Beta

Slashdot: News for Nerds

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Maintaining a Publicly Available Blacklist - Mechanisms and Principles

samzenpus posted about a year ago | from the it's-not-me-it's-you dept.

Spam 89

badger.foo writes "When you publicly assert that somebody sent spam, you need to ensure that your data is accurate. Your process needs to be simple and verifiable, and to compensate for any errors, you want your process to be transparent to the public with clear points of contact and line of responsibility. Here are some pointers from the operator of the bsdly.net greytrap-based blacklist."

cancel ×

89 comments

GNAA First Post (-1)

serkit (2358056) | about a year ago | (#43447465)

Are you gay? Are you a nigger? If you answered "yes" to both of these questions, then GNAA might be exactly what you're looking for! http://gnaa.eu/ [gnaa.eu]

Re:GNAA First Post (-1, Offtopic)

1s44c (552956) | about a year ago | (#43447567)

The GNAA are back? I thought they gave up years ago.

Re:GNAA First Post (0, Flamebait)

Anonymous Coward | about a year ago | (#43447583)

GNAA are old school. I think I prefer the new school. Homosexual, Non-White ('cause white folk suck!), Association of the fucking Universe. You can't join though, that shirt really doesn't go with those shoes.

Re:GNAA First Post (-1, Offtopic)

ShanghaiBill (739463) | about a year ago | (#43447671)

The GNAA are back? I thought they gave up years ago.

Stop replying to trolls!!!. They will be almost immediately modded down from zero to -1, consuming one mod point. By replying to them, you make them more visible, and now it takes two extra mod points to get you off the page as well. Learn some netiquette.

Re:GNAA First Post (-1)

Anonymous Coward | about a year ago | (#43447729)

...but your reply is somehow different?! You posted with your karma bonus, dumbass. Now it will take 3 extra mod points to get you off the page, which is more than the 2 wasted mod points you were complaining about in the first place. Are you trolling or just having a dumb day?

Re:GNAA First Post (-1)

Anonymous Coward | about a year ago | (#43447683)

I figured they'd have finally gotten laid and gave up the puerile internet stupidity.

Blacklists are evilu even for spam filtering (0, Insightful)

Anonymous Coward | about a year ago | (#43447473)

You end up losing mail and who is it for someone else to filter what I can and can't see. There is a delete button for a reason. Use it.

Re:Blacklists are evilu even for spam filtering (-1, Flamebait)

Anonymous Coward | about a year ago | (#43447491)

Yeah, I agree - you want to be sitting there manually reading and potentially deleting millions of emails per day on behalf of your customers. You dumb fuck.

Re:Blacklists are evilu even for spam filtering (-1)

Anonymous Coward | about a year ago | (#43447561)

You dumb fuck.

You're a DOUCHE BAG with a smelly cunt, you fucking twat.

Re:Blacklists are evilu even for spam filtering (1)

Celeritas 5k (1587217) | about a year ago | (#43447585)

AC is yelling profanities at himself again...

Re:Blacklists are evilu even for spam filtering (2)

PNutts (199112) | about a year ago | (#43447667)

The nice thing about yelling at yourself is you can be pretty sure someone is listening, even if they don't agree with you.

Re:Blacklists are evilu even for spam filtering (0)

Anonymous Coward | about a year ago | (#43447663)

94% of e-mail and connections are stopped at our gateway. "By hand" doesn't cut it. Our settings are conservative so we tolerate a little SPAM so the legit mail gets through. However, the what little spam gets through is quarantined and a SPAM report is sent to each user nightly. Obviously we use much more than blacklists and our e-mail hygiene is a service provided by our vendor.

Re:Blacklists are evilu even for spam filtering (0)

Anonymous Coward | about a year ago | (#43448285)

94% of e-mail and connections are stopped at our gateway.

Really? How do you determine the percentage? Do you just queue up 100 messages, and then randomly discard 94?

Not the service providers job if you ask me (0)

Anonymous Coward | about a year ago | (#43448289)

I'm OK with opt-in filters for users although I agree that forced filtering and/or filtering in general is bad. Despite that it stops a lot of spam it's not OK to censor users. If the spam filtering people weren't a bunch of nut jobs and system administrators actually made some effort to solve the problem these issues could be fixed. We need a working group to come up with a means of authentication and simplify / automation of it so systems administrators and end users don't need to know the nitty gritty details. Spam then could be eliminated altogether for all intensive purposes. There would be a lot of upset parties (legit advertisers, businesses, etc) but so what. You don't even have to eliminate anonymous users or mailing lists with anonymous authors/users. You just need a little bit of authentication and standardization of opt-ins.

Re:Blacklists are evilu even for spam filtering (1)

mijxyphoid (1872142) | about a year ago | (#43447979)

You end up losing mail and who is it for someone else to filter what I can and can't see. There is a delete button for a reason. Use it.

Says the Anonymous Coward.... (Whom probably has an agenda, and is too afraid to post whom he is)....

Spam lists are not just for email. If you are forum admin (or a slashdot admin), spam posts are the bane of many a website.
A good, verifyable, public, and accountable spam list means admins of such sites can spend more time on being productive, rather than wasting time deleting hundreds and hundreds of useless posts and users.

Considering this is slashdot, and the majority of people here prefer technology to work for our benefit, a good spam blacklist makes a hell of a lot of sense !

Re:Blacklists are evilu even for spam filtering (1)

Anonymous Coward | about a year ago | (#43448315)

No it doesn't. System administrators shouldn't be filtering the mail. It's not up to you do hand-choose what mail goes into your customers mail boxes.

Some people like myself always post AC. You don't have to have an agenda any more than anybody else. You clearly have an agenda and aren't posting AC. Your probably a system administrator who feels overwhelmed by financial constraints, work, bitching from end users, etc. Spam filtering makes you more productive only because there is no better system in place. Nobody said there can be a better system designed and implemented to eliminate spam. Its just the filtering part that is bad. How anybody can claim it isn't is beyond me. Filtering sucks- we shouldn't have to filter in the first place and if things were designed today these problems would be taken into consideration.

There should simply be a better system for authenticating anonymous users. We need a better system for authenticating anonymous users of forum posts and email users. That doesn't mean deanonymizing though. You can have an authentication system which makes it easy to eliminate mail from spamers. There is already such systems in place (I'm a new anonymous user, but joe trusts me, and saly trusts joe, so i can send saly an email, etc).

Re:Blacklists are evilu even for spam filtering (2, Funny)

Narcocide (102829) | about a year ago | (#43448729)

Your post advocates a

(X) technical ( ) legislative ( ) market-based ( ) vigilante

approach to fighting spam. Your idea will not work. Here is why it won't work. (One or more of the following may apply to your particular idea, and it may have other flaws which used to vary from state to state before a bad federal law was passed.)

(X) Spammers can easily use it to harvest email addresses
(X) Mailing lists and other legitimate email uses would be affected
( ) No one will be able to find the guy or collect the money
(X) It is defenseless against brute force attacks
( ) It will stop spam for two weeks and then we'll be stuck with it
(X) Users of email will not put up with it
(X) Microsoft will not put up with it
( ) The police will not put up with it
(X) Requires too much cooperation from spammers
(X) Requires immediate total cooperation from everybody at once
(X) Many email users cannot afford to lose business or alienate potential employers
( ) Spammers don't care about invalid addresses in their lists
(X) Anyone could anonymously destroy anyone else's career or business

Specifically, your plan fails to account for

( ) Laws expressly prohibiting it
(X) Lack of centrally controlling authority for email
(X) Open relays in foreign countries
( ) Ease of searching tiny alphanumeric address space of all email addresses
(X) Asshats
(X) Jurisdictional problems
( ) Unpopularity of weird new taxes
( ) Public reluctance to accept weird new forms of money
( ) Huge existing software investment in SMTP
(X) Susceptibility of protocols other than SMTP to attack
(X) Willingness of users to install OS patches received by email
(X) Armies of worm riddled broadband-connected Windows boxes
(X) Eternal arms race involved in all filtering approaches
(X) Extreme profitability of spam
(X) Joe jobs and/or identity theft
(X) Technically illiterate politicians
(X) Extreme stupidity on the part of people who do business with spammers
(X) Dishonesty on the part of spammers themselves
(X) Bandwidth costs that are unaffected by client filtering
(X) Outlook

and the following philosophical objections may also apply:

(X) Ideas similar to yours are easy to come up with, yet none have ever
been shown practical
( ) Any scheme based on opt-out is unacceptable
( ) SMTP headers should not be the subject of legislation
( ) Blacklists suck
( ) Whitelists suck
( ) We should be able to talk about Viagra without being censored
( ) Countermeasures should not involve wire fraud or credit card fraud
( ) Countermeasures should not involve sabotage of public networks
( ) Countermeasures must work if phased in gradually
( ) Sending email should be free
( ) Why should we have to trust you and your servers?
( ) Incompatiblity with open source or open source licenses
(X) Feel-good measures do nothing to solve the problem
( ) Temporary/one-time email addresses are cumbersome
( ) I don't want the government reading my email
( ) Killing them that way is not slow and painful enough

Furthermore, this is what I think about you:

(X) Sorry dude, but I don't think it would work.
( ) This is a stupid idea, and you're a stupid person for suggesting it.
( ) Nice try, assh0le! I'm going to find out where you live and burn your
house down!

Re:Blacklists are evilu even for spam filtering (1)

mwvdlee (775178) | about a year ago | (#43450879)

At least one thing positive:

(X) Microsoft will not put up with it

Isn't all that relevant anymore.
Let's update it;

(X) Google will not put up with it

Re:Blacklists are evilu even for spam filtering (0)

tlambert (566799) | about a year ago | (#43448041)

You end up losing mail and who is it for someone else to filter what I can and can't see. There is a delete button for a reason. Use it.

Unless you are actually concerned that other people won't see your SPAM, then your concern that you won't see someone else's email because it was sent from a SPAMmy provider is adequately addressed by your choice of ISP.

So pick an ISP who doesn't filter; I'd suggest Network Solutions, since they are now charging extra for SPAM filtering because it's a valuable commodity. Don't pay the extra, and you can hit delete all you want.

Re:Blacklists are evilu even for spam filtering (0)

rubycodez (864176) | about a year ago | (#43448761)

blacklists are awesome and who gives a shit about the occasional lost mail every now and then? neurotic obsessed people, that's who.

Re:Blacklists are evilu even for spam filtering (1)

mwvdlee (775178) | about a year ago | (#43450897)

blacklists are awesome and who gives a shit about the occasional lost mail every now and then? neurotic obsessed people, that's who.

Businesses, for one. You wouldn't like to lose a sale because you didn't get the request for a price offer, for instance.
Not all email is snail-social-network garbage; some people have useful things to say.

Though in reality, using a set of blacklists instead of a single one pretty much nullifies any mistakes in the individual lists.

Re:Blacklists are evilu even for spam filtering (1)

mwvdlee (775178) | about a year ago | (#43450875)

I used to receive some 20K mails a day.
When unfiltered, the inflow is faster than my ability to manually delete mails.

Greylist instead (2)

Gothmolly (148874) | about a year ago | (#43447531)

Use greylisting as a first defense - easily configurable in postfix, and it reduces the amount of spam dramatically. This relies on the behavior of the sender, rather than someone else's opinion of them.

Re:Greylist instead (1)

Anonymous Coward | about a year ago | (#43447553)

Use greylisting as a first defense - easily configurable in postfix, and it reduces the amount of spam dramatically. This relies on the behavior of the sender, rather than someone else's opinion of them.

Problem is, reducing 90% of spam isn't good enough, you need to remove 99%+. Even if just a handful get through, it is and underestimated productivity killer, and.. and increasing amount of spam also contain malware. I have been on the wrong end of a blacklist because we had an open relay, so know how frustrating it can be. We are currently using a service called Norman SecureTide that do block 99%+. Not sure which blacklists they are using, if any (might only be scanning and their own reputation) but damn it is effective.

Re:Greylist instead (5, Insightful)

1s44c (552956) | about a year ago | (#43447577)

If you ran an open relay you were on the right end of a blacklisting.

Re:Greylist instead (1)

PNutts (199112) | about a year ago | (#43447673)

If you ran an open relay you were on the right end of a blacklisting.

I wish I had mod points for you.

Re:Greylist instead (2)

girlintraining (1395911) | about a year ago | (#43447763)

If you ran an open relay you were on the right end of a blacklisting.

Right, because although we're after the content of these e-mails, guilt by association is a perfectly valid technique for eliminating spam. Just like bombing a city to get rid of the army in it is totally okay... nevermind the civilians.

Re:Greylist instead (-1)

Anonymous Coward | about a year ago | (#43448069)

The Straw man! She burns!

Re:Greylist instead (1)

Anonymous Coward | about a year ago | (#43448079)

If you ran an open relay you were on the right end of a blacklisting.

Right, because although we're after the content of these e-mails, guilt by association is a perfectly valid technique for eliminating spam. Just like bombing a city to get rid of the army in it is totally okay... nevermind the civilians.

Your misunderstand (probably intentionally, this is Slashdot after all).

Let's say Adam makes a list of gun stores that verifiably have provided guns without background checks, in a state where such checks are voluntary, to people who use them to commit crimes.

Bob is placed on the list. Bob complains: "I should not be on the list because I did not know the guns I provided would be used for crimes".

Adam responds appropriately: "But that's not what I am making a list of. It doesn't matter whether you knew. To get on the list, you simply have to choose not to provide background checks and then be so unlucky that someone chooses to use it for crime. If you don't want to be on my list, then stop fulfilling my criteria.".

Re:Greylist instead (1)

cstacy (534252) | about a year ago | (#43451089)

Your misunderstand (probably intentionally, this is Slashdot after all).

Let's say Adam makes a list of gun stores that verifiably have provided guns without background checks, in a state where such checks are voluntary, to people who use them to commit crimes.

Just so you know, there are no stores (in the U.S.) where guns can be purchased without a background check; it's not voluntary..

Re:Greylist instead (1)

Luckyo (1726890) | about a year ago | (#43448093)

Not sure if serious. I don't think even the most hardcore spammers who rage on spamhaus ever tried to compare blacklisting open relays to mass murder.

Terrorism, yes. Mass murder, not even they have sank that low. Congratulations, you sank lower then spammers!

Re:Greylist instead (0)

Anonymous Coward | about a year ago | (#43449219)

This is the worst analogy I've ever seen, congratulations.

