Merlin’s weekly podcast with Dan Benjamin. We talk about creativity, independence, and making things you love.
Open thread: Favorite spam blocker service?
Merlin Mann | May 21 2006
I've been relatively fortunate with filtering spam over the past couple years (knock on wood). But despite a kickass three-tiered system that includes the world-beating server-side Sieve, plus Mail.app's pretty good client filtering, it's inevitable that even my best-loved private email addresses would find their way into the wrong hands (it's why I recently created "ThanksNo.com" -- an experiment in social re-engineering that you are free to use as well). So, now that the spelling-impaired Lords of The Dark Side have such renewed interest in my investment options and genital proportions, I'm considering joining a service like Spam Arrest or the apparently deceased Knowspam. I mostly plan to run this on the addresses I use for strictly personal stuff, so I'm satisfied I can start with a "whitelist" to ensure I don't generate loops or dead ends for the "good" senders. But, you tell me... Apart from running smart filters on your server and in your mail client, what's the best way to protect a mydomain.com-type email address from becoming compromised and punked-out? What are the dangers and cons of using a challenge/response service like Spam Arrest? Apart from abandoning it wholesale, what's the most effective and non-annoying way to rehabilitate a compromised address? 57 Comments
POSTED IN:
 I highly recommend using grey-listing....Submitted by John Romkey (not verified) on May 21, 2006 - 9:06am.
I highly recommend using grey-listing. Grey-listing is a simple technique; your SMTP server simply says it can't currently accept email when it gets a request from an unknown address, and tells the sender to try again later. If the email is from a known, white-listed address, it comes through immediately. This weeds out the vast majority of spam which is being sent via open relays and one-time use of an IP address that's been hijacked for spamming. It's within specification for SMTP. Almost all the potential spam I would have received is weeded out by grey-listing. It doesn't tend to help with Nigerian-scam-style spam, as they usually use free mail hosting email addresses. It's only caused problems with real senders once or twice; they're people whose SMTP clients didn't properly implement SMTP. Given that you don't generally want your email to interrupt you, delaying it a bit shouldn't be a problem. There are good resources for it at http://www.greylisting.org/ » POSTED IN:
|
|
| EXPLORE 43Folders | THE GOOD STUFF |
