Feeds

AOL lifts Demon spam ban

Purgatory

  • alert
  • submit to reddit

Beginner's guide to SSL certificates

AOL lifted a block on email from ISP Demon this afternoon, after a sudden surge of spam messages provoked AOL into rejecting all email from Demon users last Friday.

In a notice to its users on Friday, Demon admitted that its users were unable to send email to a "small number of other ISPs" because of measures introduced after spammers used open mail relays within its network to send bulk email. No-one for Demon was available for comment this afternoon, so we not sure which ISPs other than AOL were involved.

Demon (probably correctly) attributed the problem to misconfiguration of its customers' machines, a point to which we'll return presently.

AOL has an in-house automated system which blocks emails from individual IP ranges or in some cases, an entire ISP, if these are identified as the source of a spam onslaught, a company spokesman told us.Spam last week from Demon reached such levels that the AOL introduced a temporary block to stem the deluge.

AOL has now restored connectivity to Demon.

While the root cause of the problem is insecure configuration by its users, Demon has an obligation both to educate its customers on the problem and to actively scan its network for open mail relays before the problem gets out of hand.

Last week Demon seemingly failed to get on top of the issue, surprising given its reputation as an ISP which takes security seriously. But, then again, there were indications that Demon had something of a spam problem as long ago as last June.

Demon argues that rejecting email is not the best approach to dealing with the spam problem and says it monitors it own automated systems. It also criticised other ISPs for not informing it directly that its customers email was being blocked.

AOL conceded it could have done more to inform Demon that its users' email was been blocked. The company estimates it is at the receiving end of a staggering 500 million spam email a day (that's what it says anyway).

AOL says its "sophisticated" spam blocking technology prevents the vast majority of these messages reaching customers. With these volumes any monitoring of automated systems is never going to be perfect.

In any case, let's put the blame for Demon users' problem on the real culprits: spammers, those pestilent parasites of the Internet age. ®

Related Stories

Demon email 'beyond a joke'
blueyonder escapes Usenet death row
Usenet demands 'death penalty' sentence for AOL

Beginner's guide to SSL certificates

More from The Register

next story
Bladerunner sequel might actually be good. Harrison Ford is in it
Go ahead, you're all clear, kid... Sorry, wrong film
Euro Parliament VOTES to BREAK UP GOOGLE. Er, OK then
It CANNA do it, captain.They DON'T have the POWER!
Musicians sue UK.gov over 'zero pay' copyright fix
Everyone else in Europe compensates us - why can't you?
I'll be back (and forward): Hollywood's time travel tribulations
Quick, call the Time Cops to sort out this paradox!
Megaupload overlord Kim Dotcom: The US HAS RADICALISED ME!
Now my lawyers have bailed 'cos I'm 'OFFICIALLY' BROKE
Forget Hillary, HP's ex CARLY FIORINA 'wants to be next US Prez'
Former CEO has political ambitions again, according to Washington DC sources
prev story

Whitepapers

Designing and building an open ITOA architecture
Learn about a new IT data taxonomy defined by the four data sources of IT visibility: wire, machine, agent, and synthetic data sets.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.