Storage News
Security News
Networking News 
FREE NEWSLETTERS
search
 

internet.commerce
Be a Commerce Partner
Domain registration
Free Business Cards
KVM over IP
Dental Insurance
Remote Online Backup
Online Education
Build a Server Rack
SMS Gateway
KVM Switches
Prepaid Phone Card
Boat Donations
Car Donations
Promotional Golf
Imprinted Gifts

internet.com
IT
Developer
Internet News
Small Business
Personal Technology
International

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers


  Generate Revenue Through IT Using Business Service Management
Sponsored by HP
Making sure that your business applications are available to their end users is an important part of running your business smoothly. Business operations have evolved to where IT must now broaden its focus to help the company attract, retain and grow customer relationships and increase customer satisfaction. Business service management (BSM) helps lay the foundation by managing services in dynamic support of business requirements. »
 
  Managing the Modern Network
Sponsored by HP
Networks are more than vehicles to transport e-mail and Web pages. In a global economy where information crosses the globe in an instant, and where Web-based applications power business, it's more important than ever to ensure your network is safe from threats and optimized to deliver the data your business needs. »
 
  Storage Networking 2, Configuration and Planning
Sponsored by HP
In Part 1, we discussed storage area networks (SANs) and fibre channel. In Part 2, delve into best practices and cover the general concepts you must know before configuring SAN-attached storage. The most critical, sometimes tedious, part of setting up a SAN is configuring each individual disk array. This guide examines configurations for SAN-attached servers and disk arrays, and also includes a look at the future of IP storage. »
 
  Is Your Disaster Recovery Plan Good Enough? Get Disaster Recovery Right
Sponsored by HP
Preparing for a disaster is more often than not part of the storage planning process, and without question it is one of the most difficult task, since it includes local hardware and software, networking equipment, and a test plan to ensure that you can recover from the disaster. Learn how to put your organization on the proper disaster recovery plan, now. »
 

Security Products
 Message Classification / Document Classification (Titus Labs)
 IronKey (IronKey, Inc)
 Mazu Profiler (Mazu Networks, Inc)
 MHZ2 CJ Series (Fujitsu Computer Products of America, Inc)
 Secure Mail / Secure DOX (Echoworx Corp)
 Enterprise Security Reporter (ScriptLogic Corp)
» Enterprise IT Planet » Security » Security Features

Keep up with the latest business and technology news and information! Visit Internet.com.

Stopping Spam before the Gateway: Honeypots

By Steven J. Vaughan-Nichols
November 13, 2003

Email Print Digg This Add to del.icio.us
Do you want to be aggressive, very aggressive in stopping spam? Then what you might want to do is to set up a fake open proxy or e-mail relay as a honeypot.

Honeypots are an ancient, but still effective security tool. Traditionally a honeypot is a server that looks like it has very attractive files and has a security hole in it. Crackers will then break into the honeypot in search of pirated copies of games, trade secrets or such.

In reality, there's nothing of any real value in the honeypot. By watching who breaks into the honeypot, you can audit would-be attackers as they hunt for the goodies until you know exactly who they are and you can then put the cuffs on them.

Some black-list administrators, notably Ron Guilmette, has taken this basic idea and turned it into an anti-spam approach. It works in exactly the same way. Since a spammer doesn't know what proxies or relays are open to abuse by spammers, they are constantly testing sites for new and vulnerable relays. In fact, a spammer probably has no idea what sites he is using to spread spam. Most simply rely on automatic scripts to find new sites as old open relays are either fixed or knocked off the net by being listed on a blacklist.

If you're not sure yourself about whether your mail servers are open, you should get a copy of Mail Relay Tester or run the Abuse.net mail relay test, and test out your own system.

If you're well past the point of needing such tools, you may be ready to try to nail spammers with a honeypot. The most basic way to do it is to simply set up an insecure mail server, aka relay, and wait for the spammers to come to you.

