Improving domain blacklisting - spam mail, Computer Network Security

Improving domain blacklisting:

Current domain blacklisting techniques are not very effective as spammers keep replacing blacklisted domains with newly registered domains. Also, the IP blacklist only focuses on the sending IP addresses of spam emails, which is not effective against botnet-generated spam.  So,  to combat this problem the idea is to cluster spam domains based on their hosting IP addresses and associated email subjects and identify the most dominant hosts rather than the  common content-based spam detection research approach. The goal is to identify spam hosts that are heavily used by spammers to host many spam domains and account for a large number of spam messages.

 For blacklisting, The URLs within the spam emails are analyzed and scrutinized and reported to the blacklist. Further incoming emails which contain any of the blacklisted domains will be blocked. As a future view, the target is to build IP blacklist and domain blacklist that can be reported to law enforcement agents. Currently, it is done by SQL queries. Automating this process by having a computer program query the database and generate reports would be beneficial for spam reduction. This would reduce the time taken in analyzing the domains to be blacklisted and hence would reduce the spam mails.

Posted Date: 2/28/2013 7:04:06 AM | Location : United States







Related Discussions:- Improving domain blacklisting - spam mail, Assignment Help, Ask Question on Improving domain blacklisting - spam mail, Get Answer, Expert's Help, Improving domain blacklisting - spam mail Discussions

Write discussion on Improving domain blacklisting - spam mail
Your posts are moderated
Related Questions
Network security has become much more complex than ever before. New types and sources of network security threats, always-on high-speed Internet connections, wireless networking, a

Problem : (a) Provide one possible classification of PCA, ART, RBF, and Fuzzy ARTMAP networks. (b) Describe in detail the characteristics of Radial Basis Function Neural Net

Question: (a) Which of the following is not a goal of security: i) detection ii) prevention iii) recovery iv) prosecution (b) You are an honest student. One day you

Question : a) Below is a capture of an Ethernet II frame which contains an IPv4 packet and a TCP segment. Give the source MAC address for the frame in hexadecimal; the source I

FRAME FORMAT AND ERROR DETECTION The changed frame format also adds CRC. If there is an error happened in frame, then it typically causes receiver to removed frame. The frame

Question: a) Differentiate between ‘Gross Settlement' and ‘Multilateral Net Settlement' providing suitable examples where necessary to support your answer. b) Differentia

Social Network development in Java: Project Title: SUGGESTLOCAL (Nov 2006-April 2007) Role             : Developer Domain        : Social Network Client          :

Question: (a) Describe the term interference in the space, time, frequency, and code domain. (b) Consider a 1 G - AMPS: 824-849 MHz (forward) ; 869-894 MHz (reverse). B

W h a t do you understand by the terms security, network security and information security? How network security and information security are connected? Security can be def

QUESTION (a) (i) Describe Phishing attacks. (ii) Distinguish between Phishing and Spear Phishing attacks. (b) Describe two instances where an attacker sniffing on a netwo