Read: [next] [previous] message

Re: [d@DCC] SPAM supportive of the Conservative party making the rounds...

From: Russell McOrmond <russell _-at-_ flora.ca>
To: General Discussion <discuss (at) digital-copyright.ca>
Date: Sun, 27 Jun 2004 20:58:54 -0400 (EDT)
References: <Pine.LNX.4.21.0406272004050.5500-100000@diamond.ansuz.sooke.bc.ca>

On Sun, 27 Jun 2004 mskala@ansuz.sooke.bc.ca wrote:

> I think they're probably *not* from different people precisely because
> they're so similar.

  They are relayed through multiple IP addresses, and these are not simply
open SMTP relays as there are no additional SMTP headers.  I believe this
is a commercial operation, making use of "owned" zombies (machines
infected by some malware such as a virus/trojan/worm/etc that put the
computer under remote-control) to relay the messages though these zombies
as a proxy.

  The only useful information out of the headers is the IP address that
the message came from and the time.  This can be tracked to the customer
who's machine has been "owned", and hopefully the police can convince the
rightful owners of these machines to work with them from there.  There
unfortunately may be many hops between our SMTP servers and the
originating SPAM generating computer.

  I have written (email) to the Commissioner of Elections Canada, which
was the suggestion given to me when I called Elections Canada.  I don't
have the foggiest idea who to call at the RCMP, or even if they would
listen given it likely requires someone at Elections Canada to launch an
investigation of this type.

BTW: Don't wait on someone else to report things.  It is far better for
officials to get multiple tips than no tips at all. If you have ideas of
who to contact to get this investigated, please just go ahead.  I hope
that the CIPPIC law clinic and resident SPAM taskforce lawyer Michael
Geist will look into this as well.

  While most SPAM isn't worth trying to launch into a full investigation,
the added aspects of this being a violation of elections law (third party
financing, anonymous campaign contribution, etc) makes this a far more
interesting SPAM to investigate. They investigate the origins of Microsoft
viruses, and the potential harm here is far greater than any virus we have
seen thus far.

-- 
 Russell McOrmond, Internet Consultant: <http://www.flora.ca/> 
 Petition for Users' Rights, Protect Internet creativity and innovation
      Canadian Election 2004: http://digital-copyright.ca/
 Find out where parties and candidates stand on important Tech issues!
--
For (un)subscription information, posting guidelines and
links to other related sites please see http://www.digital-copyright.ca


Read: [next] [previous] message
List: [newer] [older] articles

You need to subscribe to post to this forum.
XML feed