Blocking Spam by Separating End-User Machines From Legitimate Mail Server Machines

Spamming botnets present a critical challenge in the control of spam messages due to the sheer volume and wide spread of the botnet members. In this paper, the authors advocate the approach for recipient mail servers to filter messages directly delivered from remote End-User (EU) machines, given that the majority of spamming bots are EU machines. They develop a Support Vector Machine (SVM) based classifier to separate EU machines from Legitimate Mail Server (LMS) machines, using a set of machine features that cannot be easily manipulated by spammers.

Provided by: Association for Computing Machinery Topic: Security Date Added: Sep 2011 Format: PDF

Find By Topic