[AusNOG] Controlling spam in IaaS environment

Daniel Manzau daniel.manzau at 3ca.com.au
Thu Dec 1 14:17:44 EST 2016


Hi All,

We're after a bit of advice as to what general best practice is in stopping
(failing that, identifying) SPAM in IAAS/Hosting type environments.

The way we see it there are two broad methods by which spammers can abuse
this type of service:

1) Spammer creates a server which they then use a spam source until they
get shut down and kicked. Let's call this the SPAMY Customer

2) Spammers exploit a legitimate customers existing server and then use
that exploit to deliver spam. Let's call this the SPAMY Exploit.

There are quite a few strategies that stop the SPAMY Customer, like
blocking outbound port 25 by default in their service profile. However,
these methods don't stop the SPAMY Exploit.

Is the best approach to cover off both scenarios a commercial
appliance/service and if so, does anyone have any recommendation on a good
value service provider solution for an IaaS type offering?

Thanks
Daniel
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20161201/f5b56b3e/attachment.html>


More information about the AusNOG mailing list