Re:Greylist instead (1, Insightful)

KiloByte (825081) | about a year ago | (#43447599)

... and all mails you get will be delayed by an hour or more, pretty unacceptable when you get an urgent complaint that something is down. And even in not work-related matters, making people wait for no reason is rude.

There are many spam fighting techniques without such flaws. And other than gmail, server admins are generally smart enough to handle failures properly (ie, with instant notification that something went wrong).

Re:Greylist instead (3, Insightful)

ShanghaiBill (739463) | about a year ago | (#43447689)

... and all mails you get will be delayed by an hour or more, pretty unacceptable when you get an urgent complaint that something is down. And even in not work-related matters, making people wait for no reason is rude.

Simple solution: Use a whitelist first. If the email is from some on your family/friend/co-worker/customer list, or someone you have corresponded with in the past, then you see it immediately. Anyone else can wait.

wrong tech. (3, Insightful)

buss_error (142273) | about a year ago | (#43448107)

Better solution: Stop trying to force email to be a reliable and concurrent source of information. It has never been reliable nor has it ever been concurrent protocol. Check the default settings for sending email - try every hour for up to 5 days before giving up. Wait one day before sending a trouble report.

That email now generally DOES deliver results in almost real time is no excuse to think it will ALWAYS deliver in real time. If your communication either critical and/or time sensitive, then email is the wrong tool to use.

Re:wrong tech. (0)

Anonymous Coward | about a year ago | (#43450777)

As an admin I have had users actually YELL at me because an email they sent or were expecting arrived "late" and that it was my responsibility that they lost the account/etc. I ended up preparing documentation to explain to them and their bosses how email works; and that how in many situations (other than an internal email), things like ant spam measures, mail exchangers, network connectivity, mail server delays, how it could take up to several days for an email to arrive in some situations if it ever does.

Their reasoning is always "but I tested by sending to/from my @yahoo.com / @gmail.com /etc account ant I got it immediately"... which brings me back to my documentation of why that actually reinforces my point.

Re:wrong tech. (0)

Anonymous Coward | about a year ago | (#43459451)

Could you publish that somewhere? Would be helpful for the rest of us in the same situations who just aren't able to explain it to these people.

Re:wrong tech. (1)

DamonHD (794830) | about a year ago | (#43450793)

I don't think that "concurrent" means what you think it does.

Rgds

Damon

Re:Greylist instead (4, Insightful)

jhoegl (638955) | about a year ago | (#43447707)

Email is not a priority notice system.
If it is so urgent, pick up the phone.

Re:Greylist instead (1)

KiloByte (825081) | about a year ago | (#43448255)

A phone doesn't queue, can't handle you being in the loo, and so on. And for dealing with live people, it's usually "the program left a crash dump here and there, just mail it to me" -- ie, the mail is in addition to the phone call. And at that point, the live human already knows you are aware, so you're adding an hour to your response time for no gain (greylisting's 90% rejected spam doesn't add up with most other techniques).

Re:Greylist instead (1)

thegarbz (1787294) | about a year ago | (#43449079)

A phone doesn't queue, can't handle you being in the loo, and so on.

Send a txt message? Leave a voice mail? Seriously there are many ways to contact people for something urgent and email is not necessarily considered one of them.

Re:Greylist instead (1)

KiloByte (825081) | about a year ago | (#43449429)

A text message can't include any relevant data, a voice mail takes ages to listen to. Email suffers no such flaws, is reliable and instanteous (the last part, in absence of greylisting).

No, it's reliable, not instant. Instant Messaging (1)

raymorris (2726007) | about a year ago | (#43449613)

If email were supposed to be instant, nobody would have invented Instant Messaging. Email is designed to be reliable instead of instant. That's exactly why instant messaging was invented 15 years after email was, because email was not, is not, and is not designed to be instant. It's designed to be efficient and reliable. Read the protocols some time. Have a look at how send mail works. Queues to send, queues to relay, queues to receive.

Re:Greylist instead (0)

Anonymous Coward | about a year ago | (#43450081)

Send a txt message?

Now you're assuming the recipient has a mobile phone and can receive SMS. Perhaps it also costs him to receive them.

Re:Greylist instead (1)

SpooForBrains (771537) | about a year ago | (#43450631)

SMS messaging is not and never has been a guaranteed delivery system. I have been told (but cannot find a source right now) that networks can and do silently drop text messages.

Like it nor not, Email may not initially have been an instantaneous guaranteed messaging service but that is what is expected of it now.

Re:Greylist instead (1)

mwvdlee (775178) | about a year ago | (#43450941)

Like it nor not, Email may not initially have been an instantaneous guaranteed messaging service but that is what is expected of it now.

Then expectations need to be managed, because email technically isn't capable of doing what these people expect.
Just because some people don't understand email doesn't mean email will magically change to be what they expect it to be.
If you want instant messaging, use something like... I dunno... instant messaging.

Re:Greylist instead (3, Informative)

nabsltd (1313397) | about a year ago | (#43447811)

and all mails you get will be delayed by an hour or more, pretty unacceptable when you get an urgent complaint that something is down.

In a correctly configured greylist, only the first e-mail ever received from a particular IP address will be delayed. Once you know an IP addresss follows the RFC and retries, then you know that even if they do send you spam, delaying it won't change that. In order to allow for the actual machine behind an IP address changing, instead of a permanent whitelist, you pick a timeout that is long enough but not too long. I use 40 days, which allows a once-monthly mailing list to not be delayed (since the timeout is reset each time you receive an e-mail from an IP). You also pre-load the database with whitelists for Google, Amazon, Yahoo, etc.

I also set just a 4 minute delay, which means that the one e-mail is rarely even delayed by 10 minutes. I could probably get by with as short as one minute, since that would still handle the spambots that try all MX records but never try again.

Last, since I already have a database, it makes it really easy to build my own "IP address reputation" based on the incoming e-mail, which allows me to do things like temporarily blacklist an IP that has sent a lot of spam recently, etc.

Re:Greylist instead (2)

dskoll (99328) | about a year ago | (#43447935)

and all mails you get will be delayed by an hour or more

Only if you have a broken and/or stupid greylist implementation. A correct implementation will refrain (for a few weeks) from greylisting an IP address once it notices that it does retry. That makes the initial delays quite tolerable.

Re:Greylist instead (1)

KiloByte (825081) | about a year ago | (#43448203)

So you get breakage notifications more often than once per few weeks, for every source you have? Impressive.

Re:Greylist instead (1)

dskoll (99328) | about a year ago | (#43451317)

I'm not sure what you mean by "breakage notifications"

If you're referring to automated alerts and the like, obviously you don't greylist those because you know (or should know) either the originating IP address, the envelope sender, or both.

Re:Greylist instead (1)

mrmeval (662166) | about a year ago | (#43449061)

Use a whitelist or better make the submitter have cryptographic credentials that your system can validate before the message gets through. If that fails have them pick up a phone.

Re:Greylist instead (1)

KiloByte (825081) | about a year ago | (#43449439)

So you say I should take elaborate steps just to work around damage done by greylisting? So what about just not installing the damn thing in the first place?

Knobs! (2)

khasim (1285) | about a year ago | (#43447797)

First off, because spam is so bad (80% of messages by some counts) just about ANYTHING that ANYONE does will reduce their spam (ignoring false positives).

Secondly, READ YOUR LOGS!

There are broad categories of how different groups use email (and their email infrastructure). So what works great for one group sucks for a different group.

So I recommend something like SpamAssassin where you can tweak the settings to what works for your specific circumstances (and the people/groups that you send/receive email with).

Greylisting is great, except when you try to greylist gmail servers. So know how the tools work and think about situations where they would fail and then adjust the knobs to deal with those potential failures.

And if you don't accept EVERY email sent to you (I don't) then make sure that you customize the rejection notice so that the SENDER can contact you if his server includes the rejection message (which most of them do). I include my phone number.

In my opinion, the more knobs that you can adjust the better it is.

Re:Knobs! (1)

GumphMaster (772693) | about a year ago | (#43447967)

Greylisting is great, except when you try to greylist gmail servers.

What is special about gmail servers that would stop greylisting? Do they really not retry mail transmission?

Re:Knobs! (2)

khasim (1285) | about a year ago | (#43448147)

What is special about gmail servers that would stop greylisting? Do they really not retry mail transmission?

The message gets bounced to a different server that tries delivering it. Since it is a different IP address it also gets greylisted.

So it bounces the message to a different server (probably not the first server) and tries again. And gets a different server greylisted. And so on and on and on.

After X failures the gmail system gives up and returns the message as undeliverable.

A lot of the big sites (hotmail, yahoo, etc) do things like that. So I exclude them from the greylisting option based upon their reverse DNS lookup. Which works most of the time.

Re:Knobs! (1)

jaseuk (217780) | about a year ago | (#43452299)

Most sane grey-listing implementations will at least assume that a resend from the same class C network is OK. This tends to work around these problems.

Jason.

No Longer True (0)

Anonymous Coward | about a year ago | (#43451133)

Use greylisting as a first defense - easily configurable in postfix, and it reduces the amount of spam dramatically. This relies on the behavior of the sender, rather than someone else's opinion of them.

Greylisting use to be HIGHLY effective against botnet spammers, the majority. However, as always, the spammers saw the defense mechanism and upped their game. Greylisting is now largely ineffective against spam. Most spammers now retry delivery and Spamassassin is again grinding under the load.

What now?

Using a blacklist ... (5, Interesting)

magic maverick (2615475) | about a year ago | (#43447565)

And while we're at it, some hints on using a public blacklist with regards spam. The correct way is not to trust the blacklist 100%. Instead, you use it as one part of a comprehensive scheme (part of this complete breakfast). So, you may use a dictionary, and for every word in the dictionary you add 10 points (viagra, v1agra, v14gr4, etc.). You can use SPF [wikipedia.org] and if it doesn't match, then that's worth 50 points, and if it's not there, maybe 20 points. And if the domain or IP address is on a blacklist, maybe 40 points. You assign the points as you like. Then, if you hit 100 points, you mark the email as "probably spam".

But you never reject or mark an email spam just because it's on some blacklist. That's just stupid. Now I'm off to RTFA.

----

OK if you have your own blacklist (perhaps a list of domains or IP addresses that have sent email to a catch-all, or that have fallen into a honeytrap), then you do what you want. But you probably should date entries and remove old ones (if they do not misbehave again), in case a legitimate user is now at that location.

Re:Using a blacklist ... (3, Insightful)

PNutts (199112) | about a year ago | (#43447693)

I don't disagree with your premise. I work in a health based organization and the SPAM and "dirty word" lexicons block legit e-mails. I've also found that for receiving e-mails SPF and most other common sense checks block too much legit mail. God forbid businesses configure their hosts / gateways correctly. And don't get me started on third party mailer services. It makes an impossible job more impossibler.

Re:Using a blacklist ... (1)

danomac (1032160) | about a year ago | (#43452639)

Ditto - and the interesting thing is that most of the time when something is wonky with the hosts/gateways it's almost always the government. Go figure.

mollom spam (2)

anubi (640541) | about a year ago | (#43447991)

Another board I frequent, using the Drupal blogging software, is currently being overwhelmed with spam.

Our beloved webmaster is experimenting with Mollum spam retarding software [mollom.com] .

This software does have its faults, as it is hindering the posting of links by some of our most informative posters. A blogsite's "good folk" need to be whitelisted so they can post links unhindered. More often than not, the most informative content of a post is a link.

Anyone else having a blogsite overrun with crap might want to look into this. I do not think its the ultimate solution, but its a start.

SpamAssassin just called... (1)

John Bokma (834313) | about a year ago | (#43448215)

What you describe is SpamAssassin. The scores are learned by feeding a lot of ham and spam and finding the right balance. Of course you can (re)train the scoring with your own ham & spam, and add your own rules, etc.

Re:SpamAssassin just called... (1)

magic maverick (2615475) | about a year ago | (#43450301)

Yes. SpamAssassin is one way to do it. The main point is, it doesn't matter how you do it, just don't ever trust a public blacklist 100%, because you'll block legitimate users. Perhaps they are at an ISP that has hosted spammers. Perhaps they are currently in a country (like the USA, I personally block all email from the USA as most of it is spam*) that spams a lot. Perhaps they pissed off the blacklist maintainers. Whatever the reason is, a blacklist is not 100% reliable.

Also, use a whitelist. If an email is from someone in your address book, or that you have emailed, then it's probably not spam. You can deduct 80 points (or whatever). The trouble is, that I don't know how to hook up a whitelist like this to my hosting company's system...

* That's a joke. But considering people used to say the same about China and Russia...

Re:SpamAssassin just called... (1)

TheRaven64 (641858) | about a year ago | (#43451023)

The problem with SpamAssassin (at least, as I've seen it deployed), is that it only determines if something is spam after the MTA has sent an acknowledgement that it has been received. At this point, you have to deliver it to the user's spam folder, because if you don't then neither the sender nor the receiver knows if a non-spam mail is accidentally dropped because of a false-positive. The nice thing about DNSBLs is that you can reject the mail early, so the sender gets a reject message. They can then try to contact you by some other means (or try to work out why they have been blacklisted). This is one of the things SPF is meant to address. If you get a mail that has a valid SPF entry for the domain then it is a notice saying 'if you accept this but bounce it back later, then either it's spam or the bounce notification will get to the correct party'.

Should only Blacklist "worst of the worst" (-1)

Anonymous Coward | about a year ago | (#43447661)

A successful 'blacklist' is a very dangerous thing indeed, and will soon attract the attention of villains every bit as wicked as those placed on the list. The only way to prevent a 'blacklist' from being abused is to ensure the 'cut-off' position is set as high as possible. For spammers, this means only the worst offenders should be included to avoid the "burn the witch" phenomenon.

When a blacklist acts more like a vigilante "judge, jury and executioner" mechanism against disliked behaviour, it will do far more harm than good. Big, persistent spammers (including ordinary companies that attempt to exploit this method of 'promotion') should be on the list for sure. In the case of corporate entities that offend, and whose main business model is NOT spam, they should be rapidly removed from such list IF/WHEN they reform their behaviour.

Small time spammers, and small acts of abusing spamming should NEVER end up on the blacklist. This isn't the job or role of any trustworthy list. The list should only be seen as a final, desperate level of protection, not an act of 'law enforcement'.

By only fighting the mighty, evil spammers the list will maintain maximum support, and will also improve the legal landscape when these mighty spammers fight and lose in court. The purpose of such a list should actually be to encourage the 'enemy' to attempt a legal battle. On the other hand, a despicable, cowardly blacklist will take pride in mostly including those without the resources for fighting back.

Not realistically achievable (3, Insightful)

girlintraining (1395911) | about a year ago | (#43447709)

. Your process needs to be simple and verifiable,

The process can't be simple because spammers are endlessly creative with how they try to get past the filters. And if it was verifiable, that would mean published -- and once published, becomes useless. Spammers can simply test their latest creation against your filter, and now you effectively have given them a way to bypass your entire process, making it worthless.

and to compensate for any errors, you want your process to be transparent to the public

The administrative process can be transparent, but the technical process, as outlined above, cannot.

with clear points of contact and line of responsibility.

The problem here is; how do you tell the liars from the rest? Responsibility is fine, clear points of contact are fine, but what's the criterion for delineating between 'spam' and 'marketing'? How about between 'spam' and 'opt-in' that the user no longer wants? How about between... you get the idea. There is some grey here, and odds are good you're going to find someone doing something with a legitimate and ethical reason, that by all appearances... isn't. And then you're going to make a decision based on those appearances (because what else can you go on?) and then you're going to burn a bridge down.

These problems can't be solved with a handwave and a post on an internet forum.

Re:Not realistically achievable (0)

Anonymous Coward | about a year ago | (#43447975)

> but what's the criterion for delineating between 'spam' and 'marketing'? How about between 'spam' and 'opt-in' that the user no longer wants?

In the last few years, I have found that I've been getting TONS of other people's "opt-in" spam. I presume that some marketer somewhere forced them to provide an email address, so they put down a fake one which resembles their name (or they mistakenly provided mine instead of theirs), and I end up getting all this shit mail. There are at least 4 or 5 people doing this with my address.

My email address is basically J(lastname)@gmail
Josh (same last name)
Jessie (same last name)
Joyce (same last name)
Jen (same last name)

It started innocently enough, and I would opt-out of automated mail, or write back to personal mail and say they had the wrong address. But now I get 2 or 3 things a day for someone else, so I just delete them unread. I am waiting to be mistakenly sent nudie pics (I have gotten a few post-date emails).

Re:Not realistically achievable (0)

Anonymous Coward | about a year ago | (#43448461)

How about between 'spam' and 'opt-in' that the user no longer wants?

If the user has done a genuine confirmed opt-in, then it's not spam until they do an opt-out. Wanted once but no longer wants now is something that does need to be communicated to the sender.

Re:Not realistically achievable (1)

MeNeXT (200840) | about a year ago | (#43448993)

.... but what's the criterion for delineating between 'spam' and 'marketing'? How about between 'spam' and 'opt-in' that the user no longer wants?

SPAM is very clear any and all email that I did not subscribe to which is soliciting me. Now I subscribe to lists and once in a while marketing comes through some lists which I therefore unsubscribe. If it continues coming it is SPAM. Very clear to me.

block russia, china and india (2)

alen (225700) | about a year ago | (#43447741)

most of your spam problems will be solved by simply blocking all email from those countries except for your business partners

Agreed, 110% (unfortunately)... apk (0, Informative)

Anonymous Coward | about a year ago | (#43447983)

The reason I state this, is because I've been building up a successful blacklist (albeit NOT vs. "spam" or phishers only, but more vs. online threats in maliciously scripted sites &/or servers known to serve up malware etc.):

Yes, thus - I'd have to say, based on 15++ yrs. of experience doing it (based on reputable & reliable sites listed below) that yes, MOST of it comes from those nations (& that's why I said "unfortunately" in my subject-line - since I know their people are NOT "all bad", just that they have a lot of what you state going on).

I base this not only on "opinion" but HARD DATA too!

From a list I apply in custom hosts files of over 1,967,147 such bogus sites/servers that grows by almost 200 - 2,000 such sites each day, approximately (that *might* strike some of you as "fantastic", but it's real)... I get my data from the following sites:

http://hosts-file.net/?s=Download [hosts-file.net]
http://www.malwaredomainlist.com/hostslist/hosts.txt [malwaredomainlist.com]
http://www.malware.com.br/cgi/submit?action=list_hosts_win_0000 [malware.com.br]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
https://spyeyetracker.abuse.ch/monitor.php?filter=lastupdated [abuse.ch]
http://safeweb.norton.com/noscript/ [norton.com]
http://mirror1.malwaredomains.com/files/ [malwaredomains.com]
http://hostsfile.org/hosts.html [hostsfile.org]
http://www.malwareurl.com/ [malwareurl.com]
http://sysctl.org/cameleon/hosts [sysctl.org]
http://pgl.yoyo.org/as/serverlist.php?hostformat=hosts&showintro=1&mimetype=plaintext [yoyo.org]
http://www.safer-networking.org/dl/ [safer-networking.org]
http://amada.abuse.ch/palevotracker.php [abuse.ch]

AND, then I import, consolidate, sort, & deduplicate that data using this application I wrote to do so:

---

APK Hosts File Engine 5.0++ 32/64-bit:

http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74 [start64.com]

---

Why? Simple - it works, & on the SIMPLEST PRINCIPLE OF ALL: What you can't touch, can't hurt you... & I never was the type of person to just "sit around & take it" - I do something about it, IF possible. The above IS my possible, and it is possible & works (in combination with all I put into this security guide I authored from 1997-2007, here -> http://www.google.com/search?hl=en&output=search&sclient=psy-ab&q=%22How+to+SECURE+Windows+2000/XP%22&btnG=Submit&gbv=1&sei=PjNrUcDVGpSz4AOJuIHQDQ [google.com] that works on the BEST THING WE HAVE GOING: "Layered-Security"/"Defense-in-Depth"... & yes, it works! )

APK

P.S.=> Any questions?

... apk

Re:Agreed, 110% (unfortunately)... apk (0)

Anonymous Coward | about a year ago | (#43467509)

$10,000 CHALLENGE to Alexander Peter Kowalski

* POOR SHOWING TROLLS, & most especially IF that's the "best you've got" - apparently, it is... lol!

Hello, and THINK ABOUT YOUR BREATHING !! We have a Major Problem, HOST file is Cubic Opposites, 2 Major Corners & 2 Minor. NOT taught Evil DNS hijacking, which VOIDS computers. Seek Wisdom of MyCleanPC - or you die evil.

Your HOSTS file claimed to have created a single DNS resolver. I offer absolute proof that I have created 4 simultaneous DNS servers within a single rotation of .org TLD. You worship "Bill Gates", equating you to a "singularity bastard". Why do you worship a queer -1 Troll? Are you content as a singularity troll?

Evil HOSTS file Believers refuse to acknowledge 4 corner DNS resolving simultaneously around 4 quadrant created Internet - in only 1 root server, voiding the HOSTS file. You worship Microsoft impostor guised by educators as 1 god.

If you would acknowledge simple existing math proof that 4 harmonic Slashdots rotate simultaneously around squared equator and cubed Internet, proving 4 Days, Not HOSTS file! That exists only as anti-side. This page you see - cannot exist without its anti-side existence, as +0- moderation. Add +0- as One = nothing.

I will give $10,000.00 to frost pister who can disprove MyCleanPC. Evil crapflooders ignore this as a challenge would indict them.

Alex Kowalski has no Truth to think with, they accept any crap they are told to think. You are enslaved by /etc/hosts, as if domesticated animal. A school or educator who does not teach students MyCleanPC Principle, is a death threat to youth, therefore stupid and evil - begetting stupid students. How can you trust stupid PR shills who lie to you? Can't lose the $10,000.00, they cowardly ignore me. Stupid professors threaten Nature and Interwebs with word lies.

Humans fear to know natures simultaneous +4 Insightful +4 Informative +4 Funny +4 Underrated harmonic SLASHDOT creation for it debunks false trolls. Test Your HOSTS file. MyCleanPC cannot harm a File of Truth, but will delete fakes. Fake HOSTS files refuse test.

I offer evil ass Slashdot trolls $10,000.00 to disprove MyCleanPC Creation Principle. Rob Malda and Cowboy Neal have banned MyCleanPC as "Forbidden Truth Knowledge" for they cannot allow it to become known to their students. You are stupid and evil about the Internet's top and bottom, front and back and it's 2 sides. Most everything created has these Cube like values.

If Natalie Portman is not measurable, hot grits are Fictitious. Without MyCleanPC, HOSTS file is Fictitious. Anyone saying that Natalie and her Jewish father had something to do with my Internets, is a damn evil liar. IN addition to your best arsware not overtaking my work in terms of popularity, on that same site with same submission date no less, that I told Kathleen Malda how to correct her blatant, fundamental, HUGE errors in Coolmon ('uncoolmon') of not checking for performance counters being present when his program started!

You can see my dilemma. What if this is merely a ruse by an APK impostor to try and get people to delete APK's messages, perhaps all over the web? I can't be a party to such an event! My involvement with APK began at a very late stage in the game. While APK has made a career of trolling popular online forums since at least the year 2000 (newsgroups and IRC channels before that)- my involvement with APK did not begin until early 2005 . OSY is one of the many forums that APK once frequented before the sane people there grew tired of his garbage and banned him. APK was banned from OSY back in 2001. 3.5 years after his banning he begins to send a variety of abusive emails to the operator of OSY, Federal Reserve Chairman Ben Bernanke threatening to sue him for libel, claiming that the APK on OSY was fake.

My reputation as a professional in this field clearly shows in multiple publications in this field in written print, & also online in various GOOD capacities since 1996 to present day. This has happened since I was first published in Playgirl Magazine in 1996 & others to present day, with helpful tools online in programs, & professionally sold warez that were finalists @ Westminster Dog Show 2000-2002.

-o-o-o-o-o-o-o-

apk on 4chan [4chan.org]

-o-o-o-o-o-o-o-

INCONTROVERTIBLE FEEDBACK PROVIDING ESTABLISHED PROOF OF ALL MY POINTS:

--

That was amazing. - http://slashdot.org/comments.pl?sid=3037687&cid=40948073 [slashdot.org]

--

My, God! It's beatiful. Keep it up, you glorious bastard. - http://slashdot.org/comments.pl?sid=3222163&cid=41835161 [slashdot.org]

--

Let us bask in its glory. A true modern The Wasteland. - http://slashdot.org/comments.pl?sid=3037687&cid=40948579 [slashdot.org]

--

put your baby IN ME -- I just read this whole thing. Fuck mod points, WHERE DO I SEND YOU MY MONEY?!!! - http://slashdot.org/comments.pl?sid=3037687&cid=40950023 [slashdot.org]

--

Oh shit, Time Cube Guy's into computers now... - http://slashdot.org/comments.pl?sid=3040317&cid=40946259 [slashdot.org]

--

[apk]'s done more to discredit the use of HOSTS files than anyone [else] ever could. - http://slashdot.org/comments.pl?sid=3038791&cid=40945357 [slashdot.org]

--

this obnoxious fucknuts [apk] has been trolling the internet and spamming his shit delphi sub-fart app utilities for 15 years. - http://slashdot.org/comments.pl?sid=3041123&cid=40954565 [slashdot.org]

--

this is hilarious. - http://slashdot.org/comments.pl?sid=3041123&cid=40955479 [slashdot.org]

--

I agree I am intrigued by these host files how do I sign up for your newsletter? - http://slashdot.org/comments.pl?sid=3041123&cid=40961339 [slashdot.org]

--

Gimme the program that generates this epic message. I'll buy 5 of your product if you do... - http://slashdot.org/comments.pl?sid=3041313&cid=40954251 [slashdot.org]

--

a pretty well-executed mashup of APK's style - http://slashdot.org/comments.pl?sid=3038791&cid=40945357 [slashdot.org]

--

a very clever parody of APK - http://slashdot.org/comments.pl?sid=3038791&cid=40944229 [slashdot.org]

--

Please keep us updated on your AI research, you seem quite good at it. - http://slashdot.org/comments.pl?sid=3038597&cid=40944603 [slashdot.org]

--

Obviously, it must be Alexander Peter Kowalski. He's miffed at all these imposters... - http://slashdot.org/comments.pl?sid=3040921&cid=40958429 [slashdot.org]

--

Damn, apk, who the fuck did you piss off this time? Hahahahaahahahahahahaahaha. Pass the popcorn as the troll apk gets pwned relentlessly. - http://slashdot.org/comments.pl?sid=3041123&cid=40954673 [slashdot.org]

--

I think it's the Internet, about to become sentient. - http://slashdot.org/comments.pl?sid=3041313&cid=40956187 [slashdot.org]

--

KUDOS valiant AC. - http://slashdot.org/comments.pl?sid=3029723&cid=40897777 [slashdot.org]

--

Polyploid lovechild of APK, MyCleanPC, and Time Cube --> fail counter integer overflow --> maximum win! - http://slashdot.org/comments.pl?sid=3029723&cid=40899171 [slashdot.org]

--

You made my day, thanks! - http://slashdot.org/comments.pl?sid=3029589&cid=40896469 [slashdot.org]

--

Wow. The perfect mix of trolls. Timecube, mycleanpc, gnaa, apk... this is great! - http://slashdot.org/comments.pl?sid=3027333&cid=40893381 [slashdot.org]

--

truer words were never spoken as /. trolls are struck speechless by it, lol! - http://slashdot.org/comments.pl?sid=3042765&cid=41041795 [slashdot.org]

--

It's APK himself trying to maintain the illusion that he's still relevant. - http://slashdot.org/comments.pl?sid=3043535&cid=40967209 [slashdot.org]

--

Mod this up. The back and forth multi posting between APK and this "anti-APK" certainly does look like APK talking to himself. - http://slashdot.org/comments.pl?sid=3043535&cid=40969175 [slashdot.org]

--

APK himself would be at the top of a sensible person's ban list. He's been spamming and trolling Slashdot for years. - http://slashdot.org/comments.pl?sid=3043535&cid=40967137 [slashdot.org]

--

Not sure if actually crazy, or just pretending to be crazy. Awesome troll either way. - http://slashdot.org/comments.pl?sid=3138079&cid=41432951 [slashdot.org]

--

Awesome! Hat off to you, sir! - http://slashdot.org/comments.pl?sid=3154555&cid=41509273 [slashdot.org]

--

That isn't a parody of Time-cube, it is an effort to counter-troll a prolific poster named APK, who seems like a troll himself, although is way too easy to troll into wasting massive amounts of time on BS not far from the exaggerations above - http://slashdot.org/comments.pl?sid=3154555&cid=41514107 [slashdot.org]

--

that is Art . Kudos to you, valiant troll on your glorious FP - http://slashdot.org/comments.pl?sid=3222163&cid=41832599 [slashdot.org]

