[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Jerk spammers on tor-relays

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Jerk spammers on tor-relays
From: Mirimir <mirimir@xxxxxxxxxx>
Date: Mon, 24 Sep 2018 16:24:14 -0700
Autocrypt: addr=mirimir@xxxxxxxxxx; prefer-encrypt=mutual; keydata= xsBNBFEN49cBCADWl1VZKYO8L+f/65G2nBWzh41VTAZDcJSxMWXrBSvpJzzLt6sJf0L0Rjmy W4VPxJMCm/32auRAp8Xx1iNmBpvYENSM1YJVWfk43tlSOY8CR3TVODMxWPhUu48Pb9OKSntz WHGwdZmOr14zF9vr4PaS9A6+Hyt9FPKuGcQFw7K8jK1Hpp5XgdY/DMHKeaJykJ8JH1HBTFTT OJdxIWu6cZ+spNaNfKdnNjk98hMPw69isVGzcm7b3lJUsjVnMSqnrtZ8CSIv1njyxJH7NB5n LzrE7EiXR37k+4Poc9/DeLSAKrq5N3ZMpX1EDOoXFa8lLVGWHBTwVN/tl7FLM0NmVuL5ABEB AAHNHG1pcmltaXIgPG1pcmltaXJAcmlzZXVwLm5ldD7CwIEEEwECACsCGyMGCwkIBwMCBhUI AgkKCwQWAgMBAh4BAheAAhkBBQJafNQ7BQkNMVdkAAoJEGINZVEXwuQ+5LoIAKyZQDkNqj+Y E26o1bdEQlmOLhhXev45euNCnaFrnbOyKLivHdF4vvXyWBTzJmCsoRxTJ0A3Zmwa3ZihbKaU FCAdRgspLfA+TGICVYOztB+faWV18k5OTCk7ZiBQ/mOMQA4p3RPOV+UCgdelvZRHrFdUgHro dho/FqZhRoPdsPPB08QBisDO7SfFMMe9U9EZ03n4f2TvMgaTjK/kZCopwgLj2nB11SnCYfWJ jxUFDs+VFObf/jSK8T0SX9O6p430NWZm30vutUVac9lfodMjBcJqTnFxmZrwQomlCYGvSqNw 4Xy5+/gBzv/flXHngQSU053smHRtrMlGK5OU1RSixDfOwE0EUQ3j1wEIAMDcexhcaIO5jpl+ SHM14zuBvF2QG61IpH4Lag6nQmSMTljizuJg2kLaLbfc69AxmjuL5obqYi5ywXn4kQKqiwfa OHvVlKn662/J5YgXuc8tRLyqvgb+hibtAnlhWAuusP0eoQQP6SAASRjtrb8RVapTzJXy2Snf PtkcdtkTLLLcyeGoDOkpPkspnnp8avvI9ayzhGFLg9qNWaIuBMudxT6oHK4rZH+Sv6km9viI /ziV6E8Z+PpvMsGdebeYBLQA7ueuTbyOGbDyProwvocrKynI/UM40VYS8bS1PjWtljUlj7Vx 8C/746hnfdge0m24jnaWfu5UDjwpsHzs/JXqklsAEQEAAcLAZQQYAQIADwIbDAUCWnzURgUJ DTFXbwAKCRBiDWVRF8LkPsCjCACNvnnmpcDwEbtXUFZD/+ewNlPfM9o0mIXgi7DIVR9MVCw/ u14+mJUlQny4jPRV+hv/erjbiqEcVPZ296J3I4kUvO4slI+ZyODsRQSzwMz6ihwC6nN1xove YSBzVKKQrV+FDHVk6dJVLtgPdewOR9ZAar7mEbCLTJZ/e5aVb+NrlC1jWx3V3mMGCKOsEHhu 97cu3AswlxhzqPjczTo3rjtcfxdjeGU6mIEEAlhUlVDdfbGLODIyCXrP39zYxYXFFpVcbGAu +cndl1AQkIXUiMoJuzTMU8TQ+zz8yLof9fB7Y8O8VbmZBPQqN2IiHPeGbfqZjk/uHjJQUayI +beL0kxL
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 24 Sep 2018 19:24:33 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1537831458; bh=A0dp7g56ZlVamYqhFV0WI+xbYMWnwl2iRIFxlRPLGXk=; h=Subject:To:References:From:Date:In-Reply-To:From; b=n/LfTvDjAc35CKRGkJuKe4SaUe49DYKJLCYblJPJZZrdN5+63XBKTUMWeVQTwgwiK 064n4oVKMKUUyQBRoW/7gKw/9jnx1y0JZNIs2fUDHSAcIrJdwMWKX2aPv7qOjy/TDx UmnTNdD0BwhwE6w774GdSvuRA/AgQAayOwNPTBRU=
In-reply-to: <d9400f26-314e-7d38-dc58-1137e9106238@monksofcool.net>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Openpgp: preference=signencrypt
References: <5b182b2c.1c69fb81.390f6.f0ea@mx.google.com> <f260788a-f4d5-e0d2-3535-46f2318af820@riseup.net> <CADqUGAOohu2oqAHSyGRFf8ECsP=eHvsH=X_fg_=OMZy1DSYDGA@mail.gmail.com> <a0092c3b-8e29-ef7e-ac03-bff34b5fc52a@riseup.net> <5b1c7d0c.1c69fb81.ecb1c.da69@mx.google.com> <20180610053818.GD8138@moria.seul.org> <CADqUGANCot_6SZF5H=pKkOziNyNDhqUBEQoVxQreZ+anWEv4kw@mail.gmail.com> <b1c1f27d-445e-fe77-5dbe-1339744113e3@riseup.net> <5b496440.1c69fb81.07ba.c1b7@mx.google.com> <CADqUGAP8Egb7vWdZQBVjn41-bnVFrfa324pCPDs6F5Oo++PxCw@mail.gmail.com> <CADqUGAOE=75FfgeA444MCr5prNT24mJDF8op61H1x-Hrxkbz5g@mail.gmail.com> <71354e12-5875-1347-caa0-bbce21db22cf@riseup.net> <1537540811.445943.1516102176.15B323E7@webmail.messagingengine.com> <7e72b684-280e-eb19-7562-4bfa2d1fa8d4@monksofcool.net> <b31f24a9-e253-d896-f517-6daf47c291b2@thedave.ca> <52bfc239-5789-143e-1852-f60f841b4ce2@monksofcool.net> <cf3da93b-c414-576c-99fe-77ae5cb2c637@thedave.ca> <d9400f26-314e-7d38-dc58-1137e9106238@monksofcool.net>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

On 09/24/2018 06:49 AM, Ralph Seichter wrote:
> On 24.09.18 02:12, Dave Warren wrote:
> 
>> I don't see anything obvious that addresses my approach (only the
>> approach of sending a message from a consistent address out slowly,
>> which has several obvious flaws).
> 
> Messages are already uniquely identifiable, and your approach is just a
> variation of the method Andreas described. While it bundles spamtraps,
> it is still just as easily avoided using trigger address sets in the
> manner I mentioned before.
> 
> -Ralph

Maybe I misunderstood the proposal. Or unconsciously embellished it.

I was thinking that there'd be a set of Tor Project honeypot accounts,
with the same apparent account (e.g., Jay Baker). But in fact, there
would be a distinctly identifiable "hidden key" for each subscriber of
each list. Periodically, the set of honeypot accounts would send
innocuous messages to the Tor lists.

So let's say that Jay Baker instance with hidden key "Aj0qAU3Dc7PJzK"
had sent a list message to just one subscriber. And then it received sex
spam. That would arguably implicate that subscriber in the spamming
operation. No? And then that subscriber would be unsubscribed.

Of course, any sane spammer would use throwaway accounts. And they'd
just replace them as needed. However, once the system were operating,
new subscriptions could be correlated with subscription removals.
Perhaps subscription removals could be done in batches, to make that
more obvious.

But of course, that would be just too creepy.
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] Jerk spammers on tor-relays
  - From: Keifer Bly

References:
- Re: [tor-relays] Jerk spammers on tor-relays (was Re: Fwd: Tor GuardRelay)
  - From: Keifer Bly
- Re: [tor-relays] Jerk spammers on tor-relays (was Re: Fwd: Tor GuardRelay)
  - From: Mirimir
- Re: [tor-relays] Jerk spammers on tor-relays (was Re: Fwd: Tor GuardRelay)
  - From: Dave Warren
- Re: [tor-relays] Jerk spammers on tor-relays
  - From: Ralph Seichter
- Re: [tor-relays] Jerk spammers on tor-relays
  - From: Dave Warren
- Re: [tor-relays] Jerk spammers on tor-relays
  - From: Ralph Seichter
- Re: [tor-relays] Jerk spammers on tor-relays
  - From: Dave Warren
- Re: [tor-relays] Jerk spammers on tor-relays
  - From: Ralph Seichter

Prev by Author: Re: [tor-relays] Jerk spammers on tor-relays
Next by Author: Re: [tor-relays] Jerk spammers on tor-relays (was Re: Fwd: Tor GuardRelay)
Previous by thread: Re: [tor-relays] Jerk spammers on tor-relays
Next by thread: Re: [tor-relays] Jerk spammers on tor-relays
Index(es):
- Author
- Thread