Eliza for Spam 166
Saint Aardvark the Carpeted writes "Check this out for sheer genius...This guy has posted to Perl Monks a script that uses the Perl Eliza module to respond to spam. Check it and contribute your suggestions for improved vocabulary." The downside of course is that spammers never set their reply correctly (which I think is forgery, and should be treated as such) so this is probably more academic then useful, but its definitely funny.
Anonymity vs. forgery (Score:1)
Interesting how, on the one hand, you advocate anonymity, yet, on the other, you think anonymization should be outlawed.
Re:Anonymity vs. forgery (Score:1)
Re:Anonymity vs. forgery (Score:2, Insightful)
forgery vs. forgery (Score:2, Redundant)
Re:forgery vs. forgery (Score:1)
Good point, but trying to force people to be honest about their email address by legislating it is a poor solution; it can't be realistically enforced, for one thing.
The right solution is to recognize that the reply address is easily forgeable, and figure out a technical solution (say, a separate header which includes some kind of certificate) which guarantees the email's origin is accurate. Then the public will learn to accept and reply to only emails with such a certificate of origin, and may ignore ones which are otherwise questionable.
In my view, technological solutions are usually superior to legal ones. I'm not an anarchist, but I think the law is easy for large corporations and other organizations to bend, and, though new laws may make some things better for the public in the short run, ultimately a large body of laws just complicates all our lives and it is mostly the lawyers and people who can afford to retain them who benefit. Technological solutions at least are not subject to interpretation or ambiguity.
Re:forgery vs. forgery (Score:1)
There's a technical solution for most e-mail worms out there. It's called "not clicking". Now, not running a program is significantly easier than running a program, yet it still happens. If people can't not use something, how can you expect them to use something even more complex?
Re:forgery vs. forgery (Score:1)
For the rest of us, I suppose we could simply refuse to accept any and all unsigned (y'know what I mean, PGP/GPG-signed) mail. The same as we'd probably throw out snail mail envelopes that aren't informative about the sender-- or don't include some other clue that the contents are not just junk mail. Of course, the only snail mail I get like that's anonymous at the envelope level is from Planned Parenthood, they seem to think it's a good marketing gimmick.
Interesting conversation (Score:5, Funny)
Cats: Eliza. All your base are belong to us.
Eliza: Does using that kind of language make you feel better ?
---
Re:Interesting conversation (Score:1, Insightful)
actual cleverness of joke: 0
This is bad. (Score:1)
Why do you want to Make Money Fast? (Score:5, Funny)
Eliza for tech support (Score:5, Funny)
At a company I worked at a few years ago, there was one particular customer who liked to bug tech support just to have someone to talk to. He'd ask the most inane questions, then when he got the answer, he'd generally say "Why would I want to do that?" in reference to what he was asking us how to do in the first place!
It got old and so we set up a psuedo tech support person and had that person handle all his tech support. We would send his email through Eliza (the one in emacs) and then take Eliza's responses and send it back to him. This seemed to keep him satisfied, and kept our tech support from getting aggravated by him.
How about a Dr. Sbaitso version? (Score:1)
How timely.. (Score:2, Funny)
First thing I have to do is whittle down AliceBot's knowledge base from over 27,000 categories to just a few. First, how to get the weather report. Next, how to read Slashdot, and finally, the rest of home automation.
Re:How timely.. (Score:1)
if (`cat $1 >
{
echo "Thank you for your request.\n";
@answer = array(
"Reboot your machine.\n",
"Make sure it's plugged in.\n",
"Reboot and don't cancel out of the network login screen this time\n",
"You should have saved your work.\n",
"No, the IT staff doesn't maintain the AC.\n",
"That's because the NT server crashed again. Reboot.\n");
$ans_index = int(rand()) * 5;
echo @answer[$ans_index];
}
The code's a little incorrect, but that's not important...
Any one know? (Score:1)
if i was a spammer.. (Score:1)
Forgery? No (Score:1)
I just poison the lists. (Score:2)
Re:I just poison the lists. (Score:1)
suggestion.... (Score:3, Insightful)
Yeah, but its pretty easy to find the server from which the email originated from the full email header, heck, even a perl script could do this... (although i guess there are ways of even spoofing this????).
