BKSTPSPM.RVW 981030 "Stopping Spam", Alan Schwartz/Simson Garfinkel, 1998, 1-56592-388-X, U$19.95/C$29.95 %A Alan Schwartz alansz@araw.mede.uic.edu %A Simson Garfinkel simsong@vineyard.net %C 103 Morris Street, Suite A, Sebastopol, CA 95472 %D 1998 %G 1-56592-388-X %I O'Reilly & Associates, Inc. %O U$19.95/C$29.95 800-998-9938 fax: 707-829-0104 nuts@ora.com %P 208 p. %T "Stopping Spam" Eternal vigilance is the price of junk free email. Therefore, readers expecting to find a quick fix for spam in this book are possibly going to be disappointed. Those who persevere, however, will find much useful material that is both interesting, and valuable in the fight against unsolicited and commercial mass mail bombing. Chapter one details the problem with a definition of spam, the functionally differing types of spam, the different intention of spam (including reputation attacks), and the reasons why spam should be combatted, rather than merely tolerated and deleted. A historical background to the situation is provided in chapter two. This includes mention of viral programs (plus a repetition of the myth that CHRISTMA EXEC caused a mass shutdown of VNET). the primary emphasis, though, is on the GReen Card Lawyers, Cyberpromotions, and others of that ilk. (A warning against vigilante actions is also germane.) The current position is described very briefly in chapter three. Groups of spammers and spamming tools are noted. (Perhaps the authors do not want to give anyone ideas, but the technology section is very terse indeed.) In closing, a nightmare future spam scenario is provided. Chapter four provides a solid technical background for further discussion of spam, covering mail agents and the mail and news protocols. A number of steps that the average computer user can take are listed in chapter five. The range from hiding your identity or preventing address "harvesting" (not all the suggestions are convenient), to the more active detecting of spammers behind spoofing techniques, and reporting to authorities. Similar advice for newsgroups is given in chapter six, emphasizing specific programs like NoCeM. Chapter seven moves into larger areas of responsibility with advice on both policy and practical configuration settings to reduce both incoming and outgoing spam. The larger net community is addressed in chapter eight. An appendix lists a wide variety of resources, but the annotations may not always give you the complete picture. For example, the Spam Media Tracker Web site is listed, but at a relatively old address. This, of course, happens all the time on the net, but it is stranger that there is no mention of the spam-news mailing list, the original (and ongoing) source for the site. It would, or course, be prohibitive to identify all international agencies dealing with spam. However, do note that only US government offices are noted as departments to report to. While understandable, the tone of moral outrage that colours the initial chapters may not be as helpful as a calmer precis. As the book hits its stride, though, it provides a good deal of helpful and useful information. All ISPs (Internet Service Providers), corporate network administrators, and net help desks should have a copy of this reference handy. Any serious Internet user will also find it well worth the price. As the authors put it, in slightly different words, the only thing necessary for the triumph of spammers is that good users do nothing. copyright Robert M. Slade, 1998 BKSTPSPM.RVW 981030