Feeds

Microsoft declares war on spam

Bill Gates' anti-spam manifesto dissected

  • alert
  • submit to reddit

Using blade systems to cut costs and sharpen efficiencies

Bill Gates yesterday pledged to step up Microsoft's efforts to fight rising spam nuisance which he described as a "pollution of the email ecosystem".

In a note sent out to subscribers of Microsofts's executive email newsletter, Chairman Gates sketches the problems posed by the spam tsunami and outlines the software giant's proposed solutions.

What do you give a man who's got everything? Spam!

In describing "spreading plague" of unsolicited commercial email, Gates even reveal a hitherto undetected flair for deadpan comedy. No really.

"Generally unwanted - and often pornographic or with fraudulent intent - spam is a nuisance and a distraction," Gates writes, warming us up for the punchline.

"Like almost everyone, I receive a lot of spam every day, much of it offering to help me get out of debt or get rich quick. It's ridiculous."

Quite.

Warming to his theme, Gates continues: "Spam is a drain on productivity, an increasingly costly waste of time and resources for Internet service providers and for businesses large and small. It clogs corporate networks, and is sometimes a vehicle for viruses that can cause serious damage."

We'd make a distinction between spam and mass mailing viruses but let's not quibble about semantics. Better too not to dwell on the irony that Outlook (or Lookout) remains the leading vector for the spread of mass mailing worms.

Think of the children

There are bigger problems. Think of the children, for instance.

Gates comments: "Spammers often prey on less sophisticated email users, including children, which can threaten their privacy and personal security. And as everyone struggles to sift spam out of their inboxes, valid messages are sometimes overlooked or deleted, which makes email less reliable as a channel for communication and legitimate e-commerce."

Kill or cure

So what is to be done?

Gates admits there is no easy fix but outlines the many ways Microsoft is working to reduce the problem.

The software giant has created an Anti-Spam Technology and Strategy Group which will apply research in fields such as machine learning to develop smarter spam filters.

"A smart filter can learn from a user's personal preferences to create a unique, anti-spam immune system that is much harder for spammers to work around," Gates explains.

This is just a continuation of the software giant's existing efforts, he says.

"Already, filters on the servers at MSN and Hotmail block more than 2.4 billion messages a day, before they ever reach our customers' inboxes."

Hotmail

Although the folks at Hotmail has reformed their attitude to spam, for instance by signing agreements to use Brightmail's spam blocking service, the service is still blighted by unsolicited commercial email. These days this is mainly due to dictionary attacks and the like but it would be remiss of us not to recall the days when anyone signing up for the service had their message listed on a Microsoft partner site by default. This made Hotmail addresses easy picking for bulk mail scumbags.

Gates outlines how MS spam-busting 'smart filters' (the latest Redmond buzz word) will be integrated into more products, particularly Outlook 2003 and Exchange 2003.

There's not much detail on this but one improvement we'd like to see is giving users the option of disabling the pre-viewing of HTML email in Outlook and Outlook Express. Such a move would greatly diminish spammers ability to probe for active email accounts.

Takedown

Moving on, Gates outlines Microsoft's procedures in identifying and shutting down spammers' attempts to set up and use fraudulent email accounts to send out their garbage. MSN is working with other ISPs, like Earthlink and AOL, to make this process more efficient.

Meanwhile Microsoft urges that using "automated searches to harvest addresses published on the Web and in Internet newsgroups should be banned", perhaps by legislation. Gates is a little vague on this point. This is forgivable, given that lawmakers are far from unanimous is realising an opt-in policy (which properly policed and enforced, is probably the right way to go).

Meanwhile, Microsoft deserves some credit for suing the most prolific spammers using existing laws. On June 16, Microsoft filed 15 lawsuits in the United States and the United Kingdom against companies and individuals alleged to be responsible for billions of spam messages sent in violation of state and federal laws.

Gates comments: "These efforts would be helped - and consumers would benefit - from legislation that would include clearer prohibitions against using misleading sender addresses and other false header information."

One man's spam is another man's processed meat

Here we get to the nub of Microsoft's concerns. Microsoft is in large part motivated in curbing spam because it feels the nuisance reduced the effectiveness of "legitimate commercial email".

"We favour the idea of setting up independent email trust authorities to establish and maintain commercial email guidelines, certify senders who follow the guidelines, and resolve customer disputes," Gates writes.

"Our proposal is to create a regulatory "safe harbor" status for senders who comply with guidelines. The guidelines would be subject to approval by the Federal Trade Commission. Compliance would be confirmed by a self-regulatory body. Senders who do not comply would have to insert an "ADV:" label, for advertisement, in the subject line of all unsolicited commercial e-mail," he adds.

If you think you've heard of this idea for "certified spam" before you'd be right; we think this is unlikely to improve matters.

In summing up we'd say that Microsoft has correctly identified the nature of the spam problem but there's plenty of scope to disagree with its proposed cures.

Bill concludes: "These and other efforts across many fronts should lead to a world where we are less troubled by spam. As less of it reaches recipients - and violators face stiffer sanctions for illegal activities - the financial incentives for spammers will decrease, and spamming will lose much of its appeal.

"At Microsoft, we're strongly committed to the goal of ending today's spam epidemic." ®

Related Stories

Microsoft takes 15 spammers to court
MPs hold public inquiry into spam
Open relay spam is 'dying out'
Spam makes kids feel 'uncomfortable and offended'
Return to sender, false address unknown
Why spammers lurve the 'Microsoft support' worm
Buffalo Spammer arrested
Anti-spam packages 'too unreliable' to certify
Web giants to declare war on spam
MS addresses Hotmail spam blizzard. At last
We hate Spam (email your friends)

The smart choice: opportunity from uncertainty

More from The Register

next story
Yorkshire cops fail to grasp principle behind BT Fon Wi-Fi network
'Prevent people that are passing by to hook up to your network', pleads plod
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
NEW, SINISTER web tracking tech fingerprints your computer by making it draw
Have you been on YouPorn lately, perhaps? White House website?
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Black Hat anti-Tor talk smashed by lawyers' wrecking ball
Unmasking hidden users is too hot for Carnegie-Mellon
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
Own a Cisco modem or wireless gateway? It might be owned by someone else, too
Remote code exec in HTTP server hands kit to bad guys
prev story

Whitepapers

Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.