Spam Prevention Methods Explained

There are many ways to fight SPAM. The most widely used methods are Rule Based and Challenge-Response. A quick and concise overview of these two methods follows.

However, for those impatient readers, I’m guilty of this as well, the bottom line is that I am partial to the Challenge-Response method of SPAM prevention and strongly recommend the completely FREE software offered by The Spam Research Center. I have evaluated many different anti-SPAM programs, both free and paid, and I can honestly say that their software will not only stop close to 100% of SPAM, but it will also save you time and frustration.

Rule Based Systems

As the name infers, these methods use “rules” to determine what is and what is not SPAM. They generally look for specific keywords or content in the email. They may also use special algorithms or a distributed “community” approach where SPAM examples are sent in by users (the community) to central servers. The “community” can then use this ever-growing database to detect and block SPAM. However, because the “rule” databases are in a constant state of change in an attempt to keep up with or stay one step ahead of the “spammers”, there is always the chance that valid emails will be mistaken as SPAM. In an attempt to avoid this situation, the emails are usually “tagged” as SPAM by adding a specific keyword to the email header, subject line or some other field. These keywords can then be included in email client (Outlook Express etc.) rules so that the questionable emails can be appropriately routed to special email folders for later inspection or deleted. Unfortunately, an additional burden is then put on the user to monitor “spam” email folders for falsely “tagged” emails. Although many of these Rule Based methods do reduce SPAM, the necessity of updating “rule” databases, the ever present possibility of valid emails being detected as SPAM and the time consuming need to review “spam” folder(s) makes these methods less than desireable.

Challenge-Response Systems

Although there is no perfect solution for eliminating SPAM, Challenge-Response methods have become increasingly popular. These methods are extremely simple and only require you to maintain a “white list” and a “black list”. When an email is received from someone on your “white list”, it is delivered. When an email is received from someone on your “black list”, it is rejected and deleted. When an email is received from someone on neither of your lists, a simple “challenge” reply email is sent to them. When the unknown sender replies appropriately to the “challenge” message, they are added to your “white list” and their original and any future emails are delivered to your INBOX. The reason this method works so effectively is that “spammers” usually do not supply valid return email addresses and, if they do, there is usually a “robot” that sent the SPAM and it will not respond to your “challenge” message.

Summary

Both Rule Based and Challenge-Response methods have their PROS and CONS. However, taking everything into consideration, I feel that the Challenge-Response method is the best to date. With that said, I DO NOT feel that all implementations of this method are equal. Some Challenge-Repsonse software has the same shortcomings as those implementing the Rule Based method – “spam” folders to maintain and false positives.

I have evaluated many anti-SPAM solutions and can honestly say that I feel that Spam Research Center has the best challenge-response anti-SPAM software available today! This software has been thoughtfully designed and thoroughly tested to provide you with close to 100% SPAM protection without false positives. Better yet, the software is completely free!

Domain Names on the Internet Explained

The term “domain names” is more Internet jargon that’s very simple in concept and a little difficult to grasp in actuality. Often misused and misunderstood, domain names probably aren’t what you think they are.

What Are Domain Names?

You open up your browser, click on the text bar near the top, and type in a Web address. In all cases, you’ll be typing in some sort of domain name. In some cases, this domain name isn’t the entire Web address – though many Internet users believe the domain name and Web address are one in the same. They are not.

There are quite a few Web sites out there which provide a very intriguing link: Get Your Own Free Web Site! This is known as Web hosting, and it works quite simply. One Web site with a lot of space offers to let everyday uses create their own pages on the existing Web site. One prime example of this practice is Lycos mail. Those who have an email address with Lycos always have the option of using a Lycos site, Tripod, to create their own site. If I created a site through Lycos, my Web address would be something like myname.examplesite.com. This would be a Web address, not a domain name. You may own the Web site on the domain name, but the domain name itself reaps the rewards of that site. You’ve seen how it works: you create a free page, they put their ads all over it. They get the ad revenue, you get a free site.

Domain names are something a little different. The domain of the above Web site – myname.examplesite.com – isn’t ‘myname’ but Tripod. Tripod owns the domain. Amazon, eBay, PayPal – these are all examples of domain names. To have a domain name, you have to purchase the one you want from a domain name registrar, a Web site which offers domain names to users. When you own your own domain name, you get to decide where the content goes – and, who if anyone gets the benefit of advertising on your website.

Choosing the Right Domain Name for a Site

It is very important to choose the right domain name before purchase. Consider what the site on the domain name will be, what information the site will offer. If the site is going to revolve around a business, the domain name should be similar to the business name. It’s also important to choose a domain name that’s easy for Internet users to remember. This will increase your chances of getting return visitors and will make it easier for word of mouth on the site to spread – two things you definitely want. If unsure what to do always consult with a professional website developer.

The domain name should also be easy to spell. Internet users are used to quick-click, instant satisfaction. They aren’t going to spend a lot of time typing a long and cumbersome domain name just to get to their favorite site – they’d rather just get a new favorite site. Choose a domain name that can be easily and quickly spelled without too much thought or room for error. You’ll have much better odds of getting loads of traffic.

Domain Name Extensions

No matter what Web address you’re typing into your browser, it always has to be followed by one last detail – the extension. Common extensions include .com, .net, .org, .gov, and various country extensions like .jp (Japan), .fr (France) and .au (Australia). They vary from site to site, but what do they all mean?

In the earlier days of the Internet, the three main extensions (.com, .net and .org) all represented something different. The .com extension most commonly stood for company or commercial, while .org was reserved for non-profit organizations. These days, all of these extensions are available to the public at large, though .com is probably the most common extension on the Web. The .gov extension is reserved for government Web sites, and these are not open to the general public.

Different countries add their own extensions. British sites, for example, generally carry a .uk extension. Often, it’s easy to tell when a site belongs to a country different from your own – the language will be foreign. But many sites offer translated pages which let you view sites from foreign countries while still being able to read and digest the information. It is much more common to simply surf Web sites which were created in one’s own country, however, and many sites create completely separate sites for different countries to appeal to more visitors. If you expect to do a great deal of business with a particular country or expect to get a great deal of Web traffic from residents of another country, it might be prudent to create a site of the appropriate country extension. This will help you appeal to persons from that country on their own level.

Professional Web designers can offer advice on choosing a domain name, and on whether or not it’s necessary to purchase a domain name or use Web hosting. These designers can also help you create foreign-language Web sites to appeal to a broader base of customers.

Bulk Email Software Explained

For some, grappling with usual email customers is hard enough without having to factor in bulk email software. In these recessionary times, many businesses are finding that such software is a great asset to them when they are trying to market their products to customers. Here, we are going to look deeper into the world of email marketing and more about the intricacies of how the Internet advertising tool works. When done right, you could find that your company benefits greatly from the extra exposure.

 One thing that you should know before venturing into the world of bulk email software is that the packages are varied and that a lot of have different things to offer. Some features in one service can be as much use to as a chocolate teapot, so considering products that offer you a provisional trial can help you to determine whether you have found the right software for you. A lot of software companies don’t accept refunds, so believe twice before departing with your cash.

 If you haven’t gathered already, bulk emails are principally used in the trade of Internet marketing. You will appreciate that a lot of people who engage in this type of work primarily have a marketing background, meaning that designing may not be their strong suit. Thankfully, finding a good piece of bulk email software could help you to find pre-designed templates that make the require to pay for a graphic designer on top of your software costs redundant.

 Internet marketing through emails is no different to any type of advertising in the way that you could pour endless amounts of funds into a campaign. You wouldn’t invest in advertising on a billboard which is facing a brick wall, so why should your emails go amiss? With spam filters intercepting a few legitimate emails, finding bulk email software which has guaranteed rates of delivery to your clients is a must.

 Webmail clients like Google and Yahoo! could be really strict on spam, with nearly 90% of all emails in circulation being deemed as junk. With that statistic in play, it isn’t hard to see why.

 Even though a cheap software package or subscription could be a steal (many marketing services operate solely online), you need to make sure that you get the greatest value for money. Many companies structure their pricing differently, so taking to doing research with a calculator could help you immensely. Pending on how a lot of people there are in your mailing list, some pricing schemes can be more perfect than others for your business.

 There are a few services which price you on how many people there are in your mailing list; others meanwhile simply give you an allowance of how many emails you could distribute on a monthly basis. The amount you pay rises in correlation with how frequently you use the service that bulk email software companies provide. Don’t get complacent on costing, as the last thing you want to do is to waste your business’ money. Bear in mind that circumstances change as new people subscribe and unsubscribe from your mailing list.

 In business, there are some things that you can afford to pay little for. Really, if you want effective results, email marketing can’t be classified as one of these things.

VoIP Features and Advantages Explained

OK, so you’ve read up on what VoIP is and understand how it works. Now you think it’s the best telecom solution for your small to medium size business since sliced bread. But is it as good as it sounds?

This depends on how VoIP can enhance your business. Consider the following features before purchasing VoIP service to determine if it’s the right telecom solution for your business:

VoIP offers cost savings over traditional phone services. Multiple office locations can utilize the VoIP technology with a seamless connection and full functionality of the user handset between offices, specifically: intercom, paging, call transfers, centralized reception and messaging as well as unified messaging (e-mails & voicemail). No need to replace existing office phone systems. Gateways can be used with most PBX’s and Key Systems. Use the same local phone service which you are currently using, resulting in no loss of dial tone if the internet connection goes down. This applies to each office location or just the central location. Each remote location (whether it’s a single VoIP phone or VoIP phone system) can connect via the internet. Bandwidth size would determine the number of users at each location. Store managers and sales personnel can be connected to the office via the internet without being physically in the main office. This reduces driving time, improves productivity and the need for additional staff and office space, therefore reducing overhead costs. Improved customer service with call transfers within your business’s VoIP network. The customer is directed to the correct person without having to make another call, therefore is happier.

If you think the above VoIP features would benefit your business, than perhaps it’s time to check with a telecom consultant to discuss specific VoIP plans and pricing to match your needs.

Small business VoIP technology is available from a variety of different vendors including PhonePower, Lingo, Packet8, voip.com and myphonecompany. Enterprise VoIP is also available for larger organizations.

VoIP Security Threats Explained

In a recent report issued by CompTIA, the Computer Technology Industry Association, 50% of small and medium sized businesses (SMBs) had very little trust in the security offered by VoIP vendors, or for that matter, voice over IP security in general.

It is true, having your voice and data running on the same infrastructure leaves your telecommunications particularly vulnerable to all the security threats inherent in an IP network. Viruses, Trojan Horses, and worms can all wreak havoc on a network, and having your voice network go down for even the shortest time is intolerable for most business.

That said, security has come a long way, and most attacks can be stopped at the gateway by a good network administrator. While attacks on VoIP networks in particular are by no means widespread, the possibilities are there, if not imminent, and pose a very real threat to the very time sensitive requirements of voice over IP.

The following is a compilation of just some of the security threats facing a voice over IP network, as well as some security measures that could be taken to prevent such attacks.

SPIT: The new Spam for VoIP

Most anybody that receives email is familiar with the term Spam. Who among us has not received dozens of unsolicited emails, clogging up our mailboxes and causing us to waste our valuable time? Laws have been made to reduce the clutter in our mailboxes, and major offenders have been fined heavily and in some cases put in jail.

Spam is basically the broadcasting of advertisements, announcements, or other unwanted messages, over a network or networks, ending up in the mail boxes of anyone that has an email address on that network. At worst, spam is frustrating for the recipient, and can also cause network problems utilizing a good majority of bandwidth that is meant for other things. As email applications are connectionless and not sensitive to time delay, eventually the recipient will receive their emails intact, albeit a few minutes later than it would normally take.

Spam over Internet telephony, otherwise known as SPIT, can have far greater consequences than email spam. Spitters that target VoIP gateways can use up the available bandwidth, severely disrupting Quality of Service and causing a major degradation in voice quality.

The open nature of VoIP phone calls makes it easy for spitters to broadcast audio commercials just as email advertisements are broadcast. On closed networks like Vonage or Skype, or even your companies LAN, it is a little more difficult as the spitter would have to hack into the network in order to implement the broadcast. It can, however, be done.

