Are blacklists killing more than spam?

But have some of the muscular responses to unsolicited bulk e-mail, such as blacklists that target Internet providers used by spammers, created problems of their own?

On Thursday, participants at a three-day spam summit convened by the Federal Trade Commission sparred over whether such blacklists are legal and whether they do more harm than good. Some speakers warned their use means that legitimate e-mail is often lost or silently discarded--becoming an accidental casualty in the war on spam.

Margie Arbon of the Mail Abuse Prevention System defended the practice of blacklisting, in which activists create and publish a list of Internet addresses that are linked with spammers. Internet service providers and individuals can subscribe to the list and use it to discard messages that originate from addresses on it.

"Blacklists are a decision by the owner of the equipment," Arbon said. "They are trying to defend their property...They are being inundated by this mail."

But the practice came under fire from J. Trevor Hughes, director of the Network Advertising Initiative's Email Service Provider Coalition, whose members include DoubleClick, credit agency Experian and companies that sell high volume e-mail marketing campaigns. Hughes contended that financial statements and other important e-mail have been lost because of accidental or intentional entries on blacklists. "Those are all messages that have suffered because of blacklistings and false positives," he said.

The FTC summit is the first serious evaluation of blacklists undertaken by the federal government, even though the technique has been the target of criticism for frequently blocking mail that is not spam. A particularly controversial "guilt-by-association" approach employed by some list operators places an entire ISP or hosting service on a blacklist merely because one of its users is a spammer.

In February, Microsoft's MSN accidentally blocked incoming messages from rival ISPs, including AOL Time Warner's RoadRunner broadband service and EarthLink. And, as first reported by CNET News.com last November, the FTC itself adopted blacklists that blocked some legitimate e-mail to agency staff.

Brian Huseman, a staff attorney in the FTC's division of marketing practices, said the agency was reviewing its approach. "We're in the process of examining those blacklists," he said.

While blacklists may not break the law, they could amount to irresponsible censorship, said Cindy Cohn, legal director for the Electronic Frontier Foundation. Cohn warned of "private entities and anonymous entities deciding which of your mail gets through and which doesn't get through." She added that hobbyists and nonprofit groups operating mailing lists have encountered an increasing number of problems.

"EFF has received complaints from noncommercial listserv owners that they have ongoing problems getting their solicited messages through," Cohn said, adding that EFF had begun to draft a list of "best practices" for blacklist operators to follow.

While blacklists can be effective in reducing spam, critics say they can be applied in a secretive and unaccountable way. In response to a question from the FTC, Spamhaus' Alan Murphy refused to say which ISPs were using the organisation's blacklist and, citing current litigation, would not reveal what procedure is used to add addresses to it.

One panelist suggested that blacklists could run afoul of the law by interfering with business relationships. Another panelist, Michael Grow of the Arent Fox law firm, disagreed. "If you conduct a reasonable investigation and form an opinion that someone is the source of spam or a particular Internet Protocol address is being used (for spamming), there's a First Amendment right that attaches to that."

• Related stories

• Alerts

Add your opinion

I’m finding that more and more ...John Taylor -- 02/05/03

I’m finding that more and more of my legitimate, opted in e-mail is being blocked. This is a result of blacklists being run against mail servers regardless of who the actual e-mail is from. This is a blanket approach to the problem that might stop a couple of spammers but also blocks hundreds of legitimate users. So I fail to see why this would be a fair and reasonable thing to do.

Now I hate spam as much as anyone, but current methods do not capture spammers at the source. Interestingly, I get vast majority of spam on my Telstra bigpond cable mail account. This is an e-mail address that has never been published, has not been given to anyone and is never used to send e-mail.

Now I wonder how that happened and is it a coincidence that Telstra are now offering to sell anti spam filters?