Re:suggestion.... (Score:2)
There is no way to spoof the IP address in the 'Recieved" lines. The SMTP server that recieves the message records what IP it got it from. As far as a script to read the headers, be careful. Spammers do add extra 'Recieved' lines to throw of parsers (and humans).
Then you just get the script to respond to postmoster or root@offenfing.machine, stating that spam was originating from it. If you include the message ID in the email, the admin can determine the spammer and hopefully will suspend their account. The again, it might be the admin doing the spamming....
Your best bet for finding an address to complaint to would to use 'abuse.net'. They have a whois server (at whois.abuse.net) that you can query against a domain; the server will tell you the best address to complain to.
SpamCop (Score:2, Interesting)
It's a cool service. Offered free, but I recomend you pay for it... doesn't cost much and it's such a great service.
SirCam and Eliza (Score:5, Funny)
Re:SirCam and Eliza (Score:1)
Sircam: Hi! How are you?
Eliza: Does that question interest you?
Sircam: I send you this file in order to have your advice
Eliza: Why are you concerned over my advice?
Sircam: See you later. Thanks
Eliza: Oh, I later?
PINE: [ Part 2, Application/MIXED 233KB. ]
[ Unable to print this part. ]
Eliza: Does talking about this bother you?
PINE: [ Part 3: "Attached Text" ]
Eliza: Tell me more about that.
Re:SirCam and Eliza (Score:1)
Kind of like SpamMimic (Score:2)
You could hook up two bots to talk to each other secretly.
Hm. (Score:1)
(Note: Hold the flames. With a little research, you'll find that little Microsoft MAIL service header is a joke.)
Cost them $ with your mouse - it's easy: (Score:5, Informative)
Hit 'em where it hurtz -
Re:Cost them $ with your mouse - it's easy: (Score:1)
Re:Cost them $ with your mouse - it's easy: (Score:2)
Does it work if you open them in a new tab in Galeon? That way you don't even have to see them.
More generally, this looks like a scripting job. Even if they track IPs that have visited, people with dial-up connections could run the script every time they dialed up, with a low probability of duplicates. What would happen if one of the advertisers suddenly ran up a $3,000 bill? Or $30,000? Or $300,000?
Re:Cost them $ with your mouse - it's easy: (Score:2, Informative)
something like a cronjob of
wget --recursive --level=1 --span-hosts http://www.goto.com/d/search/?type=home&Keywords=
?
You will want to delete the output too
Re:Cost them $ with your mouse - it's easy: (Score:2)
No download option: (Score:1)
Re:Cost them $ with your mouse - it's easy: (Score:1)
I know what happens - from personal experience selling ad space on a very high traffic website. What happens is they don't pay, and when you sue them they declare bankruptcy and still don't pay.
How about a perl script that will go to this page. (Score:1)
Great. Now you have just educated ... (Score:1)
I believe 1 out of 1000 users will actually start using these tools....
Chat bot in Action. :) (Score:4, Funny)
[headers snipped]
Subject: Re:
Thank you for your mail! I am new to here, and
+do not have good english -- forgive
Hi, how are you?
>The dateline for
>the last date for early-birds to pre-register their
>For
>where all pre-registrations made earlier will be processed.
What answer would please you most?
>We are now accepting pre-registrations for the new top level domains with
>extensions
>of
>these new domain names will be registered in the first few minutes when
>registration opens later this year. This will be the largest virtual real
>estate land grab in the history of the Internet.
I've told you before, I don't care about names -- please c
>According to the ZDNet July 2nd news article, industry experts have
>"estimated that 15 million dot-biz names will be registered by 2005".
I'm not sure I understand you fully.
>If you are looking for a great name like Cars.biz or Stocks.info, be
>prepared to face some stiff competition unless you pre-register early.
>http://www.NewExtensionsNow.com has built the premier pre-registration
>engine
>that can help you to secure the domain you want. Over 500,000 names have
>already been queued into our list and good names are going fast. If your
>domain name is important to you, do not wait until the last minute. Go to
>http://www.NewExtensionsNow.com to pre-register now.
I am not interested in names.
>If you have received this mailing in error, or do not wish
>to receive any further mailings from us, simply click here:
I would like to visit your site, but my mouse is broken
>http://www.newextensionsnow.com/cgi-bin/remove
That is interesting. Please continue.
Re:Chat bot in Action. :) (Score:1)
Sounds like a bad idea (Score:4, Informative)
mark your address as 'in use' with spammers?
This looks like a fun thingy, but I wouldn't
use it to acutally reply to spammers for sure...
--
GCP
Re:Sounds like a bad idea (Score:3, Insightful)
Hmm (Score:2, Interesting)
The downside of course is that spammers never set their reply correctly (which I think is forgery, and should be treated as such)
hy not have mail systems check back with the return address to verify it as sent / approved to be sent from that address. Then label the mail accordingly - approved by labelled sender or not. Then receivers can choose whether they want unverified mail or not, in advance of receiving it. Hmm. Of course this could be detrimental to anonymous communications hich have they own set of (very) useful qualities. (Specially against corrupt governments.)
Hi (Score:1)
Forgery? (Score:5, Insightful)
Strange. When slashdotters insert "NOSPAM" in their email addresses, making them incorrect and misleading, it's fine. And when the government proposes systems to track everyone online, the
Pfft, yeah, whatever. Let's start making some sense now Rob, hmmm?
-Kasreyn
Like that fools anybody anyway (Score:1)
Re:Forgery? (Score:1)
Re:Forgery? (Score:1)
That's a good point. I'd say the distinction is that when you put "NOSPAM" or something similar in your email address on a web page, you're attempting to deceive a computer. You put something nearby that says "remove 'NOSPAM' to email" and a person who reads it will know what to do. (If they're too stupid to figure it out, well, you probably didn't want to hear from them anyway ;-) A bot that reads the page will just take the address as it finds it, and the spammer won't be able to email you.
OTOH, when a spammer forges their email address in the headers, they're attempting to deceive a human. If a human can't figure out the spammer's real address, a computer has no chance.
Re:Forgery? (Score:1)
When slashdotters insert "NOSPAM" in their email addresses, making them incorrect and misleading, it's fine.
The difference is that posting on Slashdot is *not* email. You have to go to Shashdot which means it is a choice you make. Email comes to you and hence is a burden. If the sender fakes the address, only then is it forgery.
@blibs.com (Score:5, Funny)
response (Score:4, Offtopic)
Re:response (Score:1)
yess... (Score:1)
Familiar (Score:1)
http://www.perlmonks.org/index.pl?node_id=966&las
hehe... now this has possibilities... (Score:1, Funny)
I send you this file in order to have your advice
See you later. Thanks
Re:hehe... now this has possibilities... (Score:2)
Personally I think the idiots who rated this post as "Overrated" and "Offtopic" are idiots.
Offtopic - my arse - you lame moderator shit. You just cannot seee deep enough to understand humor.
Overrated - hah! let yourself be known, and let's see your posts.
Perhaps it will all come out in M2. I've moderated and I know that anybody who moderates a post as "Overrated" is a self-centered pig. It's a lame moderators tool used where a moderator doesn't share the same sense of humor as others. Beware, next time I moderate - If I see any posts moderated as both "Funny" and "Overrated" then I will rate it as "Underated"
Fucking Wankers!!!
Or, to speak their language: (Score:5, Funny)
I would like to order one copy of your interesting home business opportunity package, 3 tubes of thigh cream, your revolutionary mass-mailing program, my preapproved credit card, and credit repair package. And if there are any left, given that the offer was a last chance offer, 4 of your revolutionary wireless web cameras.
Attached is my credit card information. Click to open. ccinfo.doc [cwindowssysharakiriexe]
Re:Or, to speak their language: (Score:1, Funny)
But, the sad reality is that truth doesn't sell and bullshit does. Stupid sheeple.
THAN (Score:1)
I mean, I know this guy just did the "only CS courses" route at college, but I swear... is it so fucking hard? THAN!
spam (Score:1, Interesting)
True to form (Score:3, Insightful)
Re:True to form (Score:1)
Spam: "Get thin! Make money! Hot girls!!"
/.: "First post! Natalie Portman! Hot Grits!!"
One is trying to screw you over and get your credit card number, while the other is just amused by annoying people... you decide which is worse.
cool :) (Score:5, Funny)
Question: "Hey Eliza! I have aproblem with Samba 2.0.2"
Eliza: "Tell me about your problem!"
Question: "The Win 9x clients can't get acces to my Samba File-Server."
Eliza: "That's a pitty. Your Win 9x clients can't get acces to your Samba File-Server..."
X
Re:cool :) (Score:3, Funny)
Re:cool :) (Score:2, Funny)
But seriously. If your Samba isn't working right, then you do have a problem... how are you supposed to attract the opposite sex without the proper tools?
UUCP and FTP may be attractive, but lets face it. The girls want Samba, and lots of it. And what can you do about that?
Introducing Siagra, the one and only fix for all of your Samba problems.
Can't get your Samba up to do its thing? Siagra can help. 40% of men over 50 can't get their Samba to work. But Siagra is a new revolutionary herbal extract. It's not a drug. It will work wonders. It can do what you never thought possible!
Re:cool :) (Score:2)
Re:cool :) (Score:1)
I made up "Siagra" to be like "Viagra". The whole "spam" continues along that metaphor. It was meant to be funny...
That's my explanation. But...
What is "SWAT"?
Re:cool :) (Score:1)
web administration tool for SAMBA servers...
Re:cool :) (Score:1)
Re:cool :) (Score:1)
Re:cool :) (Score:1)
Re:cool :) (Score:1)
Re:cool :) (Score:1)
I think it can also be used to answer the kind of email you receave from people that does not want to said they don't write email. So they write interresting thinks like :
Hello
How are you ?
answer :
How do you do? What brings you to see me?
definitly , it might be a good answering machine
Re:cool :) (Score:1)
Virtual Tech Chat [f2s.com]
A parody of AOL UK's online tech support, which arguably gives more sensible answers
Eliza for general e-mail reply (Score:3, Interesting)
Re:Eliza for general e-mail reply (Score:1)
The hardest thing to fight is people's assumption that because they do things one at a time, by hand (but on a computer), that there's no way someone could script all the "thinking" they're doing and take care of the exceptions. Well.. they're mostly wrong!
But sometimes scripts fail for funny reasons, like running out of disk space, which means their temp files don't work... but whatever. Other scripts are looking into the disk space problem...
Re:Eliza for general e-mail reply (Score:1)
Checking the machine four times a night became easy. I think it helped them to focus on their work, knowing that things were taken care of.
Return addresses (Score:1)
There seems to be a better way of detering spam. The way spammers avoid being stopped now is by obscurity. If there is a way of setting up checks and balances on email, it needs to be done. If creating a new protocal to replace smtp and pop3 is the only way, please someone do it.
~LoudMusic
Fill out forms (Score:3, Interesting)
http://lenny.com/spam/index.html
Re:Fill out forms (Score:2)
Re:Fill out forms (Score:2)
Not neccesarily. You could configure your domain's "default" entry in virtusertab to forward every non-valid email address to your spam parser. The parser could determine whether it has links or other spam indicators and send it to the spam responder or postmaster as appropriate.
This would have the interesting effect of making the invalid email addresses appear to be get a better response than the actual addresses...
Re:Fill out forms (Score:2)
Re:Fill out forms (Score:4, Interesting)
1: If a SPAM message contains a form, you forward it to the program (which would create a local SMTP server to receive messages only from you). It would fill the form with random data, but somewhat intelligently, by parsing the HTML and figuring out what is valid for the form.
2: If a SPAM message goes to a web site with a form, go to that form in your browser. Run the anti-spam program and click a button to auto-fill the form. You could configure it to fill out the form multiple times, in the background, without user intervention.
