I'm experimenting with an interesting spam trap idea. Normally I run
many inbound servers as spam filters (Using Exim) with no SMTP
authentication. But then I got this idea ....
I decided to implement and advertise that the server had SMTP
athentication even though there was nothing to authenticate. I created
an authenticator that would accept any username and password. But it's
obviously spam. Then I harvest the spam.
One of the things I like about it is that if hackers are sending spam
into my fake server then it takes away from their efforts on real
accounts that they could hack. I'm wondering if enough of us put up fake
authentication not only can we detect spam that way but we could waste a
lot of spammer's resources.
Thoughts?
--
Marc Perkel - Sales/Support
supp...@junkemailfilter.com
http://www.junkemailfilter.com
Junk Email Filter dot com
415-992-3400