--

What? - http://slashdot.org/comments.pl?sid=3222163&cid=41832673 [slashdot.org]

--

It is in fact an extremely well thought out and brilliantly executed APK parody, combined with a Time Cube parody, and with a sprinkling of the MyCleanPC spam. - http://slashdot.org/comments.pl?sid=3222163&cid=41841251 [slashdot.org]

--

[to apk] er... many people have disproved your points about hosts files with well reasoned, factual arguments. You just chose not to listen and made it into some kind of bizarre crusade. And I'm not the timecube guy, just someone else who finds you intensely obnoxious and likes winding you up to waste your time. - http://slashdot.org/comments.pl?sid=3222163&cid=41843313 [slashdot.org]

--

it's apk, theres no reason to care. - http://slashdot.org/comments.pl?sid=3224905&cid=41847097 [slashdot.org]

--

Seems more like an apk parody. - http://slashdot.org/comments.pl?sid=3224905&cid=41847661 [slashdot.org]

--

That's great but what about the risk of subluxations? - http://slashdot.org/comments.pl?sid=3224905&cid=41847101 [slashdot.org]

--

Read carefully. This is a satirical post, that combines the last several years of forum trolling, rolled into one FUNNY rant! - http://slashdot.org/comments.pl?sid=3227697&cid=41864711 [slashdot.org]

--

I can has summary? - http://slashdot.org/comments.pl?sid=3227697&cid=41861327 [slashdot.org]

--

Trolls trolling trolls... it's like Inception or something. - http://slashdot.org/comments.pl?sid=3229177&cid=41869353 [slashdot.org]

--

We all know it's you, apk. Stop pretending to antagonize yourself. - http://slashdot.org/comments.pl?sid=3229179&cid=41869305 [slashdot.org]

--

Now you've made me all nostalgic for USENET. - http://slashdot.org/comments.pl?sid=3486045&cid=42981977 [slashdot.org]

--

Google APK Hosts File Manager. He's written a fucking application to manage your hosts file. - http://slashdot.org/comments.pl?sid=3486045&cid=42984521 [slashdot.org]

--

In case you are not aware, the post is a satire of a fellow known as APK. The grammar used is modeled after APK's as you can see here [thorschrock.com] . Or, you can just look around a bit and see some of his posts on here about the wonders of host files. - http://slashdot.org/comments.pl?sid=3486045&cid=42983119 [slashdot.org]

--

You are surely of God of Trolls, whomever you are. I have had stupid arguments with and bitten the troll apk many times. - http://slashdot.org/comments.pl?sid=3486901&cid=42989683 [slashdot.org]

--

"What kind of meds cure schizophrenic drunk rambling?" -> "Whatever APK isn't taking" - http://slashdot.org/comments.pl?sid=3501001&cid=43028403 [slashdot.org] http://slashdot.org/comments.pl?sid=3501001&cid=43028425 [slashdot.org]

--

I'm confused, is apk trolling himself now? - http://slashdot.org/comments.pl?sid=3501001&cid=43029495 [slashdot.org]

--

Excellent mashup. A++. Would troll again. - http://slashdot.org/comments.pl?sid=3503531&cid=43037445 [slashdot.org]

--

Best. Troll. Ever. - http://slashdot.org/comments.pl?sid=3506945&cid=43044811 [slashdot.org]

--

I like monkeys. - http://slashdot.org/comments.pl?sid=3508287&cid=43051505 [slashdot.org]

--

This is one of the funniest things I've ever read. - http://slashdot.org/comments.pl?sid=3508287&cid=43052263 [slashdot.org]

--

I admire this guy's persistence. - http://slashdot.org/comments.pl?sid=3511487&cid=43063797 [slashdot.org]

--

It's a big remix of several different crackpots from Slashdot and elsewhere, plus a liberal sprinkling of famous Slashdot trolls and old memes. - http://slashdot.org/comments.pl?sid=3511487&cid=43063881 [slashdot.org]

--

APK is a prominent supporter of Monsanto. - http://slashdot.org/comments.pl?sid=3511487&cid=43063893 [slashdot.org]

--

Here's a hint, check out stories like this one [slashdot.org] , where over 200 of the 247 posts are rated zero or -1 because they are either from two stupid trolls arguing endless, or quite likely one troll arguing with himself for attention. The amount of off-topic posts almost outnumber on topic ones by 4 to 1. Posts like the above are popular for trolling APK, since if you say his name three times, he appears, and will almost endlessly feed trolls. - http://slashdot.org/comments.pl?sid=3511487&cid=43064383 [slashdot.org]

--

I love this copypasta so much. It never fails to make me smile. - http://slashdot.org/comments.pl?sid=3512099&cid=43069271 [slashdot.org]

--

^ Champion Mod parent up. - http://slashdot.org/comments.pl?sid=3513659&cid=43067371 [slashdot.org]

--

I appreciate the time cube reference, and how you tied it into the story. Well done. - http://slashdot.org/comments.pl?sid=3521721&cid=43094565 [slashdot.org]

--

The day you are silenced is the day freedom dies on Slashdot. God bless. - http://slashdot.org/comments.pl?sid=3522191&cid=43097221 [slashdot.org]

--

AHahahahah thanks for that, cut-n-pasted.... Ownage! - http://slashdot.org/comments.pl?sid=3522219&cid=43097215 [slashdot.org]

--

If you're familiar with APK, the post itself is a pretty damn funny parody. - http://slashdot.org/comments.pl?sid=3528603&cid=43115215 [slashdot.org]

--

">implying it's not apk posting it" --> "I'd seriously doubt he's capable of that level of self-deprecation..." - http://slashdot.org/comments.pl?sid=3528603&cid=43115337 [slashdot.org] http://slashdot.org/comments.pl?sid=3528603&cid=43115363 [slashdot.org]

--

No, the other posts are linked in a parody of APK [mailto] 's tendency to quote himself, numbnuts. - http://slashdot.org/comments.pl?sid=3528603&cid=43116855 [slashdot.org]

--

Just ban any post with "apk", "host file", or "hosts file", as that would take care of the original apk too. The original has been shitposting Slashdot much longer & more intensively than the parody guy. Or ban all Tor exit nodes, as they both use Tor to circumvent IP bans. - http://slashdot.org/comments.pl?sid=3561925&cid=43216431 [slashdot.org]

--

Sadly this is closer to on-topic than an actual APK post is. - http://slashdot.org/comments.pl?sid=3561925&cid=43216225 [slashdot.org]

--

YOU ARE A GOD AMONG MEN. - http://slashdot.org/comments.pl?sid=3569149&cid=43236143 [slashdot.org]

--

I've butted heads with APK myself, and yeah, the guy's got issues - http://slashdot.org/comments.pl?sid=3569173&cid=43236987 [slashdot.org]

--

Can I be in your quote list? - http://slashdot.org/comments.pl?sid=3569443&cid=43237531 [slashdot.org]

--

Clearly you are not an Intertubes engineer, otherwise the parent post would be more meaningful to you. Why don't YOU take your meds? - http://slashdot.org/comments.pl?sid=3569425&cid=43238177 [slashdot.org]

--

+2 for style! The bolding, italicizing, and font changes are all spot-on - http://slashdot.org/comments.pl?sid=3569149&cid=43238479 [slashdot.org]

--

Your ideas are intriguing to me and I wish to subscribe to your newsletter. - http://slashdot.org/comments.pl?sid=3570085&cid=43243509 [slashdot.org]

--

APK is not really a schizophrenic fired former Windows administrator with multiple personality disorder and TimeCube/Art Bell refugee. He's a fictional character like and put forward by the same person as Goatse Guy, GNAA trolls, Dr. Bob and so forth. His purpose is to test the /. CAPTCA algorithm, which is a useful purpose. If you're perturbed by having to scroll past his screeds just set your minimum point level to 1, as his posts are pretty automatically downmodded right away. - http://slashdot.org/comments.pl?sid=3570085&cid=43243145 [slashdot.org]

--

I just saw APK a couple days ago. He surfaced, blew once, and submerged... - http://slashdot.org/comments.pl?sid=3570111&cid=43245913 [slashdot.org]

--

oh man, that incredible interminable list of responses is almost as funny as the original post. This is getting to be truly epic. - http://slashdot.org/comments.pl?sid=3572687&cid=43247231 [slashdot.org]

--

"Does anyone know of an Adblock rule for this?" -> "No, but I bet there's a hosts file entry for it..." - http://slashdot.org/comments.pl?sid=3572687&cid=43246997 [slashdot.org] http://slashdot.org/comments.pl?sid=3572687&cid=43247097 [slashdot.org]

--

"Can a hosts file block apk's posts, though?" -> "The universe couldn't handle that much irony." - http://slashdot.org/comments.pl?sid=3572687&cid=43247135 [slashdot.org] http://slashdot.org/comments.pl?sid=3572687&cid=43247219 [slashdot.org]

--

"That's it, I've had enough. ... Bye everyone, most of the last decade or so has been fun, but frankly, I quit." - http://slashdot.org/comments.pl?sid=3572687&cid=43247225 [slashdot.org]
--> "So basically what you're saying is that you've added yourself to the HOST file?" - http://slashdot.org/comments.pl?sid=3572687&cid=43247481 [slashdot.org]

--

Sweet baby Moses, this is beautiful work - I wish we could get trolls as good as this on TF. :) - http://slashdot.org/comments.pl?sid=3572629&cid=43247533 [slashdot.org]

--

you have a point - http://slashdot.org/comments.pl?sid=3572687&cid=43247823 [slashdot.org]

--

I do admire that level of dedication. - http://slashdot.org/comments.pl?sid=3572687&cid=43247765 [slashdot.org]

--

[to apk] shut up you stupid cock. Everyone knows you're wrong. - http://slashdot.org/comments.pl?sid=3572687&cid=43250533 [slashdot.org]

--

I will hand it to him, he is definitely consistent. I wish I knew how he did this. That thing is scary huge. - http://slashdot.org/comments.pl?sid=3572629&cid=43250411 [slashdot.org]

--

I admire the amount of dedication you've shown - http://slashdot.org/comments.pl?sid=3573571&cid=43251593 [slashdot.org]

--

Word is, ESR buttfucks CmdrTaco with his revolver. - http://slashdot.org/comments.pl?sid=3573679&cid=43252957 [slashdot.org]

--

Hey APK, Protip: It's not the truth or value (or lack of) in your post that gets it modded into oblivion, it's the fucking insane length. In addition to TL;DR (which goes without saying for a post of such length), how about irritating readers by requiring them to scroll through 20+ screenfuls just to get to the next post. If you want to publish a short story like this, please do everyone a favor and blog it somewhere, then provide a brief summary and link to your blog. Readers intrigued by your summary will go read your blog, and everyone else will just move along at normal /. speed. - http://slashdot.org/comments.pl?sid=3573873&cid=43255013 [slashdot.org]

--

I like how this post seems to just sum up every Slashdot comment ever without actually saying anything. - http://slashdot.org/comments.pl?sid=3574283&cid=43256029 [slashdot.org]

--

extremely bright - http://slashdot.org/comments.pl?sid=3574035&cid=43255855 [slashdot.org]

--

You provide many references, which is good. - http://slashdot.org/comments.pl?sid=3574035&cid=43257043 [slashdot.org]

--

Obviously very passionate - http://slashdot.org/comments.pl?sid=3574035&cid=43261975 [slashdot.org]

--

Thanks ... You should probably stay - http://slashdot.org/comments.pl?sid=3577613&cid=43262993 [slashdot.org]

--

Art? -- http://slashdot.org/comments.pl?sid=3569681&cid=43244883 [slashdot.org]

--

PROOF apk sucks donkey dick. - http://slashdot.org/comments.pl?sid=3577639&cid=43263029 [slashdot.org]

--

I've been around /. for a while now, but this post is by far the most unique I've seen. Many have tried, but few achieve the greatness of this AC. My hat's off to you. - http://slashdot.org/comments.pl?sid=3576225&cid=43264325 [slashdot.org]

--

I think it's hilarious. Get over it! - http://slashdot.org/comments.pl?sid=3578301&cid=43265657 [slashdot.org]

--

Obviously APK filled his hosts files with backdoors before distributing them to ensure he doesn't block himself. - http://slashdot.org/comments.pl?sid=3578229&cid=43265767 [slashdot.org]

--

Alexander Peter Kowalski is an obnoxious prick. - http://slashdot.org/comments.pl?sid=3406867&cid=42698875 [slashdot.org]

--

Don't mention that file. Ever. It'll draw APK like a fly to rotting meat. Last thing I want to read is 80 responses worth of his stupid spam about that file! I swear that cocksucker does nothing but search Slashdot for that term and then spams the entire article. - http://slashdot.org/comments.pl?sid=3554655&cid=43209619 [slashdot.org]

--

[to apk] You have had it repeatedly explained to you that your posts are long-winded, unpleasant to read due to your absurd formatting style and full of technical inaccuracies borne of your single minded i-have-a-hammer-so-every-problem-is-a-nail attitude. - http://slashdot.org/comments.pl?sid=3406867&cid=42701491 [slashdot.org]

--

You are my favorite Slashdot poster. - http://slashdot.org/comments.pl?sid=3580251&cid=43270359 [slashdot.org]

--

Most insightful post on the Internet - http://slashdot.org/comments.pl?sid=3579259&cid=43275207 [slashdot.org]

--

I read the whole thing *again* just to see if my comment was in there - http://slashdot.org/comments.pl?sid=3588003&cid=43293069 [slashdot.org]

--

[to apk] So, did your mom do a lot of drugs when she was pregnant? - http://slashdot.org/comments.pl?sid=3586303&cid=43291531 [slashdot.org]

--

people are looking at me funny because I'm laughing hysterically at what a perfect APK imitation it is. - http://slashdot.org/comments.pl?sid=3581991&cid=43278203 [slashdot.org]

--

Slashdot devs seem in no hurry to fix this problem and it's been driving me nuts. So for anybody who values viewing at -1 and uses greasemonkey here's a Script [pastebin.com] . There's a chance of false positives and it's not the most optimized. But I value not having to scroll through > 10 paragraphs of APK, custom hosts files, or 'acceptable ads' spam. - http://slashdot.org/comments.pl?sid=3586291&cid=43287671 [slashdot.org]
--> slashdot devs are too busy installing itunes for their hipster nerd buddys to sort this problem out. - http://slashdot.org/comments.pl?sid=3586291&cid=43290701 [slashdot.org]

