[Sysops-list] call for help...

kp at ntc.net.np kp at ntc.net.np
Tue Feb 6 15:41:21 NPT 2007 

Hi All,
I also agree that we can easily block the domain but regarding legal
prosecution, I agree with Vicky that in our case that could hardly be a
practical approach.
The easiest and most effective thing we can do is to block their domain
and make them come to us and them make them change their behavior.
Regards,
Krishna


> Hi bipin,
>
> I am not quite sure how strong the case will be in our current laws and
> what about the legal fees and stuff ?
>
> I think if all the ISPs agree to this, we can block this domain
> entirely. His market base is in nepal if we start blacklisting his
> domain all over nepal then his business model will fail.
>
> Maybe setup a RBL in Nepal where all ISPs use it. It can also have a
> online spam reporting page and based on the hit ratio of a particular
> email we can put it in RBL.
>
> Bipin Gautam wrote:
>> Dear Vicky dai and all,
>>
>> Here is the plan if you guys are intrested...
>> To begin with ISP's should log (archive) all emails with the email
>> body containing those domain names. Or maybe write a Wireshark
>> (Ethereal) rule in in another BOX for the above domain and start
>> logging. The simplest solution could be connecting a HUB in between,
>> before the CAT5 cable enters your mail server and joining another
>> computer in the hub and  start sniffing in promiscuous mode from this
>> another computer ( or think of some better solution for logging )
>>
>> After we get some certain hits (say 100 spam / day) in period of 2-3
>> week we will do a simple statistic analysis of bandwith WASTED.
>>
>> here is an example:
>> The standard cost for buying 1000 MB(1 GB) a month bandwith(by volume)
>> would cost Rs. 3500.00 per month
>>
>> Assume: they have irritated us with 100000 emails so far (in period of
>> 12 months)
>> Bandwith cost per spam email ~= 3 kb
>>
>> then 100000 * 3 /1024 == 292.968 Gb bandwith wasted so far
>>
>> == 1025388 Rs ~ 10 lakhs in damage (atlest)
>>
>> Maybe he/she could also be charged under multiple charges like
>> - mis-leading the users into criminal activity.
>> - Misusing free services (hotmail, gmail, yahoo) for illigal purpose
>>
>> Few of us can testify about the volume of spam mails. I can work on
>> digital forensics investigation.
>>
>> After initial logging is complete... and after fileing a complain (but
>> before immidiate arrest) we could make a VIDEO TAPE infront of a
>> police personal of calling to the OWNER(SPAMER) (pretending a
>> potential advertiser) asking him passively about his business reach
>> (how many users he has access to and can cover through advertisement),
>> how long has he been in business, successful business he has
>> previously done etc (which can be later held against him through voice
>> analysis if he/she doesnt plead guilty)
>>
>> Nepal Police IT department could then make a seize of his digital
>> devices and documents (we could teach them how to make the computer
>> and computer media seize in forensically sound manner  through
>> personal link ;) and later they could hire us to complete the digital
>> forensic investigation.
>>
>> With the help of a lawyer we could then build up a strong case (as all
>> personal info of the OWNER is already available) and maybe he/she will
>> plead guilty and pay the damage.
>>
>> The return can be used to cover the costs and for planing further
>> work/infrastructure in nepal  on digital forensic investigation on
>> future. I personally think ISPN should take the initiative of
>> requesting ISPs for the logging and later to file a complain.
>>
>> This case can really send a wakeup call to all others on issues
>> regarding ETA and digital forensics which our government isnt really
>> prepared for... yet.
>>
>> views???
>>
>> with regards,
>> -bipin
>>
>>
>>
>>
>>
>> On 2/5/07, Vicky Shrestha <vickysh at wlink.com.np> wrote:
>>> Hi,
>>>
>>> I am also getting a lot of these emails lately and am very much
>>> intimidated. It is also coming to my hotmail address.
>>>
>>> Last time I got spam from cafedewheels.com.np and I asked my ISP to
>>> block that domain and later they complained that they have my address
>>> in
>>> the database and I subscribed. Do I have the time to waste to subscribe
>>> for such idiotic emails ?
>>>
>>> We should definitely take actions against these emerging spammers.
>>>
>>> How do we proceed ?
>>>
>>> Bipin Gautam wrote:
>>> > hello guys,
>>> > the advertisement and marketing for from the following domain (it
>>> > points to same owner)
>>> >
>>> > http://www.maxonlinejob.com/
>>> > http://max-online.biz/
>>> >
>>> > ...is just anoying me or everyone?
>>> >
>>> > Its a nepalese company in putalisadak, KTM (i suppose) and spaming
>>> > our emails in name of e-marketing for over 6 months now. Its
>>> promoting
>>> > ignorant (which NOT EQUELS innocent) users to send us all (nepali
>>> > online users) so called emails for marketing in volumes from online
>>> > hotmail, yahoo, gmail accounts.
>>> >
>>> > Can someone (ISP/ISPs) please set a email filter to count how many
>>> > JUNK messages they receive in a week time for the above domain ( in
>>> > email body )
>>> >
>>> > we already have digital tranjection act in place. Somoeone (ISPN?)
>>> > should work on sending a clear message regarding such activity...
>>> > maybe fileing a lawsuit and see how NEPAL POLICE will procead/react
>>> to
>>> > it ( officially for the very first time) regarding a offence related
>>> > to e-crime. I believe there are just few thousand junk mails
>>> > circulating for the domain in every few days (not in regular basis)
>>> > and mostly targeting hotmail, yahoo and gmail users. But this might
>>> be
>>> > a begining to a larger problem if not DISCOURAGED in time.
>>> >
>>> > anyone intrested? I can help you work on, on the technical part to
>>> > create a LEGAL COMPLAIN LETTER with evidence.
>>> >
>>> >
>>> > please forward this email to ISPN mailing list.
>>> >
>>> > -bipin
>>> > ------to  the curious ones here is the sample of their spam mail-----
>>> > Subject: Home Based Part time Online job,
>>> >
>>> > Looking for a Real Work At Home Job?
>>> > Get paid For Completed Work..
>>> > No More relying on commissions
>>> > Would you like to earn money from home for completing various
>>> clerical
>>> > based
>>> >
>>> > projects and assignments from home?
>>> > You are not required to sell, or recruit but are simply paid to type
>>> ads
>>> > and
>>> >
>>> > other media!
>>> >
>>> > Fillup the below information for further Information.
>>> > Name :
>>> > E-mail Address :
>>> > Phone no:
>>> >
>>> > Call : 2390177 / 9841206820
>>> > Check it out
>>> > http://www.maxonlinejob.com/idevaffiliate/idevaffiliate.php?id=1846
>>> > ---------------------------------------------------------------
>>> > _______________________________________________
>>> > Sysops-list mailing list
>>> > Sysops-list at npix.net.np
>>> > http://lists.npix.net.np/mailman/listinfo/sysops-list
>>> >
>>> >
>>>
>>>
>>> --
>>> Regards,
>>>
>>>
>>> Vicky Shrestha
>>>
>>
>>
>
>
> --
> Regards,
>
>
> Vicky Shrestha
> _______________________________________________
> Sysops-list mailing list
> Sysops-list at npix.net.np
> http://lists.npix.net.np/mailman/listinfo/sysops-list
>
>

More information about the Sysops-list mailing list