FairUCE.FairUCE (which stands for "Fair use of Unsolicited Commercial Email") is a spam filter that stops spam by verifying sender identity instead of filtering content. It can stop the vast majority of spam without the use of a content filter and without requiring a probable spam or bulk folder that needs to be checked periodically. As one of the first spam filters that uses sender identity rather than the email content to determine if it is legitimate, all this can be accomplished quickly using simple, inexpensive tests. Content filters require frequent maintenance (AOL (A division of Time Warner, Inc., New York, NY, www.aol.com) The world's largest online information service with access to the Internet, e-mail, chat rooms and a variety of databases and services. estimates that spammers respond within four hours to a change in a content filter) and require a great deal of processing for complex techniques such as bayesian, heuristics, fingerprinting, etc. The techniques spammers use to get past content filters become laughable, because FairUCE doesn't look at what they say, only at who they are. It virtually eliminates spoofed addresses, phishing, and even many viruses with a few cached DNS (Domain Name System) A system for converting host names and domain names into IP addresses on the Internet or on local networks that use the TCP/IP protocol. For example, when a Web site address is given to the DNS either by typing a URL in a browser or behind the look- ups and a couple of if/else statements. Sender identity is the spam-fighting tool of the future. The author of this technology went from over 400 spams a day to just one or two. How does it work? Technically, FairUCE tries to find a relationship between the envelope sender's domain and the IP address of the client delivering the mail, using a series of cached DNS took-ups. For the vast majority of legitimate mail, from AOL to mailing lists to vanity domains, this is a snip. If such a relationship cannot be found, FairUCE attempts to find one by sending a user-customizable challenge/response. This alone catches 80% of UCE (Unsolicited Commercial E-mail) See spam. and very rarely challenges legitimate mail. A future version will incorporate Sender Policy Framework See SPF. (SPF (1) (Stateful Packet Firewall) See stateful inspection. (2) (Sender Policy Framework) An e-mail authentication system that verifies that the message came from an authorized mail server. ) or similar sender identification systems; SPF-enabled domains will not require a challenge. Challenges are sent using a dedicated queue with a short lifetime so it does not get bogged down or interfere with legitimate mail. If a relationship can be found, FairUCE checks the recipients whitelist and blacklist (1) A list of e-mail addresses of known spammers. See spam, spam filter, Blacklist of Internet Advertisers, greylisting and blackholing. Contrast with white list. (2) A list of Web sites that are considered off limits or dangerous. , as well as the domain's reputation, to determine whether to accept, reject, challenge on reputation, or present the user with a set of whitelist/blacklist options. A future version use a real domain reputation system; currently this is implemented as a 'whois' look-up to determine the domains when it first sent mail to the recipent The FairUCE concept is currently implemented as an SMTP (Simple Mail Transfer Protocol) The standard e-mail protocol on the Internet and part of the TCP/IP protocol suite, as defined by IETF RFC 2821. SMTP defines the message format and the message transfer agent (MTA), which stores and forwards the mail. proxy that runs between multiple instances of Postfix post·fix tr.v. post·fixed, post·fix·ing, post·fix·es To suffix. n. A suffix. post·fix on Linux. QMail and Sendmail support are being considered. It should be possible to use existing mail servers) on the inside of the proxy. http://.alphaworks.ibm.com.tech.fairuce |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion