Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Spam The Almighty Buck The Internet Your Rights Online

Paid To Spam 629

Lathiat writes "It seems that spammers have taken a new distributed approach to sending spam, and you get paid for it. Virtual MDA will pay you $1 per CPU hour their program is running to relay spam around the world. Obviously this is not something you should do, most users are all to familiar with the atrocity of sorting through up to hundreds of spams a day just to find one real email, Although it has been previously reported that some users love spam, I for one don't. Is there any way end users can fight back against people like this?" At $1/hour, this sounds like a low-gain way to infuriate both your friends and perfect strangers.
This discussion has been archived. No new comments can be posted.

Paid To Spam

Comments Filter:
  • Fight back! (Score:4, Insightful)

    by YanceyAI ( 192279 ) * <IAMYANCEY@yahoo.com> on Wednesday April 14, 2004 @09:39AM (#8859561)
    (1 x 24) x 7 = $168/week.

    I say we sentence the people who like/read/send spam to filter through all the email that the filters tosses, just to make sure no legitimate email has been accidentally deleted. Maybe if the know what it's to sift through this crap all day long (like I do when the server filter goes down), they'll get the drift.

    • Thousands per year (Score:3, Interesting)

      by millahtime ( 710421 )
      (1 x 24) x 365 = $8760 per year.

      The money is tempting. Imagine all the toys that could be bought with it.
      • by PurdueGraphicsMan ( 722107 ) * on Wednesday April 14, 2004 @09:43AM (#8859610) Homepage Journal
        I will also confess/be honest and say that it is tempting. That's money that would seem free to the person "earning" it.
        • Not so free... (Score:5, Insightful)

          by blorg ( 726186 ) on Wednesday April 14, 2004 @09:49AM (#8859700)
          ...when their internet connection gets pulled. Which would probably happen within the first week.
        • by Braingoo ( 771241 ) on Wednesday April 14, 2004 @10:12AM (#8860002)
          5 computers runing 24/7 is 120$ a day runinng 7 days straight is 840 a week you could live off that easliy.
          • Not that much (Score:5, Interesting)

            by Allen Zadr ( 767458 ) * <Allen.Zadr@gmai[ ]om ['l.c' in gap]> on Wednesday April 14, 2004 @11:11AM (#8860631) Journal
            $840 a week sounds good, but let's break it down.

            DSL/Cable Method:
            Sounds good: $840 per week
            First, Taxes: $500
            DSL/Cable gets cut off after a week, weekly replacement, non refundable: $440
            Two day wait for installation of new DSL provider (cuts funds by 2/7): $315
            Give two months, and you have likely run out of providers.

            T1 Method
            Sounds good: $840 per week
            First, Taxes: $500
            Pay for T1: $375
            Now were talking!

            Oh, but wait - assuming you find a provider that offers a T1 that doesn't cut you off... then, within 6 to 12 months, you become a Co-Defendant in a CAN-SPAM law suit. Assuming the judge does not find you responsible... Good luck paying yourself and a lawyer on $375 per month.

            There's another thing here as well. There's very little likelyhood that ANY computer can dedicate more than 95% CPU to a single task (unless you are running this program on DOS). It also assumes that they give you enough addresses to process to actually make this type of money (very doubtful).

            However, assuming everything were to go your way, T1 provider that likes you and no law-suit...Yeah, you can live on that, but you'd probably want to steal candy from kids to suppliment your income.

          • by Guspaz ( 556486 ) on Wednesday April 14, 2004 @03:14PM (#8863360)
            I installed the client just for kicks (Don't expect them to pay out, I'm curious):

            Time Run: 1:31:14:999
            CPU Time Used: 0:01:05:199
            CPU % Usage: 1.69%

            Oh yeah, did I mention it has a trojan?

            Typed screenshot from AVG Antivirus:

            AVG Residant shield

            Virus
            Trojan horse Downloader.4.Small.BT

            is found in file
            D:\Program Files\VirtualMda\package.exe

            To remove this virus, please run AVG for Windows
      • by gowen ( 141411 ) <gwowen@gmail.com> on Wednesday April 14, 2004 @09:47AM (#8859673) Homepage Journal
        Imagine all the toys that could be bought with it.
        Forget that, Imagine how much I'll be able to extend my penis...
      • If I'm going to sell my soul, I'm going to sell it for a lot more than that!
      • by Anonymous Coward on Wednesday April 14, 2004 @09:49AM (#8859693)
        These aren't "good Xian soldiers" here (not that that would be any better). Do you REALLY trust them to pay?... I somehow doubt that they're willing to cut you a cheque or M.O. Wouldn't surprise me if they were running a double-scam: "Yeah, umm, your $1723 weasel payment is coming right up. Can we just have your account and routing numbers?"

        Not that we would fall for it, but just think about who will.
        • by aastanna ( 689180 ) on Wednesday April 14, 2004 @01:04PM (#8862016)
          From their terms and conditions:
          "In the event of technical problems or data loss which causes a loss of account information, your account will be reset at $0.00, and you hereby waive any and all claims for any amount previously accrued but not yet disbursed."

          You can't claim until it gets to $50, and your account can be reset to $0 at any time.
      • I wonder, is there any way one could setup a dummy machine between your "CPU" and the internet to trick this software into thinking it's sending out spam? Some kind of dummy MTA that responds to all outbound port 25 requests and "accepts" all emails.

        It would be fantastic! Take the spammers money and have all their spam flow into a big blackhole. This has definite possibilities....
        • I dunno, if I were writing a program like this, I'd insert mail addresses I monitor into the stream of addresses I sent out. If I send one of those addresses to you, and I don't get my mail back, no soup for you.
    • Ok I've got a bunch of old 386's in the attic and I'm pretty sure that I can lock down my bandwidth down to about 1 bit an hour for a seperate lan.
    • by Theatetus ( 521747 ) * on Wednesday April 14, 2004 @09:45AM (#8859641) Journal

      It runs as a service (or whatever windows calls daemons nowadays) so you're not getting even close to a CPU hour in an hour.

      • by gerardrj ( 207690 ) on Wednesday April 14, 2004 @09:54AM (#8859770) Journal
        You are assuming that a daemon/service is incapable of running at 100% CPU utilization, which is just an entirely erroneous assumption. Background processes can hog just as much CPU time as your newest 3D shooter.
        It all depends on what the thing it trying to do. Look at Seti or Folding, bot run as daemon/service/background processes and both will use 100% CPU.

        • by DR SoB ( 749180 ) on Wednesday April 14, 2004 @10:10AM (#8859978) Journal
          True although, Windows for example will never let a single application always run at 100% CPU, because if so, the OS wouldn't be running now would it?

          Look at it this way, if you let it use 100% CPU usuage, but only give it a 1bps internet connection (use a router to alterate the uprate speed or something), do you still get paid by CPU? Isn't the problem with spam bandwidth not CPU? I'm so confused! Would a person running a 486 with a modem get paid as much for 100% cpu as someone running a zSeries IBM mainframe on bundled T3's??
        • Indeed, a Windows service is just a process started by the service controller. It could be running at top priority and starving everything else in the system, if it's set up to do that.

          Even at lowest priority it'll get all the cycles no one else demands, which could be just shy of 100% all night long (plus most of the day, while you're at work or in class or whatever). Viewed over a 24-hour period, the vast majority of computers nowadays have essentially zero load.
      • so what is a cpu hour?

        does a VIRTUAL cpu hour cost?

        how about running 100 clients on one computer under virtualisation on one feeble line that, that gets the sent spam filtered later on the line anyways, just to screw these guys up?
    • Re:Fight back! (Score:5, Interesting)

      by Spyffe ( 32976 ) on Wednesday April 14, 2004 @09:50AM (#8859713) Homepage
      In addition, you don't even have to use up bandwidth.

      If you simply install a firewall filter that blocks the outgoing spam mail, the spammers can never figure it out and you're making money for nothing. The program runs, it sends spam, the spam just gets nowhere.
      A powerful computer to pump out spam quickly and a decent firewall to block it will pay for themselves quickly if you keep them running 24/7.

      • Re:Fight back! (Score:5, Interesting)

        by shadowcabbit ( 466253 ) <cx@@@thefurryone...net> on Wednesday April 14, 2004 @09:59AM (#8859825) Journal
        Sadly, an easy way to prevent decent folks like you and me from screwing over the bad guys would be to seed several addresses into the listing that go back to the master spammer. If the master spammer never receives the email-- which conveniently has a tracking number to identify the machine that sent it-- the sender never gets a dime.

        I'm unimpressed, but wait till someone codes this into a trojan with his spam-sender-id-thingy on it. He'll easily make thousands an hour without ever sullying his own machine, and at no risk to his ISP account because hey-- he's not sending the spam, the zillions of clueless users he infected are.
      • If you simply install a firewall filter that blocks the outgoing spam mail, the spammers can never figure it out and you're making money for nothing.

        It'd be trivial for them to detect this--seed the mailing lists they give you with a few addresses that forward to them. I believe the same thing is established practice in the world of mass (non-electronic) mailings.

        --Bruce Fields

      • Re:Fight back! (Score:3, Interesting)

        by Glamdrlng ( 654792 )
        A powerful computer to pump out spam quickly and a decent firewall to block it will pay for themselves quickly if you keep them running 24/7.
        Forget the firewall (Well, don't forget it. Just don't block the outgoing mail) Instead, just report your IP to the major blacklists. Everyone who uses an RBL wil be unaffected, and the people who don't will have more pressure put on them to use blacklists. Problem solved...
    • Re:Fight back! (Score:4, Insightful)

      by TykeClone ( 668449 ) <TykeClone@gmail.com> on Wednesday April 14, 2004 @09:50AM (#8859715) Homepage Journal
      Is there a minimum CPU level? How much spam can a 486/25 send in the course of an hour's worth of cycles?
    • (1 x 24) x 7 = $168/week.

      Umm... I believe they said $1 per CPU hour. You'd probably have to send many millions of messages just to get your first buck.

    • Re:Fight back! (Score:4, Interesting)

      by Technician ( 215283 ) on Wednesday April 14, 2004 @09:59AM (#8859826)
      (1 x 24) x 7 = $168/week.

      And loss of your ISP connection due to violation of the TOS.

      I guess they will find enough short term accounts this way. They don't care that the people they use have a new problem to deal with.
    • Re:Fight back! (Score:4, Informative)

      by brassman ( 112558 ) on Wednesday April 14, 2004 @10:12AM (#8860004) Homepage
      One catch -- if you read through their "agreement," they have the right to round the time you "work" downwards, they have the right to defer payment until you reach a certain amount accrued, and they have the "right" to LOSE YOUR ACCOUNT INFORMATION. Really. "Sorry, we lost your info, so we don't owe you anything."

      In short, after you sell your soul and your internet access, you get nothing in return. Zero, zilch, nada. Find someone who has received a nickel from these guys, if you can.

      • I got paid! (Score:3, Funny)

        by Dog135 ( 700389 )
        I got paid! No, really, I got lots of money from them! I got rich, and I did it quick! Now go sign up and tell them luser#29766628 sent you!

        While you're at it, don't forget to make your order for viagralax, the only viagra alternative that's also a laxative. I'm not only a peddler, I'm also a satisfied customer!

        (As if you could really trust someone who said they got paid.)
      • Re:Fight back! (Score:3, Interesting)

        In short, after you sell your soul and your internet access, you get nothing in return. Zero, zilch, nada. Find someone who has received a nickel from these guys, if you can.

        I'll bet you get a free gift!

        Identity theft! Especially since they'll probably ask for account information where they can deposit your ill-gotten gains.

        (Never try to out-scam a scammer... it's like trying to argue with an idiot.)
  • $1/hour (Score:5, Insightful)

    by PurdueGraphicsMan ( 722107 ) * on Wednesday April 14, 2004 @09:40AM (#8859573) Homepage Journal
    At $1/hour, this sounds like a low-gain way to infuriate both your friends and perfect strangers.

    What happens when other spammers adopt this business model? That $1/hour assumes that you would only work for one spammer at a time. If you were really trying to make a career out of it I'm sure you'd be working for as many spammers as once as you can handle. That being said, it's still a very sleezy way to make a few bucks considering the majority of people hate spam.

    I for one would feel like I was selling the rights of everyone else for a living. I'm not sure how people can feel "good" about doing something like this.

    • Re:$1/hour (Score:5, Insightful)

      by Maestro4k ( 707634 ) on Wednesday April 14, 2004 @09:45AM (#8859640) Journal
      • That $1/hour assumes that you would only work for one spammer at a time.
      Actually it's $1 per CPU hour, so you can only work for one spammer per CPU hour. Seeings as spammers spam nonstop, I doubt your CPU cycles would ever be free to sign up with another spammer.
      • Re:$1/hour (Score:3, Insightful)

        by Suidae ( 162977 )
        What makes you think I'd actually report valid data?

        Never trust a client computer, particularly if you are a spammer paying that client.

        I'd be willing to report about 500 hours of work per day to as many spammers as I can scam.
      • Re:$1/hour (Score:5, Funny)

        by Anonym0us Cow Herd ( 231084 ) on Wednesday April 14, 2004 @10:23AM (#8860118)
        $1 per CPU hour. But nobody said anything about how fast that CPU needs to be.

        How about a beowulf cluster of x286's?

        Fifty old slow cpu's and you're making $50/hour.

        Oh, and did I mention that my 50 old x286 boxes all share a single dial up line?

        On a 300 baud modem?
        • Re:$1/hour (Score:5, Insightful)

          by Eraser_ ( 101354 ) on Wednesday April 14, 2004 @12:28PM (#8861507)
          Assuming they don't seed the list with their own addresses to insure validity (damn gave them the idea), whats to stop you from just, you know, setting up your {freebsd|openbsd|linux} gateway from re-routing port 25 traffic to your own custom sendmail hack? "Accept" all the mail it sends and pipe it to /dev/null. Check to see if it's the daily report or whatever just in case they use email to send themselves the data. I see this as a great way to STOP spam ;-)
          • Re:$1/hour (Score:4, Informative)

            by jrcamp ( 150032 ) on Wednesday April 14, 2004 @12:50PM (#8861784)
            Assuming they don't seed the list with their own addresses to insure validity (damn gave them the idea)

            Not really an original idea. Snail mail mass marketers seed their lists with their own PO Boxes and such to ensure that mails are actually getting sent.

    • Re:$1/hour (Score:4, Funny)

      by STrinity ( 723872 ) on Wednesday April 14, 2004 @11:32AM (#8860887) Homepage
      $1/CPU hour? That's outrageous! Not only are spammers clogging servers, but they pay computers sweat-shop wages! Fight back. Demand they pay your computer minimum wage.
  • by thebra ( 707939 ) * on Wednesday April 14, 2004 @09:40AM (#8859574) Homepage Journal
    and plus I'm still waiting for my check from All-Advantage!
  • Great (Score:5, Insightful)

    by TheSpoom ( 715771 ) * <slashdot.uberm00@net> on Wednesday April 14, 2004 @09:41AM (#8859579) Homepage Journal
    Great. Way to give them free advertising on a very popular website. As much as Slashdot has users that for the most part hate spam, we also have trolls and people who just don't care and see this as a way to make money. I can hear them cheering right now.

    On another note, perhaps legislation should be put forward to outlaw distributed (this would have to be defined further... perhaps third party or in a different physical location, obviously wouldn't want it to affect legitimate servers) mail delivery like this. There's not really any point in a widescale distributed email delivery system OTHER than delivering spam that I can think of... Though I'm sure spam companies would try to come up with something. In this case, I think legislation may be a good thing.
    • "perhaps legislation should be put forward to outlaw distributed (this would have to be defined further... perhaps third party or in a different physical location, obviously wouldn't want it to affect legitimate servers) mail delivery like this"

      There are may legitimate companies that have distributed mail systems in may different locations. Yahoo and M$ for example. This is not only for load but redundancy. Something like this might be hard to do.
    • by Anonymous Coward
      Including their phone number and mailing address:

      Sendmails Corporation
      P.O. Box 195
      Manchester, NH 03105
      TEL: 603.622.6999
      FAX: 603.624.9089


      Of course what you choose to do with that information is up to you...
      • by Anonymous Coward on Wednesday April 14, 2004 @09:50AM (#8859721)
        Atriks, LLC
        55 Bridge Street
        Manchester, NH 03101-1188
        US

        Administrative Contact:
        Host Master hostmaster@atriks.com
        Atriks, LLC
        55 Bridge Street
        Manchester, NH 03101-1188
        US
        Phone: 603-624-7008
        Fax: 603-624-9089

        Technical Contact:
        Host Master hostmaster@atriks.com
        Atriks, LLC
        55 Bridge Street
        Manchester, NH 03101-1188
        US
        Phone: 603-624-7008
        Fax: 603-624-9089
    • Re:Great (Score:3, Insightful)

      Great. Way to give them free advertising on a very popular website. As much as Slashdot has users that for the most part hate spam, we also have trolls and people who just don't care and see this as a way to make money. I can hear them cheering right now.

      Oh, tish tosh. They're now very much in the public eye because of articles like this, which means a better chance of a politician spotting them. And, being an election year, they'll be tripping over themselves to be the one to legislate this monkey into th

  • by PrvtBurrito ( 557287 ) on Wednesday April 14, 2004 @09:42AM (#8859599)
    It also needs to be said that this is also illegal in many places (due to spam laws). Spammers are very good at hiding their identities. Stupid users are not, and would be relatively easy to get caught. Honestly, it sounds like a money saving scheme, get someone else to break the law for you, and you come out clean as a whistle. -Sean
  • ...ph33r the /. effect ;o)
  • ISPs (Score:5, Informative)

    by Zog The Undeniable ( 632031 ) on Wednesday April 14, 2004 @09:43AM (#8859609)
    Most ISPs prohibit this in their T&Cs. So unless you have a direct pipe to the Internet, you're surely going to be cut off as soon as they realise what all that 24/7 traffic is?
    • unless your isp is a pack of clueless fucks like sbc, crapcast (er comcast), roachrunner (rr.com), etc.

    • IP address fun (Score:4, Interesting)

      by Theatetus ( 521747 ) * on Wednesday April 14, 2004 @09:54AM (#8859773) Journal

      I'm a commercial bulk emailer. We've wanted to do something like this for a while but always got scared off by liability issues.

      This is a brilliant solution because the one thing we're always short of (even as legal bulk emailers) is IP blocks that aren't blacklisted (since a lot of the blacklists run simply on volume of email sent or take the word of somebody who's too stupid to remember he actually did sign up for a mailing list). I would assume actual spammers have an even tougher time with their IP addresses. Now they can spam up all the cable ISP's IP blocks, and once a block gets blacklisted they can just switch to a new set of users. Brilliant.

      • Re:IP address fun (Score:5, Insightful)

        by AKnightCowboy ( 608632 ) on Wednesday April 14, 2004 @09:57AM (#8859815)
        Now they can spam up all the cable ISP's IP blocks, and once a block gets blacklisted they can just switch to a new set of users. Brilliant.

        Yes, very "brilliant" of them. The only thing this will accomplish is getting port 25/tcp blocked all across the Internet completely whether you're an offender or not. Thanks asshole.

      • Re:IP address fun (Score:3, Insightful)

        by micromoog ( 206608 )
        I'm a commercial bulk emailer.

        Does telling yourself you're not a spammer make your money seem less dirty?

      • Re:IP address fun (Score:5, Insightful)

        by CritterNYC ( 190163 ) on Wednesday April 14, 2004 @10:12AM (#8859999) Homepage
        I'm a commercial bulk emailer. We've wanted to do something like this for a while but always got scared off by liability issues.

        This is a brilliant solution because the one thing we're always short of (even as legal bulk emailers) is IP blocks that aren't blacklisted **SNIP**

        Except for the fact that *legitimate* "commercial bulk email" uses confirmed opt-in (note that I didn't say "double opt-in", a term used by spammers to imply that it's somehow extra work), has a simple and effective unsubscribe process, never purchases or rents lists, never assumes permission to do anything (email, phone, physical mail, etc), provides something of real value (weekly commentary newsletter, real sales specials, etc), and doesn't send it out too often. I have colleagues that support companies with thousands subscribed to weekly newsletters and the like (industry commentary, etc) which they send directly from their own mail server and they've never been on an RBL or had a spam complaint.
        • Re:IP address fun (Score:4, Interesting)

          by Theatetus ( 521747 ) * on Wednesday April 14, 2004 @10:15AM (#8860033) Journal
          and they've never been on an RBL or had a spam complaint.

          We've had maybe 10 spam complaints in 5 years, and in all 10 cases we had the date, time, and IP address from which the user signed up for the list. Despite the fact that we can prove when and where they signed up for the list, those complaints + our mail volume is enough to get us blacklisted.

    • Re:ISPs (Score:3, Insightful)

      by Suidae ( 162977 )
      Cox blocks all outgong and incoming connections on the standard SMTP port.

      As a 'power user', I was a bit annoyed when I noticed this. Then I reconsidered, I'd rather be forced to my ISPs SMTP relay (which really isn't a big deal for non-business accounts) than have spammers free to send email.
    • by SilentReproach ( 91511 ) on Wednesday April 14, 2004 @12:00PM (#8861162)
      Let's all sign up for it, for the sole purpose of finding out who owns the originating mailservers! Then we can ddos them, and blackhole 'em, and report 'em, and order pizzas for them...
  • by aksansai ( 56788 ) <aksansai @ g mail.com> on Wednesday April 14, 2004 @09:43AM (#8859611)
    Does that mean that for a buck an hour, you also get your own set of legal issues if some ISP, like AOL, decides to come after you for spamming their customers?
  • Earn money fast! (Score:5, Interesting)

    by EinarH ( 583836 ) on Wednesday April 14, 2004 @09:44AM (#8859616) Journal
    I wonder how long it will take before someone finds out that they can use captured, trojan infected, computers to relay spam and earn money through this scheme.
    I guess it's tempting to think that "ahh, I have 500 "clients" and could earn thousands each day!".
  • by Anonymous Coward
    How can they check that you're actually processing the spam? Sign up, block the outgoing non-meat product and take their money.
    • How can they check that you're actually processing the spam? Sign up, block the outgoing non-meat product and take their money.
      Well, it's a pretty outlandish, off the wall type idea, but perhaps maybe add a couple of their own addresses in there and see if they arrive?
  • Cool! I'll do it! (Score:2, Interesting)

    by fearlezz ( 594718 )
    $168 a week? Cool! I'll do it!

    Psst.. don't tell the spammers: I'll fix the spamming problem by putting a black hole transparent proxy between the machine running their program and the internet... :)
    Anything they'll try to mail gets sent straight to /dev/null.

    No, not really, but it'd be a nice way to cheat them...
  • Oh, come on! This is a perfect opportunity to scam the scammers! Remember AllAdvantage or whatever, that thing that displayed a banner ad and paid you some fractional penny per minute that your mouse was moving? There were applications to jiggle your mouse while you were away, or even to hide the ad-bar.

    Why would this be any different? Drain $1/hr from the pockets of the spammers, but use a crack that sends all the spam either to their joespam@spamco.com address or to /dev/null.

    Scam them, my fellows. Scam
    • Re:SCAM THEM! (Score:4, Informative)

      by agentZ ( 210674 ) on Wednesday April 14, 2004 @09:53AM (#8859760)
      Of course, signing up with them will also guarentee you a lifetime's worth of spam. Check out this from their "Privacy Policy" [virtualmda.com]

      Upon registration our members are required to provide full name, postal address, e-mail address.... Email address is required to provide user login and/or value-added services. In addition, we require user-specific information such as interests, gender, age, household income, and education, which is used to build member profiles that are used for the purposes of targeted advertising and benefit distribution.
      Sendmails Corporation will not share, sell, trade, or give away personally identifiable member information to third parties without members' explicit permission. Upon registration, all users grant to Sendmails Corporation their explicit permission (1) to contact them with important information about members' accounts and updates to our services, policies and business practices, and (2) to share members' information with third parties. The users have the option to choose not to be contacted or their information shared by terminating their account.
  • Hungry People. (Score:5, Interesting)

    by Grey Ninja ( 739021 ) on Wednesday April 14, 2004 @09:46AM (#8859658) Homepage Journal
    This summer I was living on about 5 bags of ramen a day, and was in danger of losing a place to live. About all I had to my name was my PC, and a free internet connection.

    As much as I hate spam, if I was ever in the same situation again, I would sign up for this in a heartbeat. $720 per month is more than I would make with a legitimate part time job (considering that I am a student, making Canadian money). Spam isn't going away, and I would be more than willing to run the risk of losing friends, and making enemies of perfect strangers if it meant putting food on my table, and giving me a roof to live under.

    At the moment however, I am doing fine, and in spite of the nice things I could buy with $1000 a month, I will not be signing up for this, as I value my principles more than material goods.

    Just something to keep in mind before slamming people who give CPU time to this cause.
    • Re:Hungry People. (Score:4, Insightful)

      by gcaseye6677 ( 694805 ) on Wednesday April 14, 2004 @10:07AM (#8859942)
      Good thing you didn't go for something like this. All it would do is leave you broke and without an internet connection, after it was shut off for spamming. And as other people have pointed out, its unlikely that you would have gotten paid. I'm sure the agreement has enough technicalities in it to let the company use almost any excuse not to pay you. Its unfortunate that sleazy companies do tend to prey on those who don't have a lot, since they tend to be the most desperate for any offer of money, no matter how unlikely it really is.
    • Re:Hungry People. (Score:3, Insightful)

      by schon ( 31600 )
      all I had to my name was my PC, and a free internet connection.[...] if I was ever in the same situation again, I would sign up for this in a heartbeat

      And you'd deserve everything you got - like having your internet account terminated, and not getting any money.

      Remember rule #1: SPAMMERS LIE.

      These are people who have no problem with stealing from people. You really think that they'd pay you?

      Spammers are con men who prey on stupid people. I'm guessing they're counting on people like you.

      I value my
  • by wowbagger ( 69688 ) on Wednesday April 14, 2004 @09:47AM (#8859663) Homepage Journal
    Folks, they are paying PER CPU hour, not per wallclock hour.

    Since in almost every case you will be I/O bound, while this thing may tie up your entire connection it will not run more than a couple of CPU minutes per wallclock hour.

    Thus the spammers screw the people doing this - they think they are going to get 24*7 = $168 a week, but they really are going to get about 24*7*.1 = $16.8 a week. Then they will get nothing because their account was terminated.

    HOWEVER, this gives us a GREAT way to screw the spammers - run this sucker on an UNDERCLOCKED machine.

    WAYYYYYY underclocked.

    Like about 100 kHz.

    That way, even with a modem the program will be CPU bound.

  • by CGP314 ( 672613 ) <CGP AT ColinGregoryPalmer DOT net> on Wednesday April 14, 2004 @09:47AM (#8859672) Homepage
    Just out of curiosity, are there any legitimate companies out there that pay for CPU cycles? I'm sure the hordes of unemployed on slashdot (myself included) would like to know.


    -Colin [colingregorypalmer.net]
    • Gomez Peer [porivo.com] is a legitimate company that'll pay you for your bandwidth and CPU time. Basically, it checks various websites for reachability/performance. Apparently it's hard to get in, unless you're on their "most wanted" location list.
  • TOS? (Score:5, Insightful)

    by Richardsonke1 ( 612224 ) on Wednesday April 14, 2004 @09:48AM (#8859689)

    First of all, does this mean that the mail is sent through your own mail server? If so, that's a major TOS violation for most ISPs. If your computer is going to be its own mailserver, that may not work either, because of the number of ISPs now blocking outbout mail servers on their networks.

    Secondly, check out their own TOS. For example, this line:

    "In the event of technical problems or data loss which causes a loss of account information, your account will be reset at $0.00, and you hereby waive any and all claims for any amount previously accrued but not yet disbursed."
    So, not only are you helping spammers, but if they "accidentally" drop that table in their database, they don't have to pay you a thing. Sounds like a really good scam to me. I should go buy a house and put in the contract that if I forget to pay, the house is free for me to keep and the loan is forgiven.
  • by InsomniaCity ( 599389 ) on Wednesday April 14, 2004 @09:48AM (#8859690)

    This could be coupled with upstream filtering, and used to collect hashes of known spam in order to block spam all over the world.

    How about getting paid $1/hour to help STOP spam ??

    This sounds like a great idea for an open source project!

  • by Warpedcow ( 180300 ) on Wednesday April 14, 2004 @09:50AM (#8859717) Homepage Journal
    Virtual MDA will pay you $1 per CPU hour their program is running to relay spam around the world.

    Sure I'll run it. I'll also setup a firewall so that this program can't send any actual data. After all, you're getting paid per CPU hour and not per email actually sent. Who cares if the program sits there and spins the cpu trying to send and resend it's first email message? Sounds like easy money to me! ;)

  • by Capt_Troy ( 60831 ) <{moc.oohay} {ta} {ognadnaft}> on Wednesday April 14, 2004 @09:50AM (#8859722) Homepage Journal
    Someone needs to set up a huge server room that accepts only incoming packets so the spammers can seed the servers. Then no spam is sent out, but you still get paid. Make spam more costly that the revenue it generates... (Yea I know server rooms are expensive... just a thought)
  • by weslocke ( 240386 ) on Wednesday April 14, 2004 @09:51AM (#8859737)
    This is actually a heckuva way for the spammers to get around RBLs such as the ones used by Razor for blocking high spam domains. Now instead there will be god knows how many spammers coming from more trustworthy domains such as att.net, comcast.net, msn.com, etc. Granted each person may be only able to do 100 or so a day before tripping their ISP mail server off, but if a few thousand people are doing it... sheesh...

    And I just installed SpamAssassin/Amavisd-New/Razor/etc, then they go and do this.

  • by Welsh Dwarf ( 743630 ) <d.mills-slashdot ... et minus painter> on Wednesday April 14, 2004 @09:53AM (#8859756) Homepage
    I hate to blow some people expectations here, but these are _cpu_ hours we're talking about.

    Let me demonstrate: here's a section from my ps -ax:

    PID TTY STAT TIME COMMAND
    1 ? S 0:05 init [4]

    and here's my uptime:
    16:45:07 up 4:31, 4 users, load average: 0.09, 0.34, 0.34

    (yes I turn my PC off at night, so what...).

    To sum it up, init has been running for 4 hours 30 minutes, but only has 5 cpu seconds on the clock. This is an extreme example, X on my laptop has used 15 mins on 2:30 hours uptime, but it get's the point across.

    Sending out spam is bandwidth limited, not cpu limited (unless you run this on a 486 over a T1), therefor, you are going to be hammering your connection, whilst only using a small percentage of your cpu, and only earning mabey 2-3 dollars a night (and I'm being optimistic there, it could be a lot less).

    So in short, this will work until people realise that there being had, and then it'll just disappear into the mist.

    Nice try, but zombies are more effective...
  • by bersl2 ( 689221 ) on Wednesday April 14, 2004 @09:53AM (#8859766) Journal
    and beat the crap out of them.

    That will end the spamming quickly.
  • perfect! (Score:5, Interesting)

    by WormholeFiend ( 674934 ) on Wednesday April 14, 2004 @09:55AM (#8859783)
    One thing I have noticed in this world is, nothing gets fixed until there's some major crap hitting the big collective fan.

    Now here we have an email system which is increasingly broken, taken over by spammers, yet no one can agree to cooperate on a solution. Even the laws we make dont have any teeth.

    I think we should promote this new thing, and all jump onto the bandwagon.

    We should be able to definitely slashdot the email system at a planetary scale, thereby causing massive amounts of media aired/printed 24/7 for a few weeks.

    The repercussions on spammers would be spectacular, to say the least.

    I bet there would also be some political clout to revamp email to eliminate spam and prevent it from ever occuring again.

    I equate this to a spammer saying: "here's a perfectly working gun. now use it to shoot me."
  • Yeah, right. (Score:3, Insightful)

    by Phs2501 ( 559902 ) on Wednesday April 14, 2004 @10:00AM (#8859847)
    Since
    • They're paying by CPU time
    • Sending mail is by nature completely I/O bound
    • Computers are really really fast these days
    • They're not paying anyone until they build up $50
    It's almost a certainty that they will never have to pay anyone anything before they are put out of business. It would take months if not years to build up fifty hours of CPU time sending mail over a cable modem. And if they actually manage to hook someone with a rediculously large pipe, they're getting their money's worth in spades.

    This is a brilliant scam for people who don't know what CPU time means.

  • by Zocalo ( 252965 ) on Wednesday April 14, 2004 @10:02AM (#8859866) Homepage
    Virtual MDA will pay you $1 per CPU hour their program is running to relay spam around the world.

    And what might "their" program do when, after approximately one CPU hour, the IP that it is running on has been blacklisted and is no longer of use for spamming? Join a DDoS net? Download and host some very dodgy software or porn? The list goes on... Still, at least you'd be able to afford a quartet of two bit lawyers when you get busted for hosting a kiddie porn site or something.

  • $1 per *CPU* hour (Score:4, Informative)

    by Pan T. Hose ( 707794 ) on Wednesday April 14, 2004 @10:03AM (#8859880) Homepage Journal
    Please read it carefully. It is $1 per CPU hour, not $1 per hour. Sending email is not a CPU-intensive task. One CPU hour can be equivalent to as much as several weeks of saturated modem traffic!
  • Paid spam (Score:3, Interesting)

    by garlicfarmer ( 771235 ) on Wednesday April 14, 2004 @10:05AM (#8859901)
    1. Set up dummy email server that goes nowhere. 2. Sign up for spam program. 3. Send spam to dummy server. 4. Collect $24/day ($8760/year) The more people who do this, the broker the spammers will become.
  • Non-event (Score:3, Informative)

    by Safety Cap ( 253500 ) on Wednesday April 14, 2004 @10:05AM (#8859914) Homepage Journal
    The few people who fall into this sucker trap will quickly wake up when they discover that their ISP terminated their account for TOS violations.

    I noticed recently while trying to diagnose an email problem that Time Warner Cable now limits its "unlimited service" to 1,000 emails sent per day [rr.com]. Obviously, you'll hit your limit well before that CPU-hour, so you'll never make more than $365/year and eliminate your ability to send any personal email.

    You'd make more money hanging out at the street corner holding cardboard sign that says, "Will compute for food."

  • by carlos_benj ( 140796 ) on Wednesday April 14, 2004 @10:16AM (#8860043) Journal
    At $1/hour, this sounds like a low-gain way to infuriate both your friends and perfect strangers.

    Hey, how'd you know I only have two friends...?
  • Terms of Service (Score:3, Informative)

    by thebus ( 158196 ) on Wednesday April 14, 2004 @10:20AM (#8860079) Homepage Journal
    I case you couldn't get to the site like me, here are the terms of service from the google cache.

    Terms Of Service
    1. ACKNOWLEDGMENT AND ACCEPTANCE OF TERMS OF SERVICE. Atriks, LLC
    ("ATRIKS") web site, VirtualMDA and other ATRIKS services and web properties ("Service"),
    owned and operated by ATRIKS, is provided to the
    member community under the following Terms of Service and any operating rules
    or policies that may be published by ATRIKS. The Terms of Service comprise the
    entire agreement between Member and ATRIKS and supersede all prior agreements
    between the parties, regarding the subject matter contained herein. By
    participating in the registration process, members are indicating their
    agreement to be bound by all of these Terms of Service.

    2.Payment. Upon completing the registration procedure, you will be given a unique
    identification account number ("UID"). You will be paid by ATRIKS $0.25 for every
    Central Processing Unit Hour ("CPU HOUR") used by the VirtualMDA software located
    on your personal or business computer(s) (either or both of which shall be the
    "Installed Computer(s)") is actively connected to the internet ("Online"). The
    Installed Computer may accumulate a maximum of 24 CPU HOUR's in one day. If
    your UID logs more than 24 CPU HOURS in one 24 hour period, your account
    may be suspended or terminated for unusual or suspicious activity. In order to
    receive payment, you must submit a request to ATRIKS using the electronic request
    form provided to you via your member account webpage. Your member account webpage
    will contain a calculation showing the amount of money accrued in your account.
    In case of a dispute as to the amount accrued, the amount shown in your account
    is final and binding upon you in all respects. You may only request payment, and
    ATRIKS shall only disburse from your account, when your account is equal to or
    greater than $50.00 for United States residents and $90.00 for those residents
    outside the United States. In the event of technical problems or data loss which
    causes a loss of account information, your account will be reset at $0.00, and
    you hereby waive any and all claims for any amount previously accrued but not yet
    disbursed. All payments shall be by check, made payable to you, and sent to you
    at your last known address via the U.S. Postal Service, first class mail. There
    will be a check processing fee of $3.00 (three dollars) and any payment returned
    to ATRIKS shall be voided, and your account shall be deleted and any accrued
    amounts will be forfeited

    3. DESCRIPTION OF SERVICE. ATRIKS is providing Member with Internet services and
    opportunities to get rewarded while using the Internet in exchange for performing
    certain actions as desired by our advertisers. As part of this service ATRIKS provides
    Member with proprietary software ("SOFTWARE") for relaying email messages.
    In consideration for this Service, Member agrees to: (1) create only
    one account per household and, (2) provide certain current, complete, and accurate
    information about Member as prompted to do so by the Service and, (3) maintain and
    update this information as required to keep it current, complete and accurate and.
    All information requested on original sign-up shall be referred to as account
    information ("Account Information"). Furthermore, ATRIKS will not share, sell, trade,
    or give away personally identifiable Member information to third parties without Members'
    explicit permission. Upon registration, all users grant to ATRIKS their explicit
    permission (1) to contact them with important information about Members' accounts and
    updates to our services, policies and business practices, (2) to access and use the
    Installed Computer(s) for relaying permission based (opt-in) email for ATRIKS and/or
    third parties, and (4) data gathering activities, without further notice to or permission
    from Member. The users have the option to choose not to be contacted or t
  • by Oriumpor ( 446718 ) on Wednesday April 14, 2004 @10:21AM (#8860094) Homepage Journal
    Dual Processor Xeon Server system w/2gigs of ram: $4000
    Single Professional License for Vmware from ebay: $200~
    The ability to milk a spammer for 30 bucks an hour: priceless.
  • umm ... (Score:5, Funny)

    by jacobm ( 68967 ) on Wednesday April 14, 2004 @10:21AM (#8860096) Homepage
    Is there any way end users can fight back against people like this?

    You could've started by not advertising their product for free on the front page of Slashdot ...
  • DUL RBL *NOW* (Score:3, Interesting)

    by mabu ( 178417 ) on Wednesday April 14, 2004 @11:05AM (#8860562)
    This is why we need to get the major ISPs to contribute to centralized IP address lists of all broadband DUL space. Legitimate mail servers should refuse to accept mail from cable and DSL SMTP traffic. Then these spammers' schemes won't work, and it will also dramatically cut down on virus/worm propagation. I'm unaware of any really good DUL RBL except for Maps which is now pay. Does anyone know of a solid DUL RBL that's free?
  • by Cytotoxic ( 245301 ) on Wednesday April 14, 2004 @11:09AM (#8860606)
    From the description below, you can see that they don't want your ISP to block your connection. They only send you 100 emails at a time. I would speculate that their service is very difficult to uninstall, ensuring stability in their network.

    Atriks Description:

    Email Deployment

    Reliable and Effective Email Campaigns

    Atriks has created relationships with over 60,000 individuals throughout the world who act as sending agents for the Atriks Distributed Email Delivery System. Atriks has developed a software called VirtualMDA (see www.virtualmda.com ) which resides on these sending agents' machines and periodically talks to an array of servers within our data center, looking for messages to deliver. When messages are available, each agent machine can receive up to 100 emails to deliver. For example, with 20,000 agents sending 100 emails each, the Atriks Distributed Email Delivery System can deliver 2 Million emails in one quick shot.

    Politeness is key

    There are approximately 4500 "well known" mail servers within the US and Canada, so being "polite" on how we connect and deliver the messages is important. Atriks doesn't want to cripple the receiving mail servers with millions of messages, so we create delays and meter traffic so not to overload the receiving server with connections.

    Distributed delivery prevents blocking

    Atriks developed our Distributed Email Delivery System because many email providers will obstruct otherwise legal emails from very large senders at will and without notification to the sender/list owner. Using sending agents and VirtualMDA, blocking is much less likely.

    Creating a campaign

    Once signed up with Atriks, most customers can create their campaigns in a few easy steps through our web interface:
    Create the campaign
    Test and OK the campaign
    Set delivery date and time
    Upload your data records
    Set the campaign to "Ready."
    Our system automatically starts delivery at the time and date set within the campaign.

    For more information about using Atriks to deploy your next email marketing campaign, contact us.
  • by mabu ( 178417 ) on Wednesday April 14, 2004 @11:18AM (#8860716)
    Do you wonder why spammers are now trying to sign up individual users to help them relay spam?

    The answer is because relay-blacklisting is working!

    None of the client-side, server-side, content-based filtering has made any difference. What HAS made a difference are mail servers which are utilizing relay-blacklists of known spammer IP space and refusing to connect with them. This has forced the spammers to begin abandoning their havens in China, Brazil, Korea and other areas. Now they're trying to infiltrate domestic broadband IP space. First they tried it via propagating viruses and worms and that isn't working out as well as they'd like (and they probably figure sooner or later, the Feds just might actually prosecute one of them), so now they want to sucker people into spamming for them.

    All this is an indication that relay blacklisting IS effective.

    RBLs are becoming more sophisticated nowadays. Spamcop can usually ID a spam source in real time within an hour of it beginning operation. AOL and other major ISPs are now looking at RBLs to help them block spam. It's much more economical than strip-searching e-mail content using filters.

    Let's keep up the pressure. Let's continue to force the spammers into smaller areas of the Internet where they can be identified and dealt with. This latest effort is a good sign they're getting desperate to figure out where they can send spam out from. None of the content-based filtering schemes have come nearly as close to slowing down their efforts as much as RBLs.
  • by Craig Ringer ( 302899 ) on Wednesday April 14, 2004 @11:20AM (#8860742) Homepage Journal
    I've had my mailserver blacklisted, and I tell you - $1000 an hour couldn't possibly be enough to blacklist-bait yourself like that. You never realise just how totally your business relies on email until suddenly it mostly stops working.

    Of course, then there's the fact that this proposal is offensive, anti-social, and just plain retarded.

    How were we blacklisted, you ask? We use an exim server as the gateway, with sendmail internally. The gateway server was marked as a trusted host for relaying on the internal server (indirectly; it was part of a subnet of hosts that needed to be able to relay). Normally that's not an issue, because the exim gateway would refuse to accept messages asking for relaying anyway.

    Unfortunately, the exim gateway permitted percent-hack messages to pass, permitting an attacker to bypass the gateway server's checks, and deliver a message for relaying to the sendmail server. Which promptly relayed it, because the gateway was a trusted host.

    Fix: disable percent hack (Why TF is it even supported anymore anyway?) and set the gateway to be able to deliver, but not relay.
  • Business plan (Score:3, Interesting)

    by ultranova ( 717540 ) on Wednesday April 14, 2004 @11:22AM (#8860764)
    1. Take 2 computers.

    2. Connect them with a LAN.

    3. Run Windows and this spam generator on computer A. Set it's network settings to use machine B as its gateway.

    4. Run Linux on computer B. Hijack all connections and packets originating from computer A and destined for port 25 (or all which are targeted outside the spammer's IP, to be safe). Let other packets to travel to Internet normally, so that the spammer can download new spam definitions.

    5. Run a mail server on computer B. Forward all mail coming from computer A to be study material for a Bayesian filter and then /dev/null -filler.

    6. Profit !!!

    7. Watch as all the other geeks get the same bright idea.

    8. Watch and enjoy as the spammers go bankrupt.

    9. ??? (it is impossible to predict what a post-spam Internet will be like).
  • by Animats ( 122034 ) on Wednesday April 14, 2004 @11:34AM (#8860909) Homepage
    OK, who's behind "virtualmda.com"?

    Whois:

    • Atriks, LLC
      55 Bridge Street
      Manchester, NH 03101-1188
      Phone- 603-624-7008
      Fax- 603-624-9089
      hostmaster@atriks.com

    Atriks [atriks.com] is a mailing list company. "Atriks offers targeted public record data that comes entirely from publicly available Internet sources. We collect, compile, aggregate and provide the most high-quality, complete, and up-to-date data possible for every individual and business with a presence on the Internet." They're a member of the Direct Marketing Association. They claim a server farm with 330 servers and seven terabytes of data. Here are some of the lists they offer:

    • Atriks Broadband Consumers "1,000,000+ consumers who have demonstrated a thirst for better technology and a willingness to spend money for enhanced products and services are included."
    • Atriks Personal Domain Owners with Credit Cards "7,000,000+ consumers have registered a domain for their own personal use and have created Web sites that share everything from jokes to family pictures. A key part of their registration is supplying credit card information, resulting in a file with all major credit card selects available."
    • Atriks Subscribers by ISP "6,700,000+ subscribers identified by ISP are included in this database. Mailers can target these subscribers by more than 100 selectable ISP providers."
    Those are just the "consumer" lists. They also have business-to-business lists.

    Atriks is co-located with a local ISP, MV Communications. [mv.com]. MV has been in business for many years. They have modest backbone connections for an ISP; 6Mb/s to Global Crossing, 12Mb/s to Level 3, and 12Mb/s to Paetec. Unclear at this time if MV and Atriks have common ownership.

    They're what the DMA would call a "legitimate spammer".

  • by AnotherBlackHat ( 265897 ) on Wednesday April 14, 2004 @02:29PM (#8862959) Homepage
    Full ToS is on their website
    http://www.virtualmda.com/terms.htm

    I've paraphrased their clauses.
    My comments are in italics after.

    1. By signing up, you agree to this ToS

    2. You get $1 for every "CPU HOUR".
    You have to ask to get paid.
    We won't pay unless it's at least $50.
    If there's anything suspicious, or we make a mistake in accounting, you get nothing.

    Comment: it's not clear what a "CPU HOUR" is, but I suspect despite the many claims on slashdot, that they really do mean $1 for every hour your computer is running their program and is connected to the internet sending email. But their program doesn't run unless both you and they tell it to, so they could guarantee that it runs less than 40 hours if they wanted to.

    3. You agree not to cheat.

    4. We can change the Terms of Service whenever we want.

    My guess is that this happens if you would actually get paid if they didn't.

    5. You are responsible for security.

    6. There is no warranty.

    7. We aren't liable for anything.

    8. Our software has a copyright.

    9. We decide if you violated the ToS.

    10. You can't resell the service.

    I wonder why they're worried about that.

    11. You are responsible for anything we send.

    Yes, they really do expect you to take the fall for what they are doing.

    12. You indeminfy us.

    And if they should happen to take the fall, then you have to pay for that too.

    13. All you can do if you don't like it is quit.

    14. The legal jurisdicition for everything is New Hampshire.

    15. You agree not to participate in class actions against us.
    And that goes for all time, not just this.

    In other words, they know you're going to want to sue them, so they want to make sure it's not worthwhile to do it.

    Mostly, the ToS is the usual collection of stupidity, but that last clause is so out there that I had to comment.

    -- this is not a .sig
  • by dtfinch ( 661405 ) * on Wednesday April 14, 2004 @04:40PM (#8863595) Journal
    At 0.2% CPU usage:
    24x365x.002 = $17.52/yr

    You can bet they've optimized it for minimal cpu usage, and that it'll suck up nearly all of your bandwidth. You'd be paid about $20 a year for most of what you pay over $300 a yr for. A very raw deal, not to mention the high probability of it getting you in trouble with your isp.

Technology is dominated by those who manage what they do not understand.

Working...