Filtering form content?
Mon, 2006-09-11 14:28 — tafinucane
Wouldn't a spamming company be able to easily remove the thousands of "please don't send me email" POST bodies? It seems the only way this can be effective is if it is a DOS attack.
Similar entries
Poll
Do you think Blue Frog was the best or Black Frog is or is going to be better ?
Blue Frog was better
44%
Balck frog is better or is going to be better
56%
Total votes: 73
Recent comments
- Re: Cash Till Payday Loans: Money Your Pocket Right Away
1 week 2 days ago - Re: Knujon.com
1 week 4 days ago - Re: Upside Down Car Loans
2 weeks 5 days ago - Re: Cash Till Payday Loans: Money Your Pocket Right Away
3 weeks 13 hours ago - Re: SPAM SOFTWARE I JUST FOUND
3 weeks 1 day ago - Re: Fighting SPAM, PHISHING and INTERNET FRAUD
3 weeks 3 days ago - To be a winner....
3 weeks 3 days ago - Re: Myers Briggs Personality Test
5 weeks 9 hours ago - Re: Mortgage Loan Refinance, Refinancing Mortgage Loans, Mortgag
5 weeks 4 days ago - Re: BLACK FROG
5 weeks 6 days ago
Syndicate
No, no, no.
Haven't you guys heard? An expert recently published a paper about (& code that is very good at) getting around captchas. It's in the 90-something percent range of accuracy. It would take very little time to integrate this into Okopipi since the code is already out there.
More details
Even More details
maybe
sure, they might beable to, the goal is to post on their order form and depending on how its set up it may not be that easy. we might have to do some random letter generating our selves, we will use the spammers tactics to our advantage. If the okopipi community gets big enough, a side effect could flood the server, and generate lots of costly bandwidth. I think one way or another we will get their attention.
--------
Project Admin
Bandwidth...
a side effect could flood the server, and generate lots of costly bandwidth. I think one way or another we will get their attention.
Bandwidth is the only thing which actually costs a spammer money. I think the "form filling" plan is a waste of time because spammers can simply put up captchas and it's game over.
I'm more for sucking their servers dry. The ideal scenario for me wouldn't be a DOS/flood attack (which just prevents other people from getting through), it'd be to get their servers running continually at 95% bandwidth. Bandwidth costs them actual money and would get their attention faster than anything else.
The way to do it is to go to their servers, find some image files and start downloading them over and over again. There's a script out there called spam vampire which does this but spammers are getting wise to it and making their sites more spam-vampire-proof (you have to download the HTML as well as the images).
that is illegal
There are many places that do that, but that is illegal. some captchas can be "cracked", and if we can't then we will find another way. We are trying to keep Okopipi as legal as possible.
--------
Project Admin
Illegal?
"There are many places that do that, but that is illegal."
Downloading a web site that you have a written invitation to go and visit is illegal...? Please don't post drivel.
You are mistaken
uhm yes it is illegal, you are constantly redownloading the same files in an attempt to use bandwidth, you are indeed attacking the website, its called a vampire attack. Now maybe you are saying each client only downloads the site for each spam sent, even that isnt much bandwidth, websites don't use much bandwidth unless they are heavy flash sites.
You seem to think the CAN-SPAM Act gives you more power than it really does. The most you can do is complain (1 per spam) and they 10 business days to remove you from their list.
Again Asking you to come to my webpage is not inviting you to download files a bunch of times with the intent on using bandwidth.
--------
Project Admin
Attacking web sites...
uhm yes it is illegal....
Maybe, I'm not a lawyer and neither are you, but:
How exactly do you think a spammer will sue people? Even the RIAA has trouble getting names and addresses out of ISPs and they've bribed the US congress to pass laws in their favour want as much publicity and police involvement as possible.
Do you think a Russian spammer can do this...?
Clue: "No."
Because we want users
fungus_b, we want users. Once this thing gets going, we want Joe Sixpack and his grandma to feel comfortable using the Okopipi software. The more users we have, the more power.
Do you seriously want the media reviews to explain to potential users that our policy is "we know it's illegal -- but the spammers probably can't prosecute us because it's anonymous!"
Clue: "No."
Do we want the reviews to say "and it's totally legal, based on the CAN-SPAM act and other laws, because they only submit one removal request per spam?"
Clue: "Yes."
not the point
It isn't about if they can find us or not. Just because you can get away with somthing doesn't make it legal.
--------
Project Admin
I've got the solution!!
OK here's all we have to do. Some crack programmer just invent a way to punch someone in the face through TCP/IP. Hey if we can put a guy on the moon why can't I punch someone in the face over the internet?? :) LOL
Ok a very sad attempt at humor but sometimes ya just gotta laugh or say WTF
bash.org
Sounds like that bash quote...
--------
Project Admin