Firewall Software Guard Welcome Guest | Login or Register

In a word Bayesian spam filters are “intelligent”. Bayesian spam filters are intelligent in so far as they’re capable of comparing two sets of information and acting on the result. This is in direct contrast to the vast majority of other spam filters who use pre-built rules to decide which e-mail is spam and which is not.

Bayesian spam filters can take one group of legitimate e-mail and another group of spam and compare the values and data of each. The definition of legitimate e-mail that it creates at the end of this comparison session is what it uses going forward to scan your inbox for spam.

FYI Bayesian spam filters are named after Thomas Bayes an 18 century cleric who created something known as Bayes Theorem. In summary Bayes Theorem is as follows: ..”in statistical inference to update estimates of the probability that different hypotheses are true, based on observations and a knowledge of how likely those observations are, given each hypothesis.” In plain English it looks for obvious repeating patterns to form an “opinion” on something. In spam filter terms that “opinion” becomes a rule which keeps you spam free (or pretty close

The really neat thing about Bayesian filters is that they’re capable of learning. For example if they decided to block an e-mail because the filter perceived it as junk but the user marked it as valid mail the Bayesian filter then knows not to block that type of e-mail in the future. So, in time, this type of spam filter learns enough to block spam far more effectively. AOL have embraced this type of spam filter with the launch of AOL 9.0 and AOL Communicator- if the big dog wants it then it must be worthwhile?

So what Bayesian spam filtering options are available to you? Well quite a few to be honest and you’ll be pleasantly surprised by some of the names involved The first one on the list is AOL with their AOL Communicator product. The spam filtering features in AOL Communicator and AOL 9 are, to be honest, impressive. Think what you will of the provider themselves AOL Communicator is an excellent product and is suitable for use by both PC and Mac OSX users.

Next up we have Eudora. The nice folks at Qualcomm have designed an excellent e-mail client that also has built in Bayesian spam filtering. I’ve used Eudora in the past and it’s a neat little package. Again the benefits here are advanced integrated spam filtering with your e-mail automatically. Mac OSX and OS9 users are in luck with Eudora providing support for both.

If you’d like to know more about spam filters or just spam in general please drop by our site at www.spam-site.com

Need a spam blocker? Check out Spam-Site.com for spam filter reviews and spam related information.

Share This

After Two Security Assessments I Must Be Secure, Right?

—————————————
Imagine you are the CIO of a national financial institution
and you’ve recently deployed a state of the art online
transaction service for your customers. To make sure your
company’s network perimeter is secure, you executed two
external security assessments and penetration tests. When
the final report came in, your company was given a clean
bill of health. At first, you felt relieved, and confident
in your security measures. Shortly thereafter, your relief
turned to concern. “Is it really possible that we are
completely secure?” Given you’re skepticism, you decide to
get one more opinion.

The day of the penetration test report delivery is now at
hand. Based on the previous assessments, you expect to
receive nothing but positive information……

The Results Were Less Than Pleasing

———————————–
During this penetration test, there were several interesting
findings, but we are going to focus on one that would knock
the wind out of anyone responsible for the security of
online systems. Particularly if you are in the business of
money.

Most people are familiar with the term “Phishing”.
Dictionary.com defines the word Phishing as “the practice of
luring unsuspecting Internet users to a fake Web site by
using authentic-looking email with the real organization’s
logo, in an attempt to steal passwords, financial or
personal information, or introduce a virus attack; the
creation of a Web site replica for fooling unsuspecting
Internet users into submitting personal or financial
information or passwords”. Although SPAM / unsolicited
e-mail and direct web server compromise are the most common
methods of Phishing. There are other ways to accomplish this
fraudulent activity.

Internet Router Compromise Makes For A Bad Day

———————————————-
In this case, the Internet router was compromised by using a
well-known CISCO vulnerability. Once this was accomplished,
the sky was the limit as far as what could be done to impact
the organization. Even though the company’s web server was
secure, and the Firewall that was protecting the web server
was configured adequately, what took place next made these
defense systems irrelevant.

Instead of setting up a duplicate login site on an external
system, then sending out SPAM in order to entice a customer
to give up their user ID, password, and account numbers,
another approach, a much more nefarious approach was taken.

