending into their supporting networks. SPEWS policy is to block the source on detection, then after a while if the source is not removed, extend the block into the surrounding network until the source is killed. Recently, since July 2003 when spammers started collaborating with virus writers it has been evident that the SPEWS system is both too slow and too lenient to maintain its previously highly effective methods.
It has now become prudent to cut off from the internet all machines allowing email to be relayed or proxied anonymousely, identified as a viral or trojan host, hacting as support structure for spammer machines (DNS, mail, web host), and in some cases registrar for spammer resources. There are large networks of trojan zombies and hijacked IPs floating around the internet committing DDoS against the internet as a whole and occasionally combining against individual providers. There are large known deliberate corporate sponsors of these attacks, and others unwitting slaves, bound by their own ignorance and lack of regard for the world as a whole. There are registrars providing false registrations and anonymous access to the internet for unrepentant sources of constant abuse.

The solution is simple, cut the offence out at the source. We are calling an Internet Death Penalty against all sources and supporters of this abuse.

It is no longer sufficient to filter and delete just the action of abuse.

It must be prevented, by validating all client registrations and checking against known sources of abuse ROKSO list the known spam groups kicked off at least three providers for these offences.

It must be stopped, by blocking all attempts at attack at the start of communication. Deletion filters get it wrong and hide the fact or pass on the abuse. DNSBL blocks tell the legitimate senders they have a problem and to try again another way.

Think this is too harsh a line?
Ask your ISP to NOT protect your inbox, and be prepared to swim for your life. As I write this Postini reports:
  • 1 in 66 messages is a virus
  • 10 in 12 messages delivered is a spam
  • 1 in 2 delivery attempts is an attack !!
  • 100,000,000 spam blocked today (and its only noon, the spam rush-hour has yet to come)
AOL said they block 10 billion per day a few months back, and its only getting bigger.
Each email received is paid for out of YOUR connection fee. You only get 1/2 of what you pay for, the abusers steal the rest of the bandwidth to send you an attack.
Still think its okay to wait?

"But I only get about 10 spams per day! Its not much, I can just delete them."
Thats 10 attacks today that YOU could have helped prevent. Each spam run contains 30 to 100 million messages. The earlier they are reported the faster its stopped.

"So where cam I report them if its such a big deal?"
SpamCop have a great reporting system. Signup for a FREE reporting account and send your spam as attachements. They do all the technical lookups. You simply click on report or cancel later.