Advertisement
Promo

Security threats Toolkit

DDoS attack shuts down anti-spam blacklist

Patrick Gray ZDNet Australia

Published: 27 Aug 2003 11:00 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Osirusoft, one of the largest anti-spam blacklists, has been shut down by its operator following a barrage of massive Distributed Denial of Service (DoS) attacks that have crippled the service.

Services such as relays.osirusoft.com have come under fire recently for blocking legitimate email as well as spam.

The service used a variety of techniques to maintain a real-time dynamic list of IP addresses that are known to have spam originate from them. By using the list in real time, a mail server can determine if it should accept and process a message or disregard it as spam.

Managing director of Australian broadband provider Ideal Internet Services, Darren Worley, doesn't use blacklists as a general rule. "We don't use them for various reasons... it's about controllability. You're passing control to some other entity, and if you're not in control of your own mail servers then it's a problem for your own business."

Lists such as Osirusoft are a good idea, Worley says, but don't work as well as they could because of practical concerns. "The alternative is a whitelist. If you're a known, good custodian of a mail server and you're not an open relay then certainly a whitelist is an attractive option," he said.

However the goal of assembling a comprehensive blacklist and a whitelist "known spammer", "known responsible" database just isn't going to happen, Worley said. "It would take every mail server in the world to subscribe to it."

At this stage no statement has been made from the operator of the service, but the industry speculates the service may come back in a different form when DDoS attacks from spammers have subsided.

Worley says administrators shouldn't be too concerned about permanently losing mail sent to servers configured to use the list -- it's more likely to simply disrupt email delivery. "Most mail transfer agents do an obligatory 'try for 5 days' to deliver mail, depending on the errors of course," he said.

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
82 out of 126 people found this useful


In association with Network Liberation Movement

Talkback

Post a comment


Full Talkback thread

3 comments

  1. Please do your re-search properly. Osirusoft is a... Anonymous
  2. I'm glad they shut this guy down. His draconian ap... Anonymous
  3. Draconian or not, the UCE debacle is being caused... Clay Le Beouf

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:






Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

DNA details of innocent will be kept f...

The government has announced that it plans to keep innocent people's DNA details for up to six years. In response to a consultation it launched last December, the government said... More

4 comments

Motorola Droid Drops Today: Happy Droi...

Motorola Droid Drops Today: Happy Droid Day America! Author: Eric Everson, Mobile Security Expert If you’re wondering what all of the buzz is about with words like Droid and Android... More

Post a comment

Mobile Security Profile: BlackBerry St...

Mobile Security Profile: BlackBerry Storm2 Author: Eric Everson BlackBerry handsets are a staple of office culture; from syncing calendars to sharing business-related data,... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters