1USA Visitor Welcome page

1USA's anti-spam system

"ASpam" is the name of our content-based message scoring mechanism that allows users to set their own tolerance to undesired commercial emails.
ASpam adds a header to each message which can be used by server-side filtering or by your email client software (such as Outlook Express).
The SpamDetect score may also be modified by using custom techniques.

Here's a sample email header:
X-SpamDetect-Info: ------------- Start ASpam results ---------------
X-SpamDetect-Info: 1USA SpamDetect Info: More info at http://www.1usa.com/email/spamdetectinfo.html
Reply-Address:
Bounce-Address:
Sender-Server-Helo: corpmailer04.prod.mesa1.secureserver.net
Sender-Server-IP-Name: corpmailer04.prod.mesa1.secureserver.net
Sender-Server-IP-Number: 68.178.232.202
X-SpamDetect: *****: 5.690000 Tells you how to stop further spam=3, Gives instructions for removal from list=9, More with an exclamation=4, SPF Pass=.0, tenplus images=2, Gifs in urls=8, Jpegs in urls=1.0, SpamUrl=2.0, Some tags-to-text=5, X-Verify-MX present=6, Aspam=1.6
X-SpamDetect-Info: ------------- End ASpam results -----------------

Here's a color-coded example Header (pasted to the top of the Body of the incoming email:
5.69 is the Spam Score of this message
The is a "Remove" link at the bottom of the email.
There is an instruction on how to be removed from some kind of list.
Get MORE!
SPF is an acronym for Sender Policy Framework. SPF Pass means that the sending domain is reasonably assured to be authentic - for the Sender-Server-Helo and the Sender-Server-IP_Number, not necessarily the From-Address.
tenplus images=0.2 - means there were 10 or more images in the email. Why so many?

Gifs in urls=0.8- Some of these images were Gifs, which can be tracked if you open the email.
These are links like http://www.google.com/intl/en/images/logo.gif
The invisible code part of links, including .gif and .jpg images, can contain programming code.
Programming code in the link tells the sender whether you have viewed the email or not. 1USA considers this an invasion of your privacy, however both good newsletters and bad spammers use such database-enabled software to send out their Newsletter emails - consequently we cannot block emails based on this feature UNLESS you choose to do so.
It is POSSIBLE for a programmer to write the code in these "dynamic links" to cause a Memory Buffer Overflow in the web browser software (such as Internet Explorer, the blue 'e') which in turn can open a doorway into your computer to take over your computer. No Kidding!

Jpegs in urls=1.0 - Some of these images were Jpg format, which can be tracked if you open the email.
These are links like http://www.google.com/intl/en/images/logo.gif
The invisible code part of links, including .gif and .jpg images, can contain programming code.
Programming code in the link tells the sender whether you have viewed the email or not. 1USA considers this an invasion of your privacy, however both good newsletters and bad spammers use such database-enabled software to send out their Newsletter emails - consequently we cannot block emails based on this feature UNLESS you choose to do so.
It is POSSIBLE for a programmer to write the code in these "dynamic links" to cause a Memory Buffer Overflow in the web browser software (such as Internet Explorer, the blue 'e') which in turn can open a doorway into your computer to take over your computer. No Kidding!

SpamUrl=2.0 - means that there is a website www.address that is being advertised. Usually included in advertisements of some sort.
X-Verify-SMTP present=0.6 - means that their Sending Server has been verified to exist or not.
Aspam=1.6 - Extra points if another customer has previously reported this type of email as a Spam.

This is why it's important to have the 1USA Recommended Programs installed on your computer.

- Spam URL
Just a www.somewhere.com address
The link back to their website can also contain code that identifies you. This is why you NEVER email a Spammer and say "remove me from your list" -- they just say to themselves "we have another person here who reads their emails... this is worth $ if we sell this email address on the "2 Million Fresh Email Address" CD-Roms that are out there...
... which in turn will only CAUSE your mailbox to receive more Spams.

- Verify-SMTP present
Hey, why would someone be sending out emails if their mail server refuses incoming connections itself?
If it fails this test, then the sending computer is probably
- (a) a hacked broadband connection,
- or (b) a computer setup with software that only sends out... but cannot receive.
Some large domains (like Verizon, Comcast, AOL, 1USA etc.) have separate servers for incoming mail, and other separate servers for outbound mail.
Accordingly, we cannot simply block all emails coming from incomplete servers... the emails can only be graded in a grading system.

Some emails are from legitimate people, but most are from robots.
In April 2005, the ratio of spam emails vs good emails was 48%
In October 2005, the ratio of spam emails vs good emails was 78%
So much for the Government's "Can-Spam Act", huh.

The Email Specifications were written back in the 1970's, and put all the responsibility onto the receiving mail server to "filter out the bad emails" and no responsibility to authenticate a sender on the sending mail server. This is unfortunate.
So, 1USA has developed a process where:
- If the sending mail server has a "license to operate" - it gets a few points.
- If the sending mail server receives our emails, it gets a few points.
- If the send mail server says "that sender's account does not exist", then it geta a few bad points, or the mail can be flatly rejected.
(Who wants to receive an email from someone that you cannot reply to?) (Even a Newsletter should have a Newsletter Manager assigned to handle the bounces.)
... and other various tests to ensure that 1USA Subscribers receive only legitimate emails.

In the meantime, 1USA has to try to separate the good stuff from the bad stuff - which includes faked eBay links, faked Paypal links, faked Bank links, faked Identity Theft emails, links to virus-infected websites... and the list goes on.
Many 1USA Subscribers have given us a pat on the back - for the great job we do to protect your computer, your wallet, and your identity, however I still say that no automated system is flawless.
Testimonials tell us that 1USA's system is much better than other ISPs, and that's good to hear.

untitled

Go back to previous page

Internet Access
and
Website Hosting

West Lawn, PA
610.678.2300

1USA is a National ISP with extensive content areas for its members.

1USA Internet Services:
56k • 112k Dual Modem • Satellite • DSL • Broadband Wireless
Web Design • Website Hosting
Computer Services • Computer Security
Help Desk • Our Policies • Advertise • About Us • Home

1USA Subscriber email accounts @1usa.com are protected from incoming viruses & Spams.
Public areas on 1USA:
Events • Classifieds • News • Lots of Links • Search Page • Virus Info Center
Don't forget to Register in the contests and win Prizes!

1USA Member areas:
WebMail • File Libraries and You've Got Mail sounds
• Chat Server • Discussion Forums
Newsletters • Voting Booth • Tech Support • Free Tutorials • Security
Getting too much SPAM? Signup with our ASKmail service

Design and scripting © 1995-2005

Search 1USA for:

Email: The 1USA Webmasters

	1USA's anti-spam system

	"ASpam" is the name of our content-based message scoring mechanism that allows users to set their own tolerance to undesired commercial emails. ASpam adds a header to each message which can be used by server-side filtering or by your email client software (such as Outlook Express). The SpamDetect score may also be modified by using custom techniques. Here's a sample email header: X-SpamDetect-Info: ------------- Start ASpam results --------------- X-SpamDetect-Info: 1USA SpamDetect Info: More info at http://www.1usa.com/email/spamdetectinfo.html Reply-Address: Bounce-Address: Sender-Server-Helo: corpmailer04.prod.mesa1.secureserver.net Sender-Server-IP-Name: corpmailer04.prod.mesa1.secureserver.net Sender-Server-IP-Number: 68.178.232.202 X-SpamDetect: ***: 5.690000 Tells you how to stop further spam=3, Gives instructions for removal from list=9, More with an exclamation=4, SPF Pass=.0, tenplus images=2, Gifs in urls=8, Jpegs in urls=1.0, SpamUrl=2.0, Some tags-to-text=5, X-Verify-MX present=6, Aspam=1.6 X-SpamDetect-Info: ------------- End ASpam results ----------------- Here's a color-coded example Header (pasted to the top of the Body of the incoming email: 5.69 is the Spam Score of this message The is a "Remove" link at the bottom of the email. There is an instruction on how to be removed from some kind of list. Get MORE! SPF is an acronym for Sender Policy Framework. SPF Pass means that the sending domain is reasonably assured to be authentic - for the Sender-Server-Helo and the Sender-Server-IP_Number, not necessarily the From-Address. tenplus images=0.2 - means there were 10 or more images in the email. Why so many? Gifs in urls=0.8- Some of these images were Gifs, which can be tracked if you open the email. These are links like http://www.google.com/intl/en/images/logo.gif The invisible code part of links, including .gif and .jpg images, can contain programming code. Programming code in the link tells the sender whether you have viewed the email or not. 1USA considers this an invasion of your privacy, however both good newsletters and bad spammers use such database-enabled software to send out their Newsletter emails - consequently we cannot block emails based on this feature UNLESS you choose to do so. It is POSSIBLE for a programmer to write the code in these "dynamic links" to cause a Memory Buffer Overflow in the web browser software (such as Internet Explorer, the blue 'e') which in turn can open a doorway into your computer to take over your computer. No Kidding! Jpegs in urls=1.0 - Some of these images were Jpg format, which can be tracked if you open the email. These are links like http://www.google.com/intl/en/images/logo.gif The invisible code part of links, including .gif and .jpg images, can contain programming code. Programming code in the link tells the sender whether you have viewed the email or not. 1USA considers this an invasion of your privacy, however both good newsletters and bad spammers use such database-enabled software to send out their Newsletter emails - consequently we cannot block emails based on this feature UNLESS you choose to do so. It is POSSIBLE for a programmer to write the code in these "dynamic links" to cause a Memory Buffer Overflow in the web browser software (such as Internet Explorer, the blue 'e') which in turn can open a doorway into your computer to take over your computer. No Kidding! SpamUrl=2.0 - means that there is a website www.address that is being advertised. Usually included in advertisements of some sort. X-Verify-SMTP present=0.6 - means that their Sending Server has been verified to exist or not. Aspam=1.6 - Extra points if another customer has previously reported this type of email as a Spam. This is why it's important to have the 1USA Recommended Programs installed on your computer. - Spam URL Just a www.somewhere.com address The link back to their website can also contain code that identifies you. This is why you NEVER email a Spammer and say "remove me from your list" -- they just say to themselves "we have another person here who reads their emails... this is worth $ if we sell this email address on the "2 Million Fresh Email Address" CD-Roms that are out there... ... which in turn will only CAUSE your mailbox to receive more Spams. - Verify-SMTP present Hey, why would someone be sending out emails if their mail server refuses incoming connections itself? If it fails this test, then the sending computer is probably - (a) a hacked broadband connection, - or (b) a computer setup with software that only sends out... but cannot receive. Some large domains (like Verizon, Comcast, AOL, 1USA etc.) have separate servers for incoming mail, and other separate servers for outbound mail. Accordingly, we cannot simply block all emails coming from incomplete servers... the emails can only be graded in a grading system. Some emails are from legitimate people, but most are from robots. In April 2005, the ratio of spam emails vs good emails was 48% In October 2005, the ratio of spam emails vs good emails was 78% So much for the Government's "Can-Spam Act", huh. The Email Specifications were written back in the 1970's, and put all the responsibility onto the receiving mail server to "filter out the bad emails" and no responsibility to authenticate a sender on the sending mail server. This is unfortunate. So, 1USA has developed a process where: - If the sending mail server has a "license to operate" - it gets a few points. - If the sending mail server receives our emails, it gets a few points. - If the send mail server says "that sender's account does not exist", then it geta a few bad points, or the mail can be flatly rejected. (Who wants to receive an email from someone that you cannot reply to?) (Even a Newsletter should have a Newsletter Manager assigned to handle the bounces.) ... and other various tests to ensure that 1USA Subscribers receive only legitimate emails. In the meantime, 1USA has to try to separate the good stuff from the bad stuff - which includes faked eBay links, faked Paypal links, faked Bank links, faked Identity Theft emails, links to virus-infected websites... and the list goes on. Many 1USA Subscribers have given us a pat on the back - for the great job we do to protect your computer, your wallet, and your identity, however I still say that no automated system is flawless. Testimonials tell us that 1USA's system is much** better than other ISPs, and that's good to hear.