• Reply to comment
• Reply to story
• Report offensive content

Sorry to all those that think ...Anonymous -- 02/05/03

Sorry to all those that think that blocking spam via blacklists is bad, but when youve been on the receiving end of over 20Gb of 7k messages in 2 days, and the problem continues for 7 days solid, and the gradually abates over the next 3 weeks, you can image the costs that start to add up. We received over 50Gb of useless data, costing us money, causing me an an engineer to repond to critical server issues lasting into the early hours of saturday morning, such as low disk space, and memory exhaustion due to huge number of connections and incoming data.

It cost us in reengineering of our network to add redundancy in the event of a link being exhausted again like this, and to allow legitimate email to get into the organisation. It cost us in manhours trying to find a solution to mitigating the sheer barrage of email we were receiving.

This all happened because some spammer decided that he would use the domain name of a customer we host as the source address for the emails (forged) resulting in many millions of emails bouncing back undeliverable. I can attest to the sheer volume of email sent, and I can tell you that I have no sympathy for those that get upset because their server gets blacklisted.

Ive had to consult for sites that were blacklisted, and as far as I am concerned, the end result -- a closed spam-relay -- is a much better solution than attacking the blacklist filters.

Its the network operators choice as to whether they accept email from another network. Not your right to send to that person. If you get blocked because you are providing financial support to an ISP that doesnt care about spam, then use your ability to excercise moral thought and change to a more responsible provider.

So, while you think as an end-user you might miss a few emails, spare a thought for the man hours spent by engineers fixing the spam problem and the cost to businesses when it occurs.

Blacklists arent perfect, but unless you have a better solution, stop being part of the problem!

• Reply to comment
• Reply to story
• Report offensive content

JUST WHO IS INTERESTED IN THE ...Anonymous -- 03/05/03

JUST WHO IS INTERESTED IN THE LITTLE MAN?

I have subscribed to Ozemail for some years and recently I began to receive considerable SPAM email.
I asked Ozemail to assist by blocking the SPAM and they replied that while they could not do so they advised me that I should purhcase a software program to block SPAM

Having obtained and installed a program I was initially able to "Bounce" the SPAM back to the source. This I thought was an excellent idea and may in time reduce SPAM

HOWEVER Ozemailhave then made some change to the way in which I send/receive my email and I now cannot "Bounce" it back to the source

Without explanation of the changes or why they were made they point me back to my software supplier to overcome the problem

Following a number of emails back and forth I am still unable to "bounce" the SPAM nor does Ozemail appear interested when it was their advice that I purchase third party software to overcome the problem

JUST WHO IS INTERESTED IN THE LITTLE MAN?

Or is there more revenue to be made in allowing the SPAM to go through!

• Reply to comment
• Reply to story
• Report offensive content

We have just transferred from ...Lesley Dewar -- 16/09/03

We have just transferred from dialup to ADSL with iinet. What a disaster!!

Quoting from an earlier posting:
"This all happened because some spammer decided that he would use the domain name of a customer we host as the source address for the emails (forged) resulting in many millions of emails bouncing back undeliverable."

I have just found that my IP address appears to have been 'forged' - over a four day period I have been charged for 2800MB of traffic - 15 times more than I use in a full month and well outside my 'quota'.

My IP address is now 'blacklisted' and when I reply to genuine customers who contact me, my replies 'bounce'.

We are now trying to find a way to clear our IP name with a host of 'blackhole' addresses - to ensure we can can carry on our legitimate business.

After two hours of waiting on the phone (yes, two hours) to speak to someone at iinet.net.au, we have had no satisfaction from them.

ISP's have a responsibility to their paying users to review and (I suggest) halt unusual amounts of traffic outside normal usage patterns, until they can confirm with the IP's registered user that the traffic is valid.

Alternatively, IP users should be able to register with their ISP to 'pre-register' higher levels than their usual amounts of traffic - so that there is no question of who is generating the traffic.

We have a full B2B website and a genuine business that is now put at risk because of the lack of security or customer protection that should be part of the responsibility of very large ISPs, like iinet.

• Reply to comment
• Reply to story
• Report offensive content

• Just In

• Most Popular

• Most Discussed

Reader Services

Popular Topics

Essentials