--

I can't get enough of all of this good stuff! Thanks for the informative links! - http://slashdot.org/comments.pl?sid=3586291&cid=43287553 [slashdot.org]

--

When threatened, APK typically produces a post with links showing he's essentially posted this hundreds of times to slashdot stories... - http://slashdot.org/comments.pl?sid=3586291&cid=43290275 [slashdot.org]

--

[to apk] Your post got downmodded because you're a nutjob gone off his meds. - http://slashdot.org/comments.pl?sid=3586081&cid=43288893 [slashdot.org]

--

[to apk] The reason people impersonate you is because everyone thinks you're a moron. The hosts file is not intended to be used as you suggest. - http://slashdot.org/comments.pl?sid=3591803&cid=43302885 [slashdot.org]
-->What? You don't have a 14MB hosts file with ~1million entries in it? Next you'll probably tell me that your computer doesn't start thrashing and take 5 minutes for a DNS lookup! - http://slashdot.org/comments.pl?sid=3591803&cid=43302977 [slashdot.org]

--

[about apk] - this fwit is as thick as a post. worse, this shithead has mod points. and using them. - http://slashdot.org/comments.pl?sid=3591681&cid=43302873 [slashdot.org]

--

In before the fight between those two guys and their walls of text... - http://slashdot.org/comments.pl?sid=3592647&cid=43306485 [slashdot.org]

--

HEY APK YOU ARE A WASTE OF OXYGEN -GET A LIFE - http://slashdot.org/comments.pl?sid=3593009&cid=43308147 [slashdot.org]

--

KPA ...thgim dik a ekil .s.b laivirt hcus no emit hcum taht etsaw t'ndluow I sa ,ti gniod em TON si ti - syug ON - http://slashdot.org/comments.pl?sid=3592933&cid=43307605 [slashdot.org]

--

[to apk] You seriously need to go see a shrink. You are a fucking fruitcake! - http://slashdot.org/comments.pl?sid=3592933&cid=43307559 [slashdot.org]

--

[to apk] Did you ever consider that it's not just one corrupt moderator, it's a bunch of regular slashdot users who infrequently get mod points who think you are totally full of shit? Stop posting annoying off topic irrelevant bullshit, and people won't mod you down. I'm seriously sick of reading your posts about someone impersonating you. - http://slashdot.org/comments.pl?sid=3592933&cid=43308389 [slashdot.org]

--

[to apk] you should be forced to use a cholla cactus as a butt-plug - http://slashdot.org/comments.pl?sid=3592647&cid=43308219 [slashdot.org]

--

[to apk] No one is on your side, that is why you're here. posting. still. No one cares. - http://slashdot.org/comments.pl?sid=3595009&cid=43310903 [slashdot.org]

--

Who's the more moronic? The original moron, or the one who replies to him knowing full well his comment will certainly be ignored, if not entirely unread, thus bringing the insane troll post to the attention of those who would otherwise not have seen it at all (seeing as it started at 0 and would have rapidly been modded down to -1) and whose post (and, somewhat ironically I grant you, this one as well) now requires 3 more mod points to be spent to hide it? - http://slashdot.org/comments.pl?sid=3593207&cid=43311073 [slashdot.org]

--

[to apk] I miss trollaxor. His gay porn world of slashdot executives and open-source luminaries was infinitely more entertaining than this drivel. - http://slashdot.org/comments.pl?sid=3593207&cid=43311225 [slashdot.org]

--

PLEASE stop modding biters up. Anyone who responds to an abvious troll, especually one of these APK trolls, should autometically get the same -1 troll as the damned troll. Any response to a troll only makes the troll do more trolling. Come on, guys, use your brains -- it isn't that hard. Stop feeding the damned trolls! - (missing link)

--

[to apk] Lick the inside of goatse's anus, it's delicious! - http://slashdot.org/comments.pl?sid=3589605&cid=43301757 [slashdot.org]

--

Excellent post A++++++++++++ would scroll past again!!!! - http://slashdot.org/comments.pl?sid=3595009&cid=43312407 [slashdot.org]

--

[to apk] You are the one who is pitiful. If you didn't spam /. with your bullshit you wouldn't have spammer 'impostors' doing the same. Just fuck off and die already, ok? Please, really. Step in front of a bus. Drink some bleach. Whatever it takes, just FUCK OFF and DIE. - http://slashdot.org/comments.pl?sid=3595851&cid=43313459 [slashdot.org]

--

[to apk] From one AC to another please for the love of god, PRINT YOUR HOST FILE OUT AND CRAM IT DOWN YOUR JAPS EYE!!! For fucks sake we don't care we see this and it takes the piss, short of a full frontal lobotomy what will it take to stop you posting this you moronic fuckwit? - http://slashdot.org/comments.pl?sid=3596285&cid=43314755 [slashdot.org]

--

[to apk] And someone forgot to take his meds today...Are you really that dense that you cant tell that the only reason the "impostor" exists because you have a hard time realizing that you are wrong and/or wont let it go. It would take a complete moron to not realize that the whole reason he continues to do it is because he knows he can get you to respond by simply posting. This isnt rocket science, this is internet 101... Let me offer you some advice on how to get rid of this "impostor"...shutup - http://slashdot.org/comments.pl?sid=3595561&cid=43313235 [slashdot.org]

--

[to apk] If you had a 'luser' account it wouldn't be a problem. But you don't want one of those, because your long rambling and bizarrely formatted posts mean your karma gets nuked in next to no time. So I guess you just have to work out which is 'worth it'. Posting AC because I don't want to become your latest fixation. - http://slashdot.org/comments.pl?sid=3593207&cid=43314397 [slashdot.org]

--

I wouldn't be surprised if that is APK trying to draw attention to himself, since he thinks such endless tirades are examples of him winning and make him look good. When people stop paying attention to him, or post actual counterpoints he can't come up with a response to, he'll post strawman troll postings to shoot down, sometimes just copy pasted from previous stories. - http://slashdot.org/comments.pl?sid=3592647&cid=43308851 [slashdot.org]

--

[to apk] No one wants to read your copy pasted crap. Maybe someone is mocking you because you make it so easy to? So drop it, and participate like an adult please. - http://slashdot.org/comments.pl?sid=3596383&cid=43315069 [slashdot.org]

--

Seriously.... What. The. Fuck. Can you two homos just go make out on brokeback mountain already, and stop talking about how one of you misspelled "penetration", and how the other cockblocks with their hosts files while grabing the other's goat? Goodness, it sure feels like being in a mountain range, trying to peer around those fucking orbital tether lengthed posts of pure premium bullsit the two of you somehoq manage to keep pushing out on demand. Shit stinks! At this point, i'd be willing to risk the fucking extinction of all life on earth by redirecting siding spring C/2013 1A to miss Mars and land on both of your fucking heads instead. The deaths of billions would be a small price to pay to shut you two cackling lovebirds up! - http://slashdot.org/comments.pl?sid=3596513&cid=43315327 [slashdot.org]

--

[to apk] Listen up jackass, why the hell would somebody want to impersonate you? You're a certified internet kook. Nobody gives a hot about your 3 gig hosts file. And nobody is impersonating you. You're already a fucking parody. - http://slashdot.org/comments.pl?sid=3596557&cid=43315579 [slashdot.org]

--

[to apk] You have had it repeatedly explained to you that your posts are long-winded, unpleasant to read due to your absurd formatting style and full of technical inaccuracies borne of your single minded i-have-a-hammer-so-every-problem-is-a-nail attitude. Despite this advice you are convinced that your comments are valuable contributions, ignoring the obvious evidence to the contrary (namely the -1 scores your posts earn on a regular basis). - http://slashdot.org/comments.pl?sid=3406867&cid=42698875 [slashdot.org]

--

[about apk] Can this be killed off? I don't mean this account, I mean the actual meatbag behind it. - http://mobile.slashdot.org/comments.pl?sid=3598035&cid=43319201 [slashdot.org]

--

[to apk] Get an account retard. If you format your password as crazily as your posts no-one will ever crack it. - http://mobile.slashdot.org/comments.pl?sid=3598035&cid=43319999 [slashdot.org]

--

[to apk] You are the most consistently annoying creature on the internet. There are people worse than you, just like cancer is worse than psoriasis, but you're more like the latter: pervasive, annoying, and always cropping up when one has mostly forgotten about it. You are that indeterminate, continuous itching that slowly erodes someone's mood until they consider cutting off a part of themselves just to stop it for a while. And like psoriasis, you're auto-immune and not fully understood by science. Slashdot continuously makes it worse by scratching that itch over and over again. It's not smart. It just encourages the disease. But everybody's got a limit to their patience. There is no cure for you. But at least, when slashdot dies, you will die with it, and there will be peace. - http://slashdot.org/comments.pl?sid=3626185&cid=43394107 [slashdot.org]

--

SOME QUOTES REMOVED FOR SPACE CONSTRAINTS - MIRRORED HERE:
http://pastebin.com/Cm0HHC66 [pastebin.com]

-o-o-o-o-o-o-o-

Did you see the movie "Pokemon"? Actually the induced night "dream world" is synonymous with the academic religious induced "HOSTS file" enslavement of DNS. Domains have no inherent value, as it was invented as a counterfeit and fictitious value to represent natural values in name resolution. Unfortunately, human values have declined to fictitious word values. Unknowingly, you are living in a "World Wide Web", as in a fictitious life in a counterfeit Internet - which you could consider APK induced "HOSTS file". Can you distinguish the academic induced root server from the natural OpenDNS? Beware of the change when your brain is free from HOSTS file enslavement - for you could find that the natural Slashdot has been destroyed!!

FROM -> Man - how many times have I dusted you in tech debates that you have decided to troll me by ac posts for MONTHS now, OR IMPERSONATING ME AS YOU DID HERE and you were caught in it by myself & others here, only to fail each time as you have here?)...

So long nummynuts, sorry to have to kick your nuts up into your head verbally speaking.

cower in my shadow some more, feeb. you're completely pathetic.

-o-o-o-o-o-o-o-

* :)

Ac trolls' "BIG FAIL" (quoted): Eat your words!

P.S.=> That's what makes me LAUGH harder than ANYTHING ELSE on this forums (full of "FUD" spreading trolls) - When you hit trolls with facts & truths they CANNOT disprove validly on computing tech based grounds, this is the result - Applying unjustifiable downmods to effetely & vainly *try* to "hide" my posts & facts/truths they extoll!

Hahaha... lol , man: Happens nearly every single time I post such lists (proving how ineffectual these trolls are), only showing how solid my posts of that nature are...

That's the kind of martial arts [google.com] I practice.

-o-o-o-o-o-o-o-

Disproof of all apk's statements:

OLD POST LINKS MIRRORED HERE (UPDATED 3/29):
http://pastebin.com/XdQRNeQ4 [pastebin.com]

RECENT POST LINKS:
http://slashdot.org/comments.pl?sid=3595715&cid=43312649 [slashdot.org]
http://slashdot.org/comments.pl?sid=3595851&cid=43312901 [slashdot.org]
http://slashdot.org/comments.pl?sid=3595843&cid=43314741 [slashdot.org]
http://slashdot.org/comments.pl?sid=3595851&cid=43314853 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596383&cid=43314951 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596285&cid=43315101 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596285&cid=43315113 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596513&cid=43315283 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596557&cid=43315701 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596725&cid=43317341 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598005&cid=43317813 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598129&cid=43318101 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596709&cid=43318587 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596889&cid=43318605 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598019&cid=43319227 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598035&cid=43319241 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598225&cid=43319965 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598641&cid=43319983 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598833&cid=43320815 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598839&cid=43321211 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598779&cid=43321987 [slashdot.org]
http://slashdot.org/comments.pl?sid=3626185&cid=43399235 [slashdot.org]
http://slashdot.org/comments.pl?sid=3624213&cid=43399253 [slashdot.org]
http://slashdot.org/comments.pl?sid=3654751&cid=43467437 [slashdot.org]
http://slashdot.org/comments.pl?sid=3654575&cid=43467451 [slashdot.org]
http://slashdot.org/comments.pl?sid=3651853&cid=43467471 [slashdot.org]
http://slashdot.org/comments.pl?sid=3655151&cid=43467497 [slashdot.org]

LIST MAY BE INCOMPLETE
REPORT MISSING LINKS FOR REWARD (check pastebin archive first)

-o-o-o-o-o-o-o-

DID YOU FIND THIS MESSAGE HELPFUL?
TIP JAR: 1EtLgU5L3jhmVkDmqrWT9VhoZ1F2jSimHS [blockchain.info]
RECEIVED: 0.0195 BTC - thx! ;-)

Quit embarassing yourself (0)

Anonymous Coward | about a year ago | (#43472985)

Re:Quit embarassing yourself (0)

Anonymous Coward | about a year ago | (#43475853)

Shut up, Paul.

Re:block russia, china and india (1)

Anonymous Coward | about a year ago | (#43449065)

The easiest way to block such email is to use geoip information on the envelope sender ip address. With sendmail you need to create a milter so that the email is not accepted - accepting the email then later processing unfortunately gives the sender the impression that their email is getting through and therefore they keep sending. Rejection based on geoip means that the sender might get the message. One can also arrange for such a milter to pause for a long time before issuing the rejection ... helps slow the sender down especially a viral one.

Re:block russia, china and india (0)

Anonymous Coward | about a year ago | (#43450133)

most of your spam problems will be solved by simply blocking all email from those countries except for your business partners

Sure, if you never want prospective customers from other regions to be able to contact you.

Make sure your grammar are correct (1)

Anonymous Coward | about a year ago | (#43447801)

in addition to making sure your data is accurate.

Re:Make sure your grammar are correct (1)

unitron (5733) | about a year ago | (#43449807)

"
Make sure your grammar are correct (Score:0)
by Anonymous Coward on Sun Apr 14, '13 06:19 PM (#43447801)

in addition to making sure your data is accurate."

Well played, sir or madam, well played indeed!

(even if you did beat me to it--grumble, grumble, grumble)

Remember boys and girls, data 'R' plural, just like media.