Then, one simply reads your incoming log for visitor's IP address, looks up what ISP owns that IP address and report to the ISP that they have a spammer at X IP addresses as a member. Or, as Brad Spencer, a retired systems manager for the University of Wisconsin and honeypot advocate puts it, "Boom! There went the much-exaggerated 'anonymity' of the spammers."

If you don't want to build your own open relay honeypot, you can simply download a complete package like Jackpot, which is a ready-to-run Simple Mail Transport Protocol (SMTP) relay honeypot, Bubblegum Proxypot. Bubblegum is written in Perl and runs on Linux, but its developer believes that it should run on most Perl-friendly systems.

Page 2: With Rewards Come Risks

Go to page: 1  2  Next  

Email Print Digg This Add to del.icio.us

Security Features Archives

eBook: Evaluating Software as a Service for Your Business. Sponsored by Webroot
Sophos Whitepaper: Assessing Endpoint Security Solutions--Why Detection Rates Aren't Enough
HP eBook: Using Business Service Management (BSM) to Manage Your Business Applications
Best Practices: Make the Case for IT Investments. Complimentary Independent Report. Download Now!
What's The Future Of IT? Find Out By Reading "IT in 2018" Now. Free Registration Required.





JupiterOnlineMedia

internet.comearthweb.comDevx.commediabistro.comGraphics.com

Search:

Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia

Jupitermedia Corporate Info


Legal Notices, Licensing, Reprints, & Permissions, Privacy Policy.

Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers

Solutions
Whitepapers and eBooks
Microsoft Article: Will Hyper-V Make VMware This Decade's Netscape?
Microsoft Article: 7.0, Microsoft's Lucky Version?
Microsoft Article: Hyper-V--The Killer Feature in Windows Server 2008
Avaya Article: How to Feed Data into the Avaya Event Processor
Microsoft Article: Install What You Need with Windows Server 2008
HP eBook: Putting the Green into IT
Whitepaper: HP Integrated Citrix XenServer for HP ProLiant Servers
Intel Go Parallel Portal: Interview with C++ Guru Herb Sutter, Part 1
Intel Go Parallel Portal: Interview with C++ Guru Herb Sutter, Part 2--The Future of Concurrency
Avaya Article: Setting Up a SIP A/S Development Environment
IBM Article: How Cool Is Your Data Center?
Microsoft Article: Managing Virtual Machines with Microsoft System Center
HP eBook: Storage Networking , Part 1
Microsoft Article: Solving Data Center Complexity with Microsoft System Center Configuration Manager 2007
MORE WHITEPAPERS, EBOOKS, AND ARTICLES
Webcasts
Intel Video: Are Multi-core Processors Here to Stay?
On-Demand Webcast: Five Virtualization Trends to Watch
HP Video: Page Cost Calculator
Intel Video: APIs for Parallel Programming
HP Webcast: Storage Is Changing Fast - Be Ready or Be Left Behind
Microsoft Silverlight Video: Creating Fading Controls with Expression Design and Expression Blend 2
MORE WEBCASTS, PODCASTS, AND VIDEOS
Downloads and eKits
Sun Download: Solaris 8 Migration Assistant
Sybase Download: SQL Anywhere Developer Edition
Red Gate Download: SQL Backup Pro and free DBA Best Practices eBook
Red Gate Download: SQL Compare Pro 6
Iron Speed Designer Application Generator
MORE DOWNLOADS, EKITS, AND FREE TRIALS
Tutorials and Demos
How-to-Article: Preparing for Hyper-Threading Technology and Dual Core Technology
eTouch PDF: Conquering the Tyranny of E-Mail and Word Processors
IBM Article: Collaborating in the High-Performance Workplace
HP Demo: StorageWorks EVA4400
Intel Featured Algorhythm: Intel Threading Building Blocks--The Pipeline Class
Microsoft How-to Article: Get Going with Silverlight and Windows Live
MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES