At A List Apart, the article Graceful E-Mail Obfuscation makes me think about a funny aspect of the spam war. There's a neverending march of articles with the latest and greatest method for defeating spam in its many pernicious forms. Individuals have long used their own favorite method of obfuscating their addresses when posting them in public places (although it seems more common today to simply hide them entirely and use safer methods of communication, such as private messages on message boards). Spam and email address harvesting are volume businesses, so it's true that even if your address is easily parsed by a human, a harvester (the person) would never bother with manually searching it out, and they probably won't bother trying to make their harvesting programs smart enough to parse every possible obfuscation. But if a particular method, such as replacing @ with (a), becomes popular enough, it might become worthwhile for the harvester to gain a competitive advantage by enabling their program to parse it. The same is true for many other cases, such as spam filters in email programs.
So in a sense, the best way to ensure the defeat of an anti-spam method is to popularize it. The only way to win the war is for everyone to have their own custom anti-spam measures, such that there's no efficient way for a spammer to outwit all of them. On some level people already do this--they obfuscate their email addresses in their own funny little way, and lots of people who run web sites come up with their own little system or clever CAPTCHA. In other cases, such as email filtering, it's far less practical for individuals to take the time to do this. This is a problem that resists the incredible efficiency of distributing software--people writing programs or plugins or writing articles with some html code are doomed to be defeated by their own success, while anyone creative, self-motivating, and perhaps selfish enough can win.
Comments (2)
Why is it so hard to outsmart the Spam and why are people trying so hard to do so. Isn't Spam just a modern version of junk mail. People have been living with that for decades. Why is everyone so obsessed with getting rid of spam. I don't use the computer as much as some people, but I find spam pretty easy to eliminate. If I don't recognize an address and it seems suspicious I report it and then it's gone. I guess it could be different for people who use email all day for work, but come on if a coworker, boss, or client has something important to tell you they will probably try and reach you in multiple ways. Anyone who doesn't know that emails sometimes get lost is living in another world. I really think people are overreacting about Spam, but you're right, the only way to do away with it would be to come up with your own personal scheme.
December 12, 2007 10:30 PM
Several good questions. First, one reason spam is more vexing than junk mail is that it costs next to nothing for the spammers to send it. The only people that pay are those who receive it and the bandwidth providers, while the post office makes tons of money from physical junk mail. Spam is currently estimated to be 80-85% of all email sent. Then again, the percentage is probably not all that different for snail mail.
Second, it's true, email spam is much less of a problem with services like Gmail that can update their filters for all users without any intrusive software updates. It can be more of a problem for people who expect to receive some legitimate mail from strangers, such as journalists or people who run popular websites.
Also, spam is not just for email. In comments on blogs, forums, and wikis it can be very annoying--it can even bring entire web sites down. Maybe unified systems like Gmail's are the other possible long-term solution.
December 13, 2007 10:40 PM