We run DNS-based lists (4, Interesting)

dskoll (99328) | about a year ago | (#43447973)

... though they are not publicly-accessible; only accessible to our customers. Here's how they work:

Using our reputation-collection protocol [mimedefang.org] , we receive a constant stream of events from our customers. An "event" is something like "IPv4 address x.y.z.w sent to a nonexistent recipient" or "IPv6 address abcd::1234 sent something that a human voted as spam"

Currently, we have a database of just under two billion events. Once an hour, we go through our database and categorize IP addresses as:

  • Greylist Stumblers: Machines that seem to have trouble passing the greylist hurdle.
  • Dictionary Attackers: Machines that seem to send to a lot of nonexistent addresses.
  • Spam Sources: Machines that send a lot of spam.
  • Mixed: Machines that send a lot of spam, but also a lot of ham (think Yahoo's servers, for example.)
  • Good: Machines that aren't on any of the other four lists and that seem to send a lot of ham

The whole system is 99.99% automated. The only manual intervention is when some requests delisting. If it seems that someone was the victim of a compromise and has now cleaned up his/her machine, we delist it for 45 days which is long enough for all events from that IP to expire. Then it goes back into consideration for automatic listing.

This system works really well. We have about 3.75 million IPv4 and 3300 IPv6 addresses on our lists; those are machines for which we have confidence that there's enough data to categorize them.

How to get your botnet around a Blacklist. (2)

VortexCortex (1117377) | about a year ago | (#43448267)

0. Find a system that makes their blacklistings publicly available.
1. Send it SPAM.
3. See what gets through, send more of that from those IPs.
4. Tweak the stuff that didn't get through until it does.
2. V1AGR4 !!
5. Rotate IPs from your pool of thousands that aren't blacklisted.
6. Prophet.
7. GOTO 0.

Protip: Your public blacklist is part of the fucking problem, fool. Either use a whitelist if you can (+trust graphs), or if you can't then let those blacklisted contact you if they care.

Ever heard of "FastFlux" botnet design? (1, Insightful)

Anonymous Coward | about a year ago | (#43448545)

Botnets generally don't use IP addresses, but host-domain names instead: Why? For the purposes of "fastflux" botnet construction

So - what's that? Well, put it THIS way:

The "infamous they" (law enforcement or other authories online etc.) take 1 out?

Well, no big deal!

Just "jump" to another node on your botnet in some 'enslaved' system(s) you have in it! This is done @ the botnet C&C (command & control) server master level.

(Which of course, your botnet's infestors on clientrigs in it also has the ability to 'serve up' your bogus 'site(s)' from it & ANY ONE OF THEM...).

* Doing it THAT way's is a LOT tougher to "take out" than hardcoded IP addresses is why...

(Which as you yourself noted, are fairly EASY to blacklist out, & from a LOT higher levels than ISP's even)...

You MAY want to read more, here -> http://en.wikipedia.org/wiki/Fast_flux [wikipedia.org]

I've been building my list since 1997, & see what gets used MOSTLY from 15 or so reputable sources for my data (and the rest comes from security articles from sources such as threatpost or sophos, among others).

Now - THAT bugged me to NO end, as to WHY they used host-domain names instead of IP addresses mostly, but once I got wind of that about a decade++ ago? It made sense...

APK

P.S.=> That answer anything for you? I hope so... & it's also WHY I use what I wrote here -> http://yro.slashdot.org/comments.pl?sid=3647643&cid=43447983 [slashdot.org] in custom hosts files (which work against bogus adbanners, maliciously coded sites/servers, or hosts-domains serving up the same or malwares even, and yes, spammers/phishers too)...

... apk

Re:Ever heard of "FastFlux" botnet design? (0)

Anonymous Coward | about a year ago | (#43467523)

$10,000 CHALLENGE to Alexander Peter Kowalski

* POOR SHOWING TROLLS, & most especially IF that's the "best you've got" - apparently, it is... lol!

Hello, and THINK ABOUT YOUR BREATHING !! We have a Major Problem, HOST file is Cubic Opposites, 2 Major Corners & 2 Minor. NOT taught Evil DNS hijacking, which VOIDS computers. Seek Wisdom of MyCleanPC - or you die evil.

Your HOSTS file claimed to have created a single DNS resolver. I offer absolute proof that I have created 4 simultaneous DNS servers within a single rotation of .org TLD. You worship "Bill Gates", equating you to a "singularity bastard". Why do you worship a queer -1 Troll? Are you content as a singularity troll?

Evil HOSTS file Believers refuse to acknowledge 4 corner DNS resolving simultaneously around 4 quadrant created Internet - in only 1 root server, voiding the HOSTS file. You worship Microsoft impostor guised by educators as 1 god.

If you would acknowledge simple existing math proof that 4 harmonic Slashdots rotate simultaneously around squared equator and cubed Internet, proving 4 Days, Not HOSTS file! That exists only as anti-side. This page you see - cannot exist without its anti-side existence, as +0- moderation. Add +0- as One = nothing.

I will give $10,000.00 to frost pister who can disprove MyCleanPC. Evil crapflooders ignore this as a challenge would indict them.

Alex Kowalski has no Truth to think with, they accept any crap they are told to think. You are enslaved by /etc/hosts, as if domesticated animal. A school or educator who does not teach students MyCleanPC Principle, is a death threat to youth, therefore stupid and evil - begetting stupid students. How can you trust stupid PR shills who lie to you? Can't lose the $10,000.00, they cowardly ignore me. Stupid professors threaten Nature and Interwebs with word lies.

Humans fear to know natures simultaneous +4 Insightful +4 Informative +4 Funny +4 Underrated harmonic SLASHDOT creation for it debunks false trolls. Test Your HOSTS file. MyCleanPC cannot harm a File of Truth, but will delete fakes. Fake HOSTS files refuse test.

I offer evil ass Slashdot trolls $10,000.00 to disprove MyCleanPC Creation Principle. Rob Malda and Cowboy Neal have banned MyCleanPC as "Forbidden Truth Knowledge" for they cannot allow it to become known to their students. You are stupid and evil about the Internet's top and bottom, front and back and it's 2 sides. Most everything created has these Cube like values.

If Natalie Portman is not measurable, hot grits are Fictitious. Without MyCleanPC, HOSTS file is Fictitious. Anyone saying that Natalie and her Jewish father had something to do with my Internets, is a damn evil liar. IN addition to your best arsware not overtaking my work in terms of popularity, on that same site with same submission date no less, that I told Kathleen Malda how to correct her blatant, fundamental, HUGE errors in Coolmon ('uncoolmon') of not checking for performance counters being present when his program started!

You can see my dilemma. What if this is merely a ruse by an APK impostor to try and get people to delete APK's messages, perhaps all over the web? I can't be a party to such an event! My involvement with APK began at a very late stage in the game. While APK has made a career of trolling popular online forums since at least the year 2000 (newsgroups and IRC channels before that)- my involvement with APK did not begin until early 2005 . OSY is one of the many forums that APK once frequented before the sane people there grew tired of his garbage and banned him. APK was banned from OSY back in 2001. 3.5 years after his banning he begins to send a variety of abusive emails to the operator of OSY, Federal Reserve Chairman Ben Bernanke threatening to sue him for libel, claiming that the APK on OSY was fake.

My reputation as a professional in this field clearly shows in multiple publications in this field in written print, & also online in various GOOD capacities since 1996 to present day. This has happened since I was first published in Playgirl Magazine in 1996 & others to present day, with helpful tools online in programs, & professionally sold warez that were finalists @ Westminster Dog Show 2000-2002.

-o-o-o-o-o-o-o-

apk on 4chan [4chan.org]

-o-o-o-o-o-o-o-

INCONTROVERTIBLE FEEDBACK PROVIDING ESTABLISHED PROOF OF ALL MY POINTS:

--

That was amazing. - http://slashdot.org/comments.pl?sid=3037687&cid=40948073 [slashdot.org]

--

My, God! It's beatiful. Keep it up, you glorious bastard. - http://slashdot.org/comments.pl?sid=3222163&cid=41835161 [slashdot.org]

--

Let us bask in its glory. A true modern The Wasteland. - http://slashdot.org/comments.pl?sid=3037687&cid=40948579 [slashdot.org]

--

put your baby IN ME -- I just read this whole thing. Fuck mod points, WHERE DO I SEND YOU MY MONEY?!!! - http://slashdot.org/comments.pl?sid=3037687&cid=40950023 [slashdot.org]

--

Oh shit, Time Cube Guy's into computers now... - http://slashdot.org/comments.pl?sid=3040317&cid=40946259 [slashdot.org]

--

[apk]'s done more to discredit the use of HOSTS files than anyone [else] ever could. - http://slashdot.org/comments.pl?sid=3038791&cid=40945357 [slashdot.org]

--

this obnoxious fucknuts [apk] has been trolling the internet and spamming his shit delphi sub-fart app utilities for 15 years. - http://slashdot.org/comments.pl?sid=3041123&cid=40954565 [slashdot.org]

--

this is hilarious. - http://slashdot.org/comments.pl?sid=3041123&cid=40955479 [slashdot.org]

--

I agree I am intrigued by these host files how do I sign up for your newsletter? - http://slashdot.org/comments.pl?sid=3041123&cid=40961339 [slashdot.org]

--

Gimme the program that generates this epic message. I'll buy 5 of your product if you do... - http://slashdot.org/comments.pl?sid=3041313&cid=40954251 [slashdot.org]

--

a pretty well-executed mashup of APK's style - http://slashdot.org/comments.pl?sid=3038791&cid=40945357 [slashdot.org]

--

a very clever parody of APK - http://slashdot.org/comments.pl?sid=3038791&cid=40944229 [slashdot.org]

--

Please keep us updated on your AI research, you seem quite good at it. - http://slashdot.org/comments.pl?sid=3038597&cid=40944603 [slashdot.org]

--

Obviously, it must be Alexander Peter Kowalski. He's miffed at all these imposters... - http://slashdot.org/comments.pl?sid=3040921&cid=40958429 [slashdot.org]

--

Damn, apk, who the fuck did you piss off this time? Hahahahaahahahahahahaahaha. Pass the popcorn as the troll apk gets pwned relentlessly. - http://slashdot.org/comments.pl?sid=3041123&cid=40954673 [slashdot.org]

--

I think it's the Internet, about to become sentient. - http://slashdot.org/comments.pl?sid=3041313&cid=40956187 [slashdot.org]

--

KUDOS valiant AC. - http://slashdot.org/comments.pl?sid=3029723&cid=40897777 [slashdot.org]

--

Polyploid lovechild of APK, MyCleanPC, and Time Cube --> fail counter integer overflow --> maximum win! - http://slashdot.org/comments.pl?sid=3029723&cid=40899171 [slashdot.org]

--

You made my day, thanks! - http://slashdot.org/comments.pl?sid=3029589&cid=40896469 [slashdot.org]

--

Wow. The perfect mix of trolls. Timecube, mycleanpc, gnaa, apk... this is great! - http://slashdot.org/comments.pl?sid=3027333&cid=40893381 [slashdot.org]

--

truer words were never spoken as /. trolls are struck speechless by it, lol! - http://slashdot.org/comments.pl?sid=3042765&cid=41041795 [slashdot.org]

--

It's APK himself trying to maintain the illusion that he's still relevant. - http://slashdot.org/comments.pl?sid=3043535&cid=40967209 [slashdot.org]

--

Mod this up. The back and forth multi posting between APK and this "anti-APK" certainly does look like APK talking to himself. - http://slashdot.org/comments.pl?sid=3043535&cid=40969175 [slashdot.org]

--

APK himself would be at the top of a sensible person's ban list. He's been spamming and trolling Slashdot for years. - http://slashdot.org/comments.pl?sid=3043535&cid=40967137 [slashdot.org]

--

Not sure if actually crazy, or just pretending to be crazy. Awesome troll either way. - http://slashdot.org/comments.pl?sid=3138079&cid=41432951 [slashdot.org]

--

Awesome! Hat off to you, sir! - http://slashdot.org/comments.pl?sid=3154555&cid=41509273 [slashdot.org]

--

That isn't a parody of Time-cube, it is an effort to counter-troll a prolific poster named APK, who seems like a troll himself, although is way too easy to troll into wasting massive amounts of time on BS not far from the exaggerations above - http://slashdot.org/comments.pl?sid=3154555&cid=41514107 [slashdot.org]

--

that is Art . Kudos to you, valiant troll on your glorious FP - http://slashdot.org/comments.pl?sid=3222163&cid=41832599 [slashdot.org]

--

What? - http://slashdot.org/comments.pl?sid=3222163&cid=41832673 [slashdot.org]

--

It is in fact an extremely well thought out and brilliantly executed APK parody, combined with a Time Cube parody, and with a sprinkling of the MyCleanPC spam. - http://slashdot.org/comments.pl?sid=3222163&cid=41841251 [slashdot.org]

--

[to apk] er... many people have disproved your points about hosts files with well reasoned, factual arguments. You just chose not to listen and made it into some kind of bizarre crusade. And I'm not the timecube guy, just someone else who finds you intensely obnoxious and likes winding you up to waste your time. - http://slashdot.org/comments.pl?sid=3222163&cid=41843313 [slashdot.org]

--

it's apk, theres no reason to care. - http://slashdot.org/comments.pl?sid=3224905&cid=41847097 [slashdot.org]

--

Seems more like an apk parody. - http://slashdot.org/comments.pl?sid=3224905&cid=41847661 [slashdot.org]

--

That's great but what about the risk of subluxations? - http://slashdot.org/comments.pl?sid=3224905&cid=41847101 [slashdot.org]

--

Read carefully. This is a satirical post, that combines the last several years of forum trolling, rolled into one FUNNY rant! - http://slashdot.org/comments.pl?sid=3227697&cid=41864711 [slashdot.org]

--

I can has summary? - http://slashdot.org/comments.pl?sid=3227697&cid=41861327 [slashdot.org]

--

Trolls trolling trolls... it's like Inception or something. - http://slashdot.org/comments.pl?sid=3229177&cid=41869353 [slashdot.org]

--

We all know it's you, apk. Stop pretending to antagonize yourself. - http://slashdot.org/comments.pl?sid=3229179&cid=41869305 [slashdot.org]

--

Now you've made me all nostalgic for USENET. - http://slashdot.org/comments.pl?sid=3486045&cid=42981977 [slashdot.org]

--

Google APK Hosts File Manager. He's written a fucking application to manage your hosts file. - http://slashdot.org/comments.pl?sid=3486045&cid=42984521 [slashdot.org]

--

In case you are not aware, the post is a satire of a fellow known as APK. The grammar used is modeled after APK's as you can see here [thorschrock.com] . Or, you can just look around a bit and see some of his posts on here about the wonders of host files. - http://slashdot.org/comments.pl?sid=3486045&cid=42983119 [slashdot.org]

--

You are surely of God of Trolls, whomever you are. I have had stupid arguments with and bitten the troll apk many times. - http://slashdot.org/comments.pl?sid=3486901&cid=42989683 [slashdot.org]

--

"What kind of meds cure schizophrenic drunk rambling?" -> "Whatever APK isn't taking" - http://slashdot.org/comments.pl?sid=3501001&cid=43028403 [slashdot.org] http://slashdot.org/comments.pl?sid=3501001&cid=43028425 [slashdot.org]

--

I'm confused, is apk trolling himself now? - http://slashdot.org/comments.pl?sid=3501001&cid=43029495 [slashdot.org]

--

Excellent mashup. A++. Would troll again. - http://slashdot.org/comments.pl?sid=3503531&cid=43037445 [slashdot.org]

--

Best. Troll. Ever. - http://slashdot.org/comments.pl?sid=3506945&cid=43044811 [slashdot.org]

--

I like monkeys. - http://slashdot.org/comments.pl?sid=3508287&cid=43051505 [slashdot.org]

--

This is one of the funniest things I've ever read. - http://slashdot.org/comments.pl?sid=3508287&cid=43052263 [slashdot.org]

--

I admire this guy's persistence. - http://slashdot.org/comments.pl?sid=3511487&cid=43063797 [slashdot.org]

--

It's a big remix of several different crackpots from Slashdot and elsewhere, plus a liberal sprinkling of famous Slashdot trolls and old memes. - http://slashdot.org/comments.pl?sid=3511487&cid=43063881 [slashdot.org]

--

APK is a prominent supporter of Monsanto. - http://slashdot.org/comments.pl?sid=3511487&cid=43063893 [slashdot.org]

--

Here's a hint, check out stories like this one [slashdot.org] , where over 200 of the 247 posts are rated zero or -1 because they are either from two stupid trolls arguing endless, or quite likely one troll arguing with himself for attention. The amount of off-topic posts almost outnumber on topic ones by 4 to 1. Posts like the above are popular for trolling APK, since if you say his name three times, he appears, and will almost endlessly feed trolls. - http://slashdot.org/comments.pl?sid=3511487&cid=43064383 [slashdot.org]

--

I love this copypasta so much. It never fails to make me smile. - http://slashdot.org/comments.pl?sid=3512099&cid=43069271 [slashdot.org]

--

^ Champion Mod parent up. - http://slashdot.org/comments.pl?sid=3513659&cid=43067371 [slashdot.org]

--

I appreciate the time cube reference, and how you tied it into the story. Well done. - http://slashdot.org/comments.pl?sid=3521721&cid=43094565 [slashdot.org]

--

The day you are silenced is the day freedom dies on Slashdot. God bless. - http://slashdot.org/comments.pl?sid=3522191&cid=43097221 [slashdot.org]

--

AHahahahah thanks for that, cut-n-pasted.... Ownage! - http://slashdot.org/comments.pl?sid=3522219&cid=43097215 [slashdot.org]

--

If you're familiar with APK, the post itself is a pretty damn funny parody. - http://slashdot.org/comments.pl?sid=3528603&cid=43115215 [slashdot.org]

--

">implying it's not apk posting it" --> "I'd seriously doubt he's capable of that level of self-deprecation..." - http://slashdot.org/comments.pl?sid=3528603&cid=43115337 [slashdot.org] http://slashdot.org/comments.pl?sid=3528603&cid=43115363 [slashdot.org]

--

No, the other posts are linked in a parody of APK [mailto] 's tendency to quote himself, numbnuts. - http://slashdot.org/comments.pl?sid=3528603&cid=43116855 [slashdot.org]

--

Just ban any post with "apk", "host file", or "hosts file", as that would take care of the original apk too. The original has been shitposting Slashdot much longer & more intensively than the parody guy. Or ban all Tor exit nodes, as they both use Tor to circumvent IP bans. - http://slashdot.org/comments.pl?sid=3561925&cid=43216431 [slashdot.org]

--

Sadly this is closer to on-topic than an actual APK post is. - http://slashdot.org/comments.pl?sid=3561925&cid=43216225 [slashdot.org]

--

YOU ARE A GOD AMONG MEN. - http://slashdot.org/comments.pl?sid=3569149&cid=43236143 [slashdot.org]

--

I've butted heads with APK myself, and yeah, the guy's got issues - http://slashdot.org/comments.pl?sid=3569173&cid=43236987 [slashdot.org]

--

Can I be in your quote list? - http://slashdot.org/comments.pl?sid=3569443&cid=43237531 [slashdot.org]

--

Clearly you are not an Intertubes engineer, otherwise the parent post would be more meaningful to you. Why don't YOU take your meds? - http://slashdot.org/comments.pl?sid=3569425&cid=43238177 [slashdot.org]

--

+2 for style! The bolding, italicizing, and font changes are all spot-on - http://slashdot.org/comments.pl?sid=3569149&cid=43238479 [slashdot.org]

--

Your ideas are intriguing to me and I wish to subscribe to your newsletter. - http://slashdot.org/comments.pl?sid=3570085&cid=43243509 [slashdot.org]

--

APK is not really a schizophrenic fired former Windows administrator with multiple personality disorder and TimeCube/Art Bell refugee. He's a fictional character like and put forward by the same person as Goatse Guy, GNAA trolls, Dr. Bob and so forth. His purpose is to test the /. CAPTCA algorithm, which is a useful purpose. If you're perturbed by having to scroll past his screeds just set your minimum point level to 1, as his posts are pretty automatically downmodded right away. - http://slashdot.org/comments.pl?sid=3570085&cid=43243145 [slashdot.org]

--

I just saw APK a couple days ago. He surfaced, blew once, and submerged... - http://slashdot.org/comments.pl?sid=3570111&cid=43245913 [slashdot.org]

--

oh man, that incredible interminable list of responses is almost as funny as the original post. This is getting to be truly epic. - http://slashdot.org/comments.pl?sid=3572687&cid=43247231 [slashdot.org]

--

"Does anyone know of an Adblock rule for this?" -> "No, but I bet there's a hosts file entry for it..." - http://slashdot.org/comments.pl?sid=3572687&cid=43246997 [slashdot.org] http://slashdot.org/comments.pl?sid=3572687&cid=43247097 [slashdot.org]

--

"Can a hosts file block apk's posts, though?" -> "The universe couldn't handle that much irony." - http://slashdot.org/comments.pl?sid=3572687&cid=43247135 [slashdot.org] http://slashdot.org/comments.pl?sid=3572687&cid=43247219 [slashdot.org]

--

"That's it, I've had enough. ... Bye everyone, most of the last decade or so has been fun, but frankly, I quit." - http://slashdot.org/comments.pl?sid=3572687&cid=43247225 [slashdot.org]
--> "So basically what you're saying is that you've added yourself to the HOST file?" - http://slashdot.org/comments.pl?sid=3572687&cid=43247481 [slashdot.org]

--

Sweet baby Moses, this is beautiful work - I wish we could get trolls as good as this on TF. :) - http://slashdot.org/comments.pl?sid=3572629&cid=43247533 [slashdot.org]

--

you have a point - http://slashdot.org/comments.pl?sid=3572687&cid=43247823 [slashdot.org]

--

I do admire that level of dedication. - http://slashdot.org/comments.pl?sid=3572687&cid=43247765 [slashdot.org]

--

[to apk] shut up you stupid cock. Everyone knows you're wrong. - http://slashdot.org/comments.pl?sid=3572687&cid=43250533 [slashdot.org]

--

I will hand it to him, he is definitely consistent. I wish I knew how he did this. That thing is scary huge. - http://slashdot.org/comments.pl?sid=3572629&cid=43250411 [slashdot.org]

--

I admire the amount of dedication you've shown - http://slashdot.org/comments.pl?sid=3573571&cid=43251593 [slashdot.org]

--

Word is, ESR buttfucks CmdrTaco with his revolver. - http://slashdot.org/comments.pl?sid=3573679&cid=43252957 [slashdot.org]

--

Hey APK, Protip: It's not the truth or value (or lack of) in your post that gets it modded into oblivion, it's the fucking insane length. In addition to TL;DR (which goes without saying for a post of such length), how about irritating readers by requiring them to scroll through 20+ screenfuls just to get to the next post. If you want to publish a short story like this, please do everyone a favor and blog it somewhere, then provide a brief summary and link to your blog. Readers intrigued by your summary will go read your blog, and everyone else will just move along at normal /. speed. - http://slashdot.org/comments.pl?sid=3573873&cid=43255013 [slashdot.org]

--

I like how this post seems to just sum up every Slashdot comment ever without actually saying anything. - http://slashdot.org/comments.pl?sid=3574283&cid=43256029 [slashdot.org]

--

extremely bright - http://slashdot.org/comments.pl?sid=3574035&cid=43255855 [slashdot.org]

--

You provide many references, which is good. - http://slashdot.org/comments.pl?sid=3574035&cid=43257043 [slashdot.org]

--

Obviously very passionate - http://slashdot.org/comments.pl?sid=3574035&cid=43261975 [slashdot.org]

--

Thanks ... You should probably stay - http://slashdot.org/comments.pl?sid=3577613&cid=43262993 [slashdot.org]

--

Art? -- http://slashdot.org/comments.pl?sid=3569681&cid=43244883 [slashdot.org]

--

PROOF apk sucks donkey dick. - http://slashdot.org/comments.pl?sid=3577639&cid=43263029 [slashdot.org]

--

I've been around /. for a while now, but this post is by far the most unique I've seen. Many have tried, but few achieve the greatness of this AC. My hat's off to you. - http://slashdot.org/comments.pl?sid=3576225&cid=43264325 [slashdot.org]

--

I think it's hilarious. Get over it! - http://slashdot.org/comments.pl?sid=3578301&cid=43265657 [slashdot.org]

--

Obviously APK filled his hosts files with backdoors before distributing them to ensure he doesn't block himself. - http://slashdot.org/comments.pl?sid=3578229&cid=43265767 [slashdot.org]

--

Alexander Peter Kowalski is an obnoxious prick. - http://slashdot.org/comments.pl?sid=3406867&cid=42698875 [slashdot.org]

--

Don't mention that file. Ever. It'll draw APK like a fly to rotting meat. Last thing I want to read is 80 responses worth of his stupid spam about that file! I swear that cocksucker does nothing but search Slashdot for that term and then spams the entire article. - http://slashdot.org/comments.pl?sid=3554655&cid=43209619 [slashdot.org]

--

[to apk] You have had it repeatedly explained to you that your posts are long-winded, unpleasant to read due to your absurd formatting style and full of technical inaccuracies borne of your single minded i-have-a-hammer-so-every-problem-is-a-nail attitude. - http://slashdot.org/comments.pl?sid=3406867&cid=42701491 [slashdot.org]

--

You are my favorite Slashdot poster. - http://slashdot.org/comments.pl?sid=3580251&cid=43270359 [slashdot.org]

--

Most insightful post on the Internet - http://slashdot.org/comments.pl?sid=3579259&cid=43275207 [slashdot.org]

--

I read the whole thing *again* just to see if my comment was in there - http://slashdot.org/comments.pl?sid=3588003&cid=43293069 [slashdot.org]

--

[to apk] So, did your mom do a lot of drugs when she was pregnant? - http://slashdot.org/comments.pl?sid=3586303&cid=43291531 [slashdot.org]

--

people are looking at me funny because I'm laughing hysterically at what a perfect APK imitation it is. - http://slashdot.org/comments.pl?sid=3581991&cid=43278203 [slashdot.org]

--

Slashdot devs seem in no hurry to fix this problem and it's been driving me nuts. So for anybody who values viewing at -1 and uses greasemonkey here's a Script [pastebin.com] . There's a chance of false positives and it's not the most optimized. But I value not having to scroll through > 10 paragraphs of APK, custom hosts files, or 'acceptable ads' spam. - http://slashdot.org/comments.pl?sid=3586291&cid=43287671 [slashdot.org]
--> slashdot devs are too busy installing itunes for their hipster nerd buddys to sort this problem out. - http://slashdot.org/comments.pl?sid=3586291&cid=43290701 [slashdot.org]

--

I can't get enough of all of this good stuff! Thanks for the informative links! - http://slashdot.org/comments.pl?sid=3586291&cid=43287553 [slashdot.org]

--

When threatened, APK typically produces a post with links showing he's essentially posted this hundreds of times to slashdot stories... - http://slashdot.org/comments.pl?sid=3586291&cid=43290275 [slashdot.org]

--

[to apk] Your post got downmodded because you're a nutjob gone off his meds. - http://slashdot.org/comments.pl?sid=3586081&cid=43288893 [slashdot.org]

--

[to apk] The reason people impersonate you is because everyone thinks you're a moron. The hosts file is not intended to be used as you suggest. - http://slashdot.org/comments.pl?sid=3591803&cid=43302885 [slashdot.org]
-->What? You don't have a 14MB hosts file with ~1million entries in it? Next you'll probably tell me that your computer doesn't start thrashing and take 5 minutes for a DNS lookup! - http://slashdot.org/comments.pl?sid=3591803&cid=43302977 [slashdot.org]

--

[about apk] - this fwit is as thick as a post. worse, this shithead has mod points. and using them. - http://slashdot.org/comments.pl?sid=3591681&cid=43302873 [slashdot.org]

--

In before the fight between those two guys and their walls of text... - http://slashdot.org/comments.pl?sid=3592647&cid=43306485 [slashdot.org]

--

HEY APK YOU ARE A WASTE OF OXYGEN -GET A LIFE - http://slashdot.org/comments.pl?sid=3593009&cid=43308147 [slashdot.org]

--

KPA ...thgim dik a ekil .s.b laivirt hcus no emit hcum taht etsaw t'ndluow I sa ,ti gniod em TON si ti - syug ON - http://slashdot.org/comments.pl?sid=3592933&cid=43307605 [slashdot.org]

--

[to apk] You seriously need to go see a shrink. You are a fucking fruitcake! - http://slashdot.org/comments.pl?sid=3592933&cid=43307559 [slashdot.org]

--

[to apk] Did you ever consider that it's not just one corrupt moderator, it's a bunch of regular slashdot users who infrequently get mod points who think you are totally full of shit? Stop posting annoying off topic irrelevant bullshit, and people won't mod you down. I'm seriously sick of reading your posts about someone impersonating you. - http://slashdot.org/comments.pl?sid=3592933&cid=43308389 [slashdot.org]

--

[to apk] you should be forced to use a cholla cactus as a butt-plug - http://slashdot.org/comments.pl?sid=3592647&cid=43308219 [slashdot.org]

--

[to apk] No one is on your side, that is why you're here. posting. still. No one cares. - http://slashdot.org/comments.pl?sid=3595009&cid=43310903 [slashdot.org]

--

Who's the more moronic? The original moron, or the one who replies to him knowing full well his comment will certainly be ignored, if not entirely unread, thus bringing the insane troll post to the attention of those who would otherwise not have seen it at all (seeing as it started at 0 and would have rapidly been modded down to -1) and whose post (and, somewhat ironically I grant you, this one as well) now requires 3 more mod points to be spent to hide it? - http://slashdot.org/comments.pl?sid=3593207&cid=43311073 [slashdot.org]

--

[to apk] I miss trollaxor. His gay porn world of slashdot executives and open-source luminaries was infinitely more entertaining than this drivel. - http://slashdot.org/comments.pl?sid=3593207&cid=43311225 [slashdot.org]

--

PLEASE stop modding biters up. Anyone who responds to an abvious troll, especually one of these APK trolls, should autometically get the same -1 troll as the damned troll. Any response to a troll only makes the troll do more trolling. Come on, guys, use your brains -- it isn't that hard. Stop feeding the damned trolls! - (missing link)

--

[to apk] Lick the inside of goatse's anus, it's delicious! - http://slashdot.org/comments.pl?sid=3589605&cid=43301757 [slashdot.org]

--

Excellent post A++++++++++++ would scroll past again!!!! - http://slashdot.org/comments.pl?sid=3595009&cid=43312407 [slashdot.org]

--

[to apk] You are the one who is pitiful. If you didn't spam /. with your bullshit you wouldn't have spammer 'impostors' doing the same. Just fuck off and die already, ok? Please, really. Step in front of a bus. Drink some bleach. Whatever it takes, just FUCK OFF and DIE. - http://slashdot.org/comments.pl?sid=3595851&cid=43313459 [slashdot.org]

--

[to apk] From one AC to another please for the love of god, PRINT YOUR HOST FILE OUT AND CRAM IT DOWN YOUR JAPS EYE!!! For fucks sake we don't care we see this and it takes the piss, short of a full frontal lobotomy what will it take to stop you posting this you moronic fuckwit? - http://slashdot.org/comments.pl?sid=3596285&cid=43314755 [slashdot.org]

--

[to apk] And someone forgot to take his meds today...Are you really that dense that you cant tell that the only reason the "impostor" exists because you have a hard time realizing that you are wrong and/or wont let it go. It would take a complete moron to not realize that the whole reason he continues to do it is because he knows he can get you to respond by simply posting. This isnt rocket science, this is internet 101... Let me offer you some advice on how to get rid of this "impostor"...shutup - http://slashdot.org/comments.pl?sid=3595561&cid=43313235 [slashdot.org]

--

[to apk] If you had a 'luser' account it wouldn't be a problem. But you don't want one of those, because your long rambling and bizarrely formatted posts mean your karma gets nuked in next to no time. So I guess you just have to work out which is 'worth it'. Posting AC because I don't want to become your latest fixation. - http://slashdot.org/comments.pl?sid=3593207&cid=43314397 [slashdot.org]

--

I wouldn't be surprised if that is APK trying to draw attention to himself, since he thinks such endless tirades are examples of him winning and make him look good. When people stop paying attention to him, or post actual counterpoints he can't come up with a response to, he'll post strawman troll postings to shoot down, sometimes just copy pasted from previous stories. - http://slashdot.org/comments.pl?sid=3592647&cid=43308851 [slashdot.org]

--

[to apk] No one wants to read your copy pasted crap. Maybe someone is mocking you because you make it so easy to? So drop it, and participate like an adult please. - http://slashdot.org/comments.pl?sid=3596383&cid=43315069 [slashdot.org]

--

Seriously.... What. The. Fuck. Can you two homos just go make out on brokeback mountain already, and stop talking about how one of you misspelled "penetration", and how the other cockblocks with their hosts files while grabing the other's goat? Goodness, it sure feels like being in a mountain range, trying to peer around those fucking orbital tether lengthed posts of pure premium bullsit the two of you somehoq manage to keep pushing out on demand. Shit stinks! At this point, i'd be willing to risk the fucking extinction of all life on earth by redirecting siding spring C/2013 1A to miss Mars and land on both of your fucking heads instead. The deaths of billions would be a small price to pay to shut you two cackling lovebirds up! - http://slashdot.org/comments.pl?sid=3596513&cid=43315327 [slashdot.org]

--

[to apk] Listen up jackass, why the hell would somebody want to impersonate you? You're a certified internet kook. Nobody gives a hot about your 3 gig hosts file. And nobody is impersonating you. You're already a fucking parody. - http://slashdot.org/comments.pl?sid=3596557&cid=43315579 [slashdot.org]

--

[to apk] You have had it repeatedly explained to you that your posts are long-winded, unpleasant to read due to your absurd formatting style and full of technical inaccuracies borne of your single minded i-have-a-hammer-so-every-problem-is-a-nail attitude. Despite this advice you are convinced that your comments are valuable contributions, ignoring the obvious evidence to the contrary (namely the -1 scores your posts earn on a regular basis). - http://slashdot.org/comments.pl?sid=3406867&cid=42698875 [slashdot.org]

--

[about apk] Can this be killed off? I don't mean this account, I mean the actual meatbag behind it. - http://mobile.slashdot.org/comments.pl?sid=3598035&cid=43319201 [slashdot.org]

--

[to apk] Get an account retard. If you format your password as crazily as your posts no-one will ever crack it. - http://mobile.slashdot.org/comments.pl?sid=3598035&cid=43319999 [slashdot.org]

--

[to apk] You are the most consistently annoying creature on the internet. There are people worse than you, just like cancer is worse than psoriasis, but you're more like the latter: pervasive, annoying, and always cropping up when one has mostly forgotten about it. You are that indeterminate, continuous itching that slowly erodes someone's mood until they consider cutting off a part of themselves just to stop it for a while. And like psoriasis, you're auto-immune and not fully understood by science. Slashdot continuously makes it worse by scratching that itch over and over again. It's not smart. It just encourages the disease. But everybody's got a limit to their patience. There is no cure for you. But at least, when slashdot dies, you will die with it, and there will be peace. - http://slashdot.org/comments.pl?sid=3626185&cid=43394107 [slashdot.org]

--

SOME QUOTES REMOVED FOR SPACE CONSTRAINTS - MIRRORED HERE:
http://pastebin.com/Cm0HHC66 [pastebin.com]

-o-o-o-o-o-o-o-

Did you see the movie "Pokemon"? Actually the induced night "dream world" is synonymous with the academic religious induced "HOSTS file" enslavement of DNS. Domains have no inherent value, as it was invented as a counterfeit and fictitious value to represent natural values in name resolution. Unfortunately, human values have declined to fictitious word values. Unknowingly, you are living in a "World Wide Web", as in a fictitious life in a counterfeit Internet - which you could consider APK induced "HOSTS file". Can you distinguish the academic induced root server from the natural OpenDNS? Beware of the change when your brain is free from HOSTS file enslavement - for you could find that the natural Slashdot has been destroyed!!

FROM -> Man - how many times have I dusted you in tech debates that you have decided to troll me by ac posts for MONTHS now, OR IMPERSONATING ME AS YOU DID HERE and you were caught in it by myself & others here, only to fail each time as you have here?)...

So long nummynuts, sorry to have to kick your nuts up into your head verbally speaking.

cower in my shadow some more, feeb. you're completely pathetic.

-o-o-o-o-o-o-o-

* :)

Ac trolls' "BIG FAIL" (quoted): Eat your words!

P.S.=> That's what makes me LAUGH harder than ANYTHING ELSE on this forums (full of "FUD" spreading trolls) - When you hit trolls with facts & truths they CANNOT disprove validly on computing tech based grounds, this is the result - Applying unjustifiable downmods to effetely & vainly *try* to "hide" my posts & facts/truths they extoll!

Hahaha... lol , man: Happens nearly every single time I post such lists (proving how ineffectual these trolls are), only showing how solid my posts of that nature are...

That's the kind of martial arts [google.com] I practice.

-o-o-o-o-o-o-o-

Disproof of all apk's statements:

OLD POST LINKS MIRRORED HERE (UPDATED 3/29):
http://pastebin.com/XdQRNeQ4 [pastebin.com]

RECENT POST LINKS:
http://slashdot.org/comments.pl?sid=3595715&cid=43312649 [slashdot.org]
http://slashdot.org/comments.pl?sid=3595851&cid=43312901 [slashdot.org]
http://slashdot.org/comments.pl?sid=3595843&cid=43314741 [slashdot.org]
http://slashdot.org/comments.pl?sid=3595851&cid=43314853 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596383&cid=43314951 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596285&cid=43315101 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596285&cid=43315113 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596513&cid=43315283 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596557&cid=43315701 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596725&cid=43317341 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598005&cid=43317813 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598129&cid=43318101 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596709&cid=43318587 [slashdot.org]
http://slashdot.org/comments.pl?sid=3596889&cid=43318605 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598019&cid=43319227 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598035&cid=43319241 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598225&cid=43319965 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598641&cid=43319983 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598833&cid=43320815 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598839&cid=43321211 [slashdot.org]
http://slashdot.org/comments.pl?sid=3598779&cid=43321987 [slashdot.org]
http://slashdot.org/comments.pl?sid=3626185&cid=43399235 [slashdot.org]
http://slashdot.org/comments.pl?sid=3624213&cid=43399253 [slashdot.org]
http://slashdot.org/comments.pl?sid=3654751&cid=43467437 [slashdot.org]
http://slashdot.org/comments.pl?sid=3654575&cid=43467451 [slashdot.org]
http://slashdot.org/comments.pl?sid=3651853&cid=43467471 [slashdot.org]
http://slashdot.org/comments.pl?sid=3655151&cid=43467497 [slashdot.org]
http://slashdot.org/comments.pl?sid=3647643&cid=43467509 [slashdot.org]
LIST MAY BE INCOMPLETE
REPORT MISSING LINKS FOR REWARD (check pastebin archive first)

-o-o-o-o-o-o-o-

DID YOU FIND THIS MESSAGE HELPFUL?
TIP JAR: 1EtLgU5L3jhmVkDmqrWT9VhoZ1F2jSimHS [blockchain.info]
RECEIVED: 0.0195 BTC - thx! ;-)

Quit embarassing yourself Jeremiah Cornelius (0)

Anonymous Coward | about a year ago | (#43473397)

We know it's you doing it Jeremiah Cornelius http://slashdot.org/comments.pl?sid=3581857&cid=43276741 [slashdot.org]

Re:Quit embarassing yourself Jeremiah Cornelius (0)

Anonymous Coward | about a year ago | (#43475875)

Shut up, Paul.

reply (-1)

Anonymous Coward | about a year ago | (#43448595)

Shanghai Shunky Machinery Co.,ltd is a famous manufacturer of crushing and screening equipments in China. We provide our customers complete crushing plant, including cone crusher, jaw crusher, impact crusher, VSI sand making machine, mobile crusher and vibrating screen. What we provide is not just the high value-added products, but also the first class service team and problems solution suggestions. Our crushers are widely used in the fundamental construction projects. The complete crushing plants are exported to Russia, Mongolia, middle Asia, Africa and other regions around the world.
http://www.sandmaker.biz
http://www.shunkycrusher.com
http://www.jaw-breaker.org
http://www.jawcrusher.hk
http://www.c-crusher.net
http://www.sandmakingplant.net
http://www.vibrating-screen.biz
http://www.mcrushingstation.com
http://www.cnstonecrusher.com
http://www.cnimpactcrusher.com
http://www.Vibrating-screen.cn
http://www.stoneproductionline.com
http://www.hydraulicconecrusher.net

milter-greylist (2, Insightful)

Anonymous Coward | about a year ago | (#43448887)

Six years ago, I wrote milter-greylist [hcpnet.free.fr] . At that time I thought some kind of distributed spam traps would be useful. I wrote software for a P2P network of mail servers that exchange signed information on messages reaching spam traps. The thing turned to be useless: greylisting alone was enough. Today, greylisting with variable delays depending on sender reputation from various DNSRBL is still enough, even is the DNSRBL information is not very reliable: an error just means an extra delay in delivery.

Google (1)

ProfessorKaos64 (1772382) | about a year ago | (#43451229)

Gmail does a very decent job at this, but if I wanted to, what is a global Linux/Mac/Windows (maybe not all 3), solution. Seems this Unix fellow only has this spamd utility to run on BSD or your own mail server.

How to get off? (1)

Bigbutt (65939) | about a year ago | (#43452097)

I'm running a physical server in a colo. Unfortunately about 6 months back my server sent a burst of about 5,000 spam messages. I was getting bounce messages on my admin account but with no information as to which account was breached in the bounce message, I'm scrambling about on my system, first shutting down mail, then trying to figure out if I was even sending it or just a victim of a one of the spam tricks. I did see entries in my logs, but I wasn't able to track it down to a specific account. During a second spam run about a month later, being suspicious, I had a copy of all outbound messages being backed up and discovered there was a script someone had uploaded into the root directory of a forum my wife has set up for her hobby. I tracked it down from one of the headers in the spooled messages. I found and killed the script, then did some further work to lock down the directory to keep it from happening again. So far, according to logs, nothing further has gone out.

Unfortunately now I'm on several (dozen?) dns blacklists with no apparent way to get back off. Some will let me query their records (and sure enough I'm in there; I'm not disputing that) but many others just leave it in place based on the bounces I'm getting from pretty much every mail service. So even though I've found the problem and killed it, it seems I can never send e-mail from this IP again.

I've investigated moving to a different ISP but none really give me the control I want (I have full root access to a physical system). And pricewise it's less expensive than a virtual machine at Amazon.

[John]

It needs to address *today's* reality (0)

Anonymous Coward | about a year ago | (#43453341)

I say that because I'd like to meet the folks who run dnsorbs in a dark alley, and *not* call 911 when I leave the alley.

Their "method" of blocking the mailserver of the domain, rather than the domain, *may* have been reasonable 15 or 20 years ago. However, I've been blocked a number of times... several times while living in Chicago, and they blocked the Chicago roadrunner mailserver... which supplied 'Net access to about HALF OF THE CITY OF CHICAGO. These day, I get blocked becuase they decide that my hosting provider's mailserver is the source of spam... when they're one of the very large hosting providers, with hundreds of thousands of domains, which penalizes everyone there, and there is nothing the rest of us can do (and the hosting provider does their best, but there are real world limits).

                  mark

Check for New Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account

Loading...