Phishing For Personal Or Financial Information

———————————————-
You remember that router that was compromised? For proof of
concept purposes, the router configuration was altered to
forward all Internet traffic bound for the legitimate web
server, to another web server where user ID, password, and
account information could be collected. The first time this
information was entered, the customer would receive an
ambiguous error. The second time the page loaded, the fake
web server redirected the customer to the real site. When
the user re-entered the requested information, everything
worked just fine.

No one, not the customer, nor the company had any idea that
something nefarious was going on. No bells or whistle went
off, no one questioned the error. Why would they, they could
have put the wrong password in, or it was likely a typical
error on a web page that everyone deals with from time to
time.

At this point, you can let your imagination take over. The
attacker may not move forward and use the information
collected right away. It could be days or weeks before it is
used. Any trace of what actually took place to collect the
information would most likely be history.

What Do You Really Get Out Of Security Assessments

————————————————–
I can’t tell you how many times I’ve been presented with
security assessment reports that are pretty much information
output from an off-the-shelf or open source automated
security analyzer. Although an attacker may use the same or
similar tools during an attack, they do not solely rely on
this information to reach their goal. An effective
penetration test or security assessment must be performed by
someone who understands not only “security vulnerabilities”
and how to run off-the-shelf tools. The person executing the
assessment must do so armed with the tools and experience
that meets or exceeds those a potential attacker would have.

Conclusion

———-
Whether you are a small, medium, are large company, you must
be very careful about who you decide is most qualified to
perform a review of your company’s security defense systems,
or security profile. Just because an organization presents
you with credentials, such as consultants with their
CISSP….., it does not mean these people have any
real-world experience. All the certifications in the world
cannot assure you the results you receive from engaging in a
security assessment are thorough / complete. Getting a
second opinion is appropriate given what may be at stake. If
you were not feeling well, and knew that something was wrong
with you, would you settle for just one Doctor’s opinion?

Quite frankly, I’ve never met a hacker (I know I will get
slammed for using this term, I always do), that has a
certification stating that they know what they are doing.
They know what they are doing because they’ve done it, over
and over again, and have a complete understanding of network
systems and software. On top of that, the one thing they
have that no class or certification can teach you is,
imagination.

About The Author

—————-
Darren Miller is an Information Security Consultant with
over sixteen years experience. He has written many
technology & security articles, some of which have been
published in nationally circulated magazines & periodicals.
If you would like to contact Darren you can e-mail him at
Darren.Miller@ParaLogic.Net. If you would like to know
more about computer security please visit us at
http://www.defendingthenet.com.

Share This

Do you know what to look for in anti-virus software?

You just bought yourself a new computer! Can’t wait to get it out of the box. Maybe you have had a computer before and maybe this is your second or third computer. And, you don’t want to have all those problems you hear about. This is the time to think ahead and go for a positive online experience.

You should realize that while you are unpacking your new machine, there are people all over the world who are plotting to spoil your computer with maliscious, well-thought out plans. Your computer will endure attacks moments after you go online. This is why we all have to use antivirus protection. You and I just have no choice. The single most important program on your computer is your anti virus program. And, it should be a really good one. Everything on your computer, from your valuable software, your work, to your personal financial records is contantly at risk. I will explain some of the features you should look for in anti-virus software.

Most of us make our choice on price alone. That is, after we use the product that comes with our computers. This is not the way to choose something so important. You need to look at several products before making your decision.

Look at your available options. Start with the anti virus software that came with your PC. You can get started by getting that software up and running. Don’t try to postpone using anti-virus software. After a period of time, your software needs updated. While you are online, your software should be allowed to make daily updates. It is very important to make the first update as soon as your new computer is online for the first time. It is very likely there have been a lot of new threats and viruses introduced since the computer left the factory. Updating the software is the best way to keep your computer protected against these new online dangers.

As you use the software that came with your new computer, it is a good idea to make a list of what you like - and don’t like - about it. Is it easy to update? Is it user friendly? Is it easy to see any problems? Does the software notify you if the update could not be completed? Are updates made available on a daily basis?

Now, you have a basis for establishing what to look for in anti-virus software. Read all you can online to get even more information. Some anti virus companies make their software available in trial versions, so be sure to check out a number of different products before deciding which one best suits your needs. Some of the best is free, without a trial.

Take some time to get the best protection you can for your computer. And, periodically back up your files. Al little planning can make your computer experience an enjoyable experience.

Alton Hargrave offers advice and resources for those interested in a business online. His website, http://bigthicketonline.com contains honest information regarding website software and low-cost solutions for your business.

Share This