Joe job是一種e-mail欺騙行為，這種行為指的是，某人發(fā)送了大量的垃圾郵件，而這些垃圾郵件所顯示的來源卻并不是其實(shí)際的來源。Joe job有時(shí)是對(duì)向他們的Internet服務(wù)提供商報(bào)告垃圾郵件發(fā)送者的人或是公然宣揚(yáng)反垃圾郵件立法的人的一種報(bào)復(fù)行為。作惡者被稱作是Joeing了他們所使用的e-mail地址的合法擁有者。Joe job是現(xiàn)存最老的垃圾郵件操作之一，并且是最易實(shí)施的操作之一：除了在e-mail程序中修改“Reply To”的地址，垃圾郵件發(fā)送者不需要做任何事�！　�

這個(gè)詞來源于Joe的CyberPost(joes.com)的所有者Joe Doll所受到的一次襲擊。Doll的網(wǎng)站起源于1994年，它向任何遵守其規(guī)定的規(guī)則的人免費(fèi)提供Web頁面，這些規(guī)則包括了“當(dāng)宣揚(yáng)你的網(wǎng)頁時(shí)要有好的網(wǎng)絡(luò)禮節(jié)”。在1996年，他其中的一個(gè)免費(fèi)頁面用戶向許多USE-NET新聞組發(fā)送了大批未請(qǐng)求的消息。當(dāng)這個(gè)用戶被質(zhì)問時(shí)，他宣稱自己沒有意識(shí)到自己的這種行為違反了Doll的規(guī)則。后來不久，又是這個(gè)人通過垃圾郵件的行為來宣揚(yáng)他們的網(wǎng)頁，然后Doll就終止了這個(gè)用戶的賬號(hào)。接收到該活動(dòng)郵件的人中的一個(gè)以威脅，郵件****的形式進(jìn)行報(bào)復(fù)，并且還偽造消息，使其看起來像是來自于Doll，然后再發(fā)出這些垃圾郵件。收到偽造e-mail信息的人就相信了是Doll發(fā)送了這封垃圾郵件，然后就以襲擊joes.com以及使Joe的CyberPost癱瘓十幾天來報(bào)復(fù)。
 

A joe job is a spamming technique that sends out unsolicited e-mails using spoofed sender data. Early joe jobs aimed at tarnishing the reputation of the apparent sender or inducing the recipients to take action against him (see also e-mail spoofing), but they are now typically used by commercial spammers to conceal the true origin of their messages.

Origin and motivation

The name "joe job" originated from such a spam attack on Joe Doll, webmaster of Joe's Cyberpost. One user's joes.com account was removed due to advertising through spam. In retaliation, the user sent another spam with the "reply-to" headers forged to make it appear to be from Joe Doll.[1] Besides prompting angry replies, it also caused joes.com to fall prey to denial-of-service attacks that temporarily took the web site down, from antispam vigilantes who thought he had sent the email.

Some e-mail joe jobs are acts of revenge like the original, whether by individuals or by organizations that also use spam for other purposes. Spammers use the technique to cycle through domains and try to get around spam filters and blocks.

Joe-jobbers could also be businesses trying to defame a competitor or a spammer trying to harm the reputation of an anti-spam group or filtering service. Joe job attacks in other media are often motivated politically or through personal enmity.

 Form

Joe jobs usually look like normal spam, although they might also disguise themselves as other types of scams or even as legitimate (but misdirected) messages.

Joe jobbing (or "joeing") can take different forms, but most incidents involve either e-mail or Usenet. They are sometimes seen on instant messaging systems as well. In general, joe jobbing is seen only on messaging systems with weak or no sender authentication, or where most users will assume the purported sender to be the actual one.

If the joe-jobber is imitating a normal spam, it will simply advertise the victim's product, business or website. It may also claim that the victim is selling illegal or offensive items such as illegal drugs, automatic weapons or child pornography to increase the likelihood that the recipient will take action against the victim.

When imitating a scam, such as a Nigerian scam, or phishing scheme, the e-mail will still feature links to the victim's website or include contact information. In these instances, the joe-jobber is hoping that the recipient will notice the e-mail is fake, but mistakenly think the victim is behind the "scam".

When imitating a legitimate e-mail, the joe job will usually pose as an order confirmation. These "confirmations" may ask for credit card information, in which event the attack differs from phishing only in intent, not methodology, or simply imply that the recipient has already bought something from the store (leading the recipient to fear his credit card has already been charged). Like the "normal spam" jobs, these e-mails will often mention illegal activities to incite the recipient to angry e-mails and legal threats.

Another joe-job variation is an e-mail claiming that the victim offers a "spam friendly" web host or e-mail server in the hope of further inciting action against the victim by anti-spam activists.

 How it works

Joe jobs often intend to capitalize on general hatred for spam. They usually forge "from" addresses and email headers so that angry replies are directed to the victim. Some joe job attacks adopt deliberately inflammatory viewpoints, intending to deceive the recipient into believing they were sent by the victim. Joe job victims may lose website hosting or network connectivity due to complaints to their Internet service providers, and even face increased bandwidth costs (or server overload) due to increased website traffic. The victim may also find his or her email blacklisted by spam filters.

Unlike most email spam, the victim does not have to "fall for" or even receive the email in question; the perpetrator is using innocent third parties to fuel what essentially amounts to slander combined with a denial of service attack.

Joe-job-like automated spam

False headers are used by many viruses or spambots today, and are selected in a random or automated way, so it is possible for someone to be Joe Jobbed without any human intent or intervention.[2]