Boxbe Blog

A huge thanks to Om Malik, Sonja Thompson and Eric Lai for covering our launch of our redesign and new Boxbe for Yahoo! Mail and Microsoft Outlook plugin. I’ve included links and quotes below.

Three Cool Add-Ons for Microsoft Outlook
Om Malik
“[Boxbe] has come up with a Facebook-style, invite-only guest list that allows you to tightly control and manage who gets into your inbox and who gets left behind. In other words, it lets you you easily create an email guest list so that you can make sure you receive email messages from people who matter to you — friends, family, co-workers and even entire domains.”

Say good-bye to spam for good with Boxbe
Sonja Thompson
“About a month ago, I discovered Boxbe… by accident. It was one of those rare “wow” moments that happens when you run across something that you haven’t seen before and that you think has unlimited potential.”

E-mail ‘guest list’ service Boxbe adds Yahoo Mail, beta Outlook integration
Eric Lai
“Boxbe scans users’ contact lists and archived e-mails to create buddy lists of friends, family and co-workers whose messages are allowed to pass through its virtual gateway.”

Ok, this one is completely for Thede, but if you’re interested in looking at finding spammers and other ne’er do wells using an economic angle. This a fascinating look into the minds of malware producers.

From the abstract:

“Computer security has recently imported a lot of ideas from economics, psychology and sociology, leading to fresh insights and new tools. I will describe one thread of research that draws together techniques from fields as diverse as signals intelligence and sociology to search for artificial communities. “

[via Akismet]

Ever wonder where spam, viruses and malware come from? Apparently, it comes from the mob.

Tony Soprano, spammer?

Auckland, New Zealand based computer security expert, Peter Gutmann has an informative presentation on the subject here. Malware, it seems, has become quite an industry and Gutmann posits that much of it is being ran by various mafias around the world.

Organized crime recruit so-called “script kiddies” that are writing malware and viruses for fun and pay them to turn their software into money making machines. Gutmann cites a number of internet business practices that have been employed by such as “Malware as a Service,” making it easier than ever to spam people.

A deal you can’t refuse

Gutman, the self proclaimed “professional paranoid,” goes into a high level of detail of exactly how people in the malware industry make money.

Here are a few examples:

• $1 per credit card numbers down to the verification number
• $40 credit card, with date of birth and social security number
• $1000 for 10,000 compromised computers.

Additionally, he takes a technical deep dive into how malware authors hide what they are doing.

If you are an aspiring spammer or virus maker, this is must read. For everyone else, read the end of the document about how to keep yourself safe.

Peter Gutmann
Economics of Malware pdf
[via Metafilter]

“Stopping spam [using Bayesian filtering] is a bit like trying to stop the rain by catching every drop before it hits the ground.”

You had me at hello, Michael Specter.

If you want a well written, literary non-fiction description of the worldwide spam problem, Michael Specter at the New Yorker serves one up this week.

Productivity

Specter takes the productivity angle with when looking at spam:

If a billion spam messages elude detection every day—which means that ninety-nine per cent do not—that adds up to a hundred and fifty-nine years of collective time lost hitting the delete button every day.

Not to mention sore fingers….

Legislation

Additionally, Specter shows how little legislation has helped us dig out of our collective spam problem.

In the year after the law was enacted (2003), less than seven per cent of spam complied with the requirements of the legislation, according to MX Logic, an Internet-security firm. Last year, compliance with the law never even reached one per cent.

Finally

A great summary of where we are and where we’ve been, but Brad Taylor, spam czar of Google sums most anti-spam software up best:

“But I wanted to fix the problem and return to the bliss that existed before spam,’’ he said. “Often the fight is fun, like a game. But last year there were some low points. We started getting these image spams, and the spammer would adapt to anything we did. He would write software that cut the image into little pieces that reassembled by the time you opened your mail. When we figured out how to deal with that, he started making text that waved around and curved in odd ways. So we figured that out. Then he started with random images.’’ Taylor laughed. “This went on for a while. But, finally, he just gave up. And that’s our hope. It’s kind of like war. One side eventually gets tired. And we just can’t let it be us.”

To you and me, that sounds a heck of lot like an arms race. I’m glad we’re aiming a little higher than tit for tat in the war on spam.

Read

[via Slashdot]

Should your ISP be able to determine what email lands in your inbox? We don’t think so and neither does Slashdot.

Two recent posts by Bennett Haselton on Slashdot illustrate the problems with the approach that Goodmail and Hotmail have for certifying senders. Bennett’s take is that if you are the little email list owner, small time email marketer or have the wrong political views, you could be shut out of this brave new world of pay-per-email. Most of the little guys can’t or won’t pay fees to be “certified” by either company.

Who do you trust?

As someone who uses email to manage both my personal and business life, the question I have to ask myself is, “Can I trust my ISP to make decisions for me about who can reach me?” Honestly, I don’t know the answer to that question. I do believe that they want to decrease the amount of spam their users receive, but I think this is the wrong way to do it.

