|
|
|
|
|
|
|
|
|
|
|
|
|
|
FIGHT BACK AGAINST SPAM
Using dynamically generated HTML to thwart spam email address harvesting
By Daniel Koffler
Gone are the days when the corporate world considered spam a mere nuisance. CEOs and CFOs alike are starting to realize what system administrators have known for years; spam costs your corporation thousands of dollars each year. The bandwidth and storage expenses associated with spam are minor when compared with productivity loss. The Washington Post recently reported (see http://www.washingtonpost.com/ac2/wp-dyn/A17754-2003Mar12) that spam may soon constitute more then 50% of all U.S. email and will cost American organizations more then $10 billion this year alone.
Understanding spammers
Spam is the only marketing medium in existence that costs the target (that's your company) more than the advertiser. The low-cost nature of this vehicle makes it irresistible to marketers, scrupulous and unscrupulous alike. In order to spam effectively, spammers need two things; a list of email addresses to which they can blast their messages, and a means of delivering these messages in such a way that their true origin cannot be easily traced. This allows spammers to avoid dealing with the repercussions of millions of angry email users. It's this lack of self-identification that defines the truly unscrupulous.
Harvesting the net
Finding email addresses on the Internet is easy. Spammers use automated tools that scour search engines and web sites for anything that looks like an email address. This is called "email harvesting". Check your own web site, or do a Google search for "@yourdomain.com". Chances are, you'll be able to manually harvest quite a few addresses.
Anti-harvesting policies should make their way into your corporate email usage and security policies. Think about creating general delivery group mail boxes (such as "sales@yourdomain.com";) for publication on your Web site instead of actual user mail addresses. It is also a good idea to encourage your users to setup a second email account with a free provider (such as Hotmail) to use for tasks such as registering for software downloads or posting to forums and newsgroups.
Sometimes it is still necessary to publish certain user email addresses on your Web site or in your Web applications. To prevent these (or your group mail boxes) from ending up on spam mailing lists, you will need a method of publishing them that makes them accessible to human users--but not to email harvesting programs. This is generally referred to as obfuscation in security parlance and is pretty easy to do effectively with Domino.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
-- Advertisement --
PDF Conversion for Lotus Notes
Convert Lotus Notes documents to PDF for sharing, archiving or web printing.
- 1-step PDF: As easy as clicking a Lotus Notes toolbar icon
- Archive email folders or views as a self-contained PDF
- Convert any document collection into a PDF file
- Produce print-quality output from Web applications
- Client side or Server side conversion
- Doesn't require any DLL files
- LotusScript API for developers
Ready to learn more? |
-- Advertisement --
Easy Domino Access: Remove Passwords, End Login Prompts, Reduce Password Management
PistolStar's Password Power provides browser-based single sign-on to Lotus Domino, Sametime and Quickr with the enhanced security of the Kerberos or NTLM authentication protocol.
- Full support available for NTLM authentication protocol in non-Active Directory environments
- Seamlessly integrate Microsoft Active Directory and the Kerberos authentication protocol
- Leverage Active Directory password policies to unify Lotus applications
Learn more about Password Power's powerful, advanced functionality. |
|
|
|
|
|
|
|
|
|
|
