Mixed SMTP-IP Level Tarpits
A server can determine that a given mail message is spam, e.g. because it was addressed to a spam trap, or after trusted users' reports. The server may decide that the IP address responsible for submitting the message deserves tarpitting. Cross-checking against available DNSBLs can help avoiding to include innocent forwarders in the tarpit database. A daemon exploiting Linux libipq can then check the remote address of incoming SMTP connections against that database. SpamCannibal is a GPL software designed around this idea; Stockade is a similar project implemented using FreeBSD ipfirewall.
One advantage of tarpitting at the IP level is that regular TCP connections handled by an MTA are stateful. That is, although the MTA doesn't use much CPU while it sleeps, it still uses the amount of memory required to hold the state of each connection. On the opposite, LaBrea-style tarpitting is stateless, thus gaining the advantage of a reduced cost against the spammer's box. However, it has to be noted that making use of botnets, spammers can externalize most of their computer-resource costs.
Read more about this topic: Tarpit (networking)
Famous quotes containing the words mixed and/or level:
“Let us not deny it up and down. Providence has a wild, rough, incalculable road to its end, and it is of no use to try to whitewash its huge, mixed instrumentalities, or to dress up that terrific benefactor in a clean shirt and white neckcloth of a student of divinity.”
—Ralph Waldo Emerson (1803–1882)
“A drawing is always dragged down to the level of its caption.”
—James Thurber (1894–1961)