3: If the SPAM message contains a link to geocities, or other free web hosting services, forward the e-mail to your anti-spam program's local SMTP server. It will grab the link and then forward the e-mail, header, and link to the appropriate abuse@ address.
There are probably other things like this that could be done. If someone wrote this program, I'd use it religiously, and I'd imagine a lot of other people would too. If it was easy enough to use and as unobtrusive as possible, people would be using it like crazy. The spammers would get wiped out.
Believe me, if I had the spare time, I'd start writing this program today.
Re:Fill out forms (Score:2)
1: You didn't request
2: You don't want to read
3: It's SPAM
4: It's public. That means: It's like a message board. You can write whatever you want. If the "moderators" of the board don't like it, they can remove it, but 1 and 2 of my post fall under free speech, in the States, and I doubt you'll find anyone who disagrees with it.
Remember, 98% of these guys are forging their e-mail addresses, which makes them guilty in some dozen states, or so, of the U.S. So they're going to come after me for posting garbage to their forms? I doubt it.
Eliza replies to spam: "Tell me about your mother" (Score:2)
Oh, I can make $10,000/week? How do you really feel about me making $10,000/week... wouldn't this just contribute to your feelings of inadequacy, stemming from your overly controlling mother? Perhaps if you tell me more about your relationship with your mother we can delve more deeply into the issues underlying your antisocial need to waste people's time with stupid email offers that no one gives a damn about.
Then again, I don't have the time to re-code ELIZA to do this, and besides, it's easier to bounce the email back after convirting it to an M$ Office document and attaching it, with a simple explanation:This seems easier than the forms approach...
Re:Fill out forms (Score:1)
I replied earlier to jcapell [slashdot.org] , and since yours was the post that sent me to Lenny's, I thought I'd direct you to my reply [slashdot.org] . I think you'll like it -- I took the script that was there and improved it quite a bit.
Enjoy,
Re:Fill out forms (Score:1)
Spam Control (Score:1)
Re:Spam Control (Score:1)
Enough of the FP's. Get a Life and read the stuff. (Score:1)
bouncing mail with procmail (Score:3, Interesting)
you can tell procmail to exit with whatever exit code you feel like it. there's an exit code for "no such user" if you can detect your spam with procmail and any combination of scripts, you can force it to send a bounce message saying that the user doesn exist. if you want, you can even force that sendmail-generated bounce message, and still receive the mail.
consider the following recipes:this would have you still able to read your spam, if you're so inclined. (deliver it to /dev/null if you're not.) i would tend to think that a "user does not exist" bounce message would be better for preventing future spam than an annoying little eliza-generated email
Faked FROM fields. (Score:4, Interesting)
Re:Faked FROM fields. (Score:3, Funny)
Giving a legal recourse for the recipient would require a law you know.
Re:Faked FROM fields. (Score:1)
Re:Faked FROM fields. (Score:1)
then that makes it theoretically impossible to find a spammer.
This is based on two assumptions:
1) That they get good enough at spoofing stuff
2) That spamming, and spoofing, are legal (which they pretty much are)
If the whole point is to catch spammers, it sounds to me like there has to be some sort of law. Like "Thou shalt not send unsolicited communications advertising a product or service"
Re:Faked FROM fields. (Score:2)
ROFL - Is this true cognitive dissonance, or just the normal rantings of the average young Ritalin-drenched brain?
Re:Faked FROM fields. (Score:1)
Eliza set us up the bomb (Score:1)
You: All your base are belong to us.
Eliza: What about your own base are belong to us?
Please don't use this (Score:5, Informative)
Re:small problem here (Score:2)
Most smart spammers (I know that may be an conflict in terms) will either use a phone number, a physical address, or a web form. The only thing you can attack there is the web form. Spammers will usually set a maximum length per field. You may only use 30 characters for your name, 10 numbers for your phone number, and 50 characters for a comment. The way around this is to save a local copy of the form and strip out the max length variables. Then set eliza on it, or just pipe the chargen port to it.
Re:poor eyesight... (Score:1)