Lycos, spammers trade blows over screensaver

Lycos Europe NV is caught in a tit-for-tat struggle with spammers, just days after releasing a free screen saver software program that uses computer down time to swamp Web sites associated with spam campaigns.

At least one Web site targeted by Lycos's "Makelovenotspam" screen saver program, www.moretgage.info, has changed its Web page, forwarding requests it receives to http://makelovenotspam.com, a Web domain that distributes the screen saver program, according to F-Secure. The escalating war with spammers comes amid mounting criticism of the screen saver from antispam experts and a crackdown by ISPs on the program.

Lycos launched the "Make Love, Not Spam" screen saver Wednesday, but was circulating a beta version of the software before that. The screen saver promises to "spam the spammer" by sending a steady stream of requests to a list of Web sites that have been used in spam campaigns, slowing those sites. The list of sites to attack is downloaded by the screen saver program from a control server operated by Lycos.

Charges quickly surfaced that Lycos was crossing the line by launching a DDOS (distributed denial of service) attack, which is illegal in the U.S. and most European countries. The antispam campaign also prompted quick retaliation from unknown parties, including a reported hack of the makelovenotspam.com Web site.

Lycos denied that its Web site was hacked and stated that makelovenotspam does not launch denial of service attacks, because the company is careful to avoid completely shutting down the sites it targets. The company did not respond to requests for comment for this story.

The moretgage.info Web page was changed to contain an HTML (Hypertext Markup Language) Meta Refresh tag that forwards all requests to view the page to http://www.makelovenotspam.com, effectively using the screen saver to launch attacks on Lycos's Web site, F-Secure said. Requests for moretgage.info were still being forwarded to makelovenotspam.com Thursday morning, Eastern Standard Time.

More troubling for Lycos, some ISPs are blocking traffic to the server that controls the makelovenotspam screen savers, according to Johannes Ullrich, chief technology officer at The SANS Institute's Internet Storm Center.

ISPs are treating Lycos's network of machines running the makelovenotspam screen saver in the same way they treat "botnets" of compromised systems that are controlled by malicious hackers or organized online criminal groups and often used to distribute spam or launch DOS attacks, he said.

"The (makelovenotspam) application isn't really all that well thought out. In a way, it's doing a DDOS attack, and DDOS attacks are always a bad thing, because there are always innocent bystanders who get hit as well," he said.

"I would have to characterize it as an astonishingly stupid idea," said John Levine of the Internet Research Task Force's Antispam Research Group.

Legal questions aside, the "spam the spammers" approach won't work, because those behind spam campaigns can quickly take down and move Web sites referred to in spam e-mail. The makelovenotspam program also consumes bandwidth and resources from the networks and ISPs that serve machines running the software, not just from spammer networks, he said.

"This program steals bandwidth from a lot of people who had no intention of playing junior DDOS cop," Levine said.

Ullrich and others consider the "Make Love not Spam" campaign a publicity stunt, more than a well-planned antispam campaign, but say that it was poorly thought out.

"This is like a lame idea that a college kid would think of, not something a serious company would do, " Levine said.

Resistance from ISPs may bring a quick end to the "Make Love Not Spam" campaign, he said.

"My guess is that they won't be able to sustain this very long, once legitimate networks have figured out who is controlling (the machines running the screen saver) and start blocking access to that host," he said.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Paul Roberts

IDG News Service
Show Comments

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

David Coyle

Brother PocketJet PJ-773 A4 Portable Thermal Printer

I rate the printer as a 5 out of 5 stars as it has been able to fit seamlessly into my busy and mobile lifestyle.

Kurt Hegetschweiler

Brother PocketJet PJ-773 A4 Portable Thermal Printer

It’s perfect for mobile workers. Just take it out — it’s small enough to sit anywhere — turn it on, load a sheet of paper, and start printing.

Matthew Stivala

HP OfficeJet 250 Mobile Printer

The HP OfficeJet 250 Mobile Printer is a great device that fits perfectly into my fast paced and mobile lifestyle. My first impression of the printer itself was how incredibly compact and sleek the device was.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?