-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
"The overheads are minimal. Captain Bob pays about $300 a month to maintain his server. He runs a Jetstart account ($65) to connect to his server which in turn connects to a high-capacity pipe out to the web."
Out to the Web? Not to mail servers?
A lot of SPAM is now going through misconfigured proxy servers using the CONNECT method. Apparently open mail relays don't cut it any more.
Undernet has a proxy scanner they've used for a long long time to scan for open proxies and preventing them to connect to their network to remove abusers. It has been highly effective and scans for HTTP, SOCKS4, SOCKS5 and Wingate proxies on a range of (configurable) ports. The scanner is fast (it has been clocked at over 100,000 scans an hour), and robust (The first thing that happens when you put a proxy scanner on an irc network is everyone attempts to DDoS the proxy scanner...) Information about it can be found here: http://pxys.sourceforge.net/doc/ I'm thinking about hacking this into libwrap (the tcp wrappers library) so that any wrapped daemon (such as a smtp server that supports tcp wrappers) would be able to deny access to anyone running an open proxy. Would people be interested in this? or would I be wasting my time? - -- Love the sea? I dote upon it -- from the beach. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Only when you are sure they have you, can you stop being paranoid iD8DBQE+fG2BcAgRpy8z8UQRAoFqAKC+eBhdGI5L82V6rPRGJRtUE24LVgCfbFD9 3bKk/6oht9Ll5E1XJdEM2ko= =QEfZ -----END PGP SIGNATURE-----