The ability to broadcast audio messages over a VoIP network is not, in itself, necessarily a bad thing. Companies should be able to get out important messages quickly, and on a broader scope, emergency services could easily communicate mandatory evacuations, or warn of impending disasters in the event of catastrophe.

While Spit is certainly a technical possibility, to date, we have not seen a lot of it. In 2004, the peer to peer VoIP network Skype got hacked into, and users were inundated with unsolicited audio messages. Shortly thereafter, Skype had found and closed the loophole in the network. One other legal recourse is to get on the national Do Not Call list, to prevent solicitors from bombarding your voice mail box

Eavesdropping

Probably one of the scariest vulnerabilities of VoIP is the ability of an outsider to eavesdrop on a private conversation. This concept is nothing new to IP data networks, and generally requires a packet analyzer to intercept IP packets, and in the case of VoIP, saving the data as an audio file. Hackers then have the ability to learn user ids and passwords, or worse, to gain knowledge of confidential business information.

While it is true that eavesdropping occurs on traditional telephone lines as well as cellular networks, for someone to tap into your home phone line pretty much requires a physical presence outside your house. In the case of an IP network, a hacker requires only a laptop, some readily available software, and the knowledge of how to hack into your network.

Security analysts have long used encryption techniques to protect the confidentiality of data traveling through an IP network, and the same concept holds true for voice packets. The challenge with voice is to encrypt strongly and quickly, to protect confidentiality and as not to slow down the packet flow.

Nevertheless, if someone really wants to listen in on your calls, no type of telecommunication is 100% secure.

Phishing the Waters of Voice over IP

Another variation of an email attack, Phishing is designed to trick a user into revealing sensitive data such as user names, passwords, bank accounts, credit cards, and even social security numbers. In the case of VoIP, the attack could come as a voice mail message urging you to call a designated number and provide your user information. Even if the call is automated, touch tones can be easily deciphered. Depending on what information they get, hackers can use it to access bank accounts, or to steal identities.

While you can program a PBX to restrict call backs to known phishers, as more users become familiar with the pitfalls of the Internet, it becomes common knowledge to never give out sensitive information to automated media, be it via data or voice.

SIP Registration Hijacking

The Session Initiation Protocol (SIP) is becoming widely accepted as the method for setting up VoIP phone calls. The process involves a Registrar (in some cases the company PBX itself), which maintains a database of all users subscribed to the network, and basically maps their telephone number to an IP address.

Registration hijacking occurs when the packet header of either party is intercepted by a hacker, who substitutes his IP address for that of the legitimate one. Attacks can take the form of fraudulent toll free calls, denial of service attacks that can render the users device useless, or a simple diversion of communication.

Spoofing

Another hack that is well known in data networks is spoofing Also known as a man in the middle attack, spoofing requires hacking into a network and intercepting packets being sent between two parties. Once the IP address or phone number of the trusted host is discovered, hackers can use this attack to misdirect communications, modify data, or in the case of Caller ID Spoofing, transfer cash from a stolen credit card number.

SIP registration hijacking is a form of spoofing. Both of these spoofs, as well as other hacks such as eavesdropping, can be prevented by employing encryption techniques at the call set up phase. Today, the up and coming mechanism to achieve this is to send SIP messages over an encrypted Transport Layer Security channel. Putting these two protocols together forms the acronym SIPS.

There is no doubt that IP networks can be, and are, hacked into. Since a converged network consists of data and voice, VoIP is as vulnerable as any application to these disruptions, but with a downtime tolerance of no more than 5 minutes a year, such interruptions are considered intolerable for voice applications.

As of today, most of these security threats are not wide spread, and are presented here as a what could happen in the future scenario. Industry experts agree that as voice over Internet telephony becomes more wide spread, malicious hacking attempts are bound to follow.

These and other security threats can be prevented by a vigilant network staff, using all the known security precautions typical of an IP network. No VoIP solution is secure out of the box, and must be locked down by using common sense approaches, including but not limited to changing default passwords, closing down unused ports and services, utilizing firewalls and VPNs for network communications, and diligent intrusion detection.

Next Page »