Boxbe differs from both Hotmail and Goodmail in two fundamental ways. With Hotmail and Goodmail, the money collected goes to your ISP and they alone determine who can circumvent their spam filter. With Boxbe, the bulk of the money goes to the person who receives the email, and it’s the same person that ultimately controls who reaches their inbox.

Conflict of interest

From a business perspective, Goodmail must seem like a great idea. If someone came along and said, “Hey, we can curb your spam problem and you can make money while you’re doing it,” I could see how it might be hard to say no. But at some point that misalignment of interests is going to play itself out.

The EFF put it best with its position on Goodmail and the whole notion of pay-per-email:

Goodmail reduces the incentive for ISPs to improve spam filters, much less to give end users more control of the filters. It increases the incentives for ISPs to overblock, since they make money when more senders sign up for Goodmail.

Bottom line: they decide who can send you email while at the same time they solicit “protection money” from senders willing to pay.

How Boxbe fits in

So, we’ve got a different philosophy about how this should work. If you’re a Boxbe member, you know we don’t think that payment to bypass a spam filter is a bad thing. It’s our raison d’être.

We believe people should have choices in who they receive email from. More importantly, we believe if money is going to change hands to reach you, you should get most of it. It’s your inbox, you decide who you can trust.

image from Flickr user srish

Web 2.0 video interviewer extraordinaire, Eddie Codel spent the afternoon in Boxbe offices two weeks ago talking to Thede Loder, Boxbe CEO about our service. Thede explains the ins and outs of Boxbe and gives Eddie the low down on what we’re all about.

Click below to watch the video.

McAfee released an interesting report this week about the mind games that spammers play on people and as eWeek called it, why we click on these emails.

From the “Say “No Thanks” to Unwanted Email” white paper from McAfee:

“Scam spam works best by providing recipients with a sense of familiarity and legitimacy, either by creating the illusion that the email is from a friend or colleague, or providing plausible warnings from a respected institution,” Dr. Blascovich noted. “Once the victim opens the email, criminals use two basic motivational processes, approach and avoidance, or a combination of the two, to persuade victims to click on dangerous links, provide personal information, or download risky files. By scamming $20 from just half of one percent of the U.S. population, cyber criminals can earn $15 million each day and nearly $5.5 billion in a year, a powerful attraction for skillful scam artists.”

For me, I like to keep spam out of my inbox altogether and thankfully that’s what Boxbe does.

The report goes on to talk about how most people are susceptible on some level to convincing spam and attacking base human emotion can fool almost all of us some of the time.

Personally, I’m still waiting on all the money to come in from Nigeria.

photo from Flickr user fabbio

Infernal spam: Blocking e-mails constant struggle - Tulsa World

And apparently, incredibly expensive.

The tools may be effective, but for businesses like Bank of Oklahoma that run their own e-mail servers, they can be expensive. Brian Foster, senior vice president of information security at BOk, said a system to protect the company’s 3,000 to 6,000 unique addresses costs $30,000 to $50,000.

The article goes on to talk about the ever changing face of spam and the efforts at the Bank of Oklahoma to thwart it.

Why is Gmail still in beta
Good question, Esquire Magazine. We were wondering the same thing.

Gmail rolls out PowerPoint preview
Looks like Google might be getting closer to a full office suite. Yesterday, Google unveiled PowerPoint within Gmail. While you can’t create PowerPoint in Gmail, it sure seems like a good place to store them.

Oh, look you’re still getting plenty of spam
Techdirt has a sarcastic (and accurate) article about how putting one spammer in jail really just scratches the surface of the spam epidemic.

And speaking of jailed spammers -

Spam King denied bail
Our man in the can apparently will be staying there.

photo from Flickr user TheAlieness

From the “you win some, you lose some” department, Wired’s Threat Level blog reports that the “Appeals Court Says Feds Need Warrants to Search E-Mail.”

The Good

“A federal appeals court on Monday issued a landmark decision that holds that e-mail has similar constitutional privacy protections as telephone communications, meaning that federal investigators who search and seize emails without obtaining probable cause warrants will now have to do so.”

Which in and of itself is a good thing. In this day and age, email is such an important part of communication between people, having that communication protected like the telephone seems reasonable.

From the EFF:

“Email users clearly expect that their inboxes are private, but the government argues the Fourth Amendment doesn’t protect emails at all when they are stored with an ISP or a webmail provider like Hotmail or Gmail. EFF disagrees and argues that the Fourth Amendment applies online just as strongly as it does offline.”

The Bad

The bad news is that this new ruling is helping a known spammer, Steven Warshak, weasel his way out of a fraud conviction. Steven Warshak is known for launching Berkeley Premium Nutraceuticals, which sells Enzyte, a controversial “marital aid.”

Read
[via Slashdot.org]

More coverage of the story

EFF’s Case Briefing
Court to feds: Hands off ‘Smiling Bob’