9Jan 07

New year, same problems

Posted by Steven Deare @ 12:15 9 comments

As we embark on a new year, the industry hype-machine is slowly warming up to sell us new technologies that will make our jobs easier in 2007. Rest assured though that some problems will remain, like spam.

Over the last couple of months I've heard and read anecdotes from some organisations that the spam problem is as big as it's ever been. One government body recently said it found more spammers were including picture files in spam e-mails to complicate screening. I wonder how many organisations sent out warnings to users about Christmas or New Year spam e-mails containing viruses (which is almost standard practice by IT departments these days)?

So rather than ask for your technology wish-list, I'm asking whether you believe you can make serious inroads against age-old problems, like spam, this year?

In recent months ZDNet Australia has covered some organisations opting for alternatives to the usual installation of Norton Anti-Virus to fight the spam problem. The Northern Territory government opted for SurfControl, while CSC decided to give MessageLabs a try.

What sort of investment would it take for you? Increased mail server capacity? New software licensing? And can you afford it?

If you're a Cisco customer, has the networking giant's recent acquisition of IronPort Systems given you any reason for optimism?

For me, I can't help but agree with colleague Renai LeMay, who insists Google should open source Gmail's antispam algorithm, which does the job very effectively.

As Renai puts it, the world NEEDS this technology!

Talkback 9 comments

Huh? Anonymous -- 10/01/07

OK spammers, this is the algorithm we use for determining if something is spam...din't abuse it boys and girls!

Apart from that, blocking spam at egress is sub-optimal at best. Ingress is where the battle is.

Point taken, however... Steven Deare -- 10/01/07 (in reply to #320072751)

I take your point, which was promptly pointed out to me shortly after publication.

Perhaps a better wording of what we mean would be to say we wish Google would license the technology to other anti-spam vendors.

We can dream, can't we?

Other alternatives Anonymous -- 11/01/07

Govt should also try open source alternatives such as spamassassin. I am sure that this would do the trick, without the ji-normous price tag. I am sure that the tax payer would appreciate this!

Good Idea Anonymous -- 11/01/07 (in reply to #320072794)

I agree wholeheartedly.

It will never happen though because the vast majority of Govt departments have outsourced their Secure Internet Gateways to huge multi-nationals who in turn have deals with proprietary software firms.

You think they will touch open source?

It scared me working at a federal dept for a short time (which was too long), the blind faith these outsourcers put in Server 2003 :( Any mention of Open Source was usually greeted with a blank look.

personal responsibility Anonymous -- 22/01/07 (in reply to #320072809)

Yes, I can understand what you are saying. I guess there are varying levels of personal responsibility IT deparments are willing to take for IT services. Personally I think that most would rather keep an arms length from the responsibility and buy these 'outsourced' security solutions. Open source probably wont get a look in at evaluation time as there are no glossy brochures, no jet sales people and investing in time to install and test and learn seems all too hard. This is very sad, because most of the time the open source alternative is just as good, if not better and shows the a downfall in technical expertise at the top.

SpamAssassin Andy Goss -- 12/01/07 (in reply to #320072794)

My ISP uses Spamassasin to point up probable spam. However, recently only a minority of spam emails are being detected, probably because the "spammy" bits are in blurry gifs and SpamAssassin cannot read them. As a result the emails look very strange, I can't imagine anyone taking them seriously but someone must or there would be no point.
Spam detection is no solution, we need spam prevention, the technology to strangle the sources before they clog the wires.

Does not sound right... Anonymous -- 18/01/07 (in reply to #320072854)

Your ISP may not be maintaining / tuning spamassassin. I have rolled out spamassasin at a Local Govt entity with brilliant results. This solution replaced symantec anti-spam wich was absolutely *hopeless* (and very expensive!).

What ???? Anonymous -- 28/01/07 (in reply to #320072794)

Are you retarded ?
No way any Public Servants will go for something like SpamAssassin...

......because their Microsoft rep and Gartner didn't say so!

Sad but true.

OpenSPF Darrell Beveridge -- 17/01/07

If the protocols discussed on the site OpenSPF.org were made mandatory by mail servers, then we could at least cut out the problem of people spoofing emails, which is starting to become as big of a problem as standard spam.

Scott Mckenzie

News Editor

1) Apple iPhone 3GS 32GB	35 plans	2%
2) Apple iPhone 3GS 16GB	35 plans	2%
3) Sony Ericsson Satio	6 plans	1%
4) Nokia N97	42 plans	2%
5) Blackberry Curve 8520	6 plans	1%

1) Apple mobile phones	5%
2) Nokia mobile phones	4%
3) Sony Ericsson mobile phones	1%
4) Samsung mobile phones	2%
5) Blackberry mobile phones	1%

Disaster Recovery by Scott Mckenzie

New year, same problems