Solved

Image Spam

Posted on 2006-11-07
5
242 Views
Last Modified: 2010-03-06
Hi,

We seem to be getting a lot more spam getting through our filtering system.  These appear to be using images with text on them rather than the usual spam which is pretty much 100% removed.

We use an external company to filter spam.  I am considering using an additional filter within our network to try and remove the remaining spam.

I dont beleive it is possible to determive from an image what is spam and what isnt.  They dop appear to have long names for the images though.

Is it possible to filter on images within emails and attachments based purely on the name and length of the image name or is this asking a bit much??

Any suggestions as to what would provide the best means of filtering image spam which I beleive is going to get very much worse over time.

Would the following Linux based application be better than a Windows based software solution??

http://www.clearswift.com/products/msw/smtp_appliance/microsite/default.aspx

 
Jess
0
Comment
Question by:jessmca
  • 2
5 Comments
 
LVL 8

Author Comment

by:jessmca
ID: 17891970
We are using Exchange 2003 with an external filter company.  No emails arrive at the exchange server except from our filter company.

More or less no spam gets through except for these new breed using images only instead of text.

Jess
0
 
LVL 23

Expert Comment

by:Stacy Spear
ID: 17899950
This is a constant and never ending battle. Blocking image only mails is easy. Blocking mails with specific src codes also easy. But the spammers change their patterns and now I have 10 different spam filters looking only for images, and yet they still slip through. SPAM is a moving target!

We are moving to converting all mails to text as a result.
0
 
LVL 104

Accepted Solution

by:
Sembee earned 300 total points
ID: 17902561
I am dealing with most image spam via greylisting. Doesn't stop all of it, but catches a lot. IMF has also improved lately and is catching a lot of image spam. I use IMF as one of three layers of protection.

Simon.
0
 
LVL 23

Assisted Solution

by:Stacy Spear
Stacy Spear earned 200 total points
ID: 17902617
I have 2 IronPort C60s using a whole battery of tests. Reverse DNS, reputation filters, etc. Stops 90% of the crap. My custom filters raise that another 7-8%. What gets through is almost 100% image spam. Write new filters about twice a month to deal with new signatures. But the Army has decided to just convert all mails to text now. I think it is too broad a sword, but not every org has the tools, experience, and expertise we have.
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Resolve Outlook connectivity issues after moving mailbox to new Exchange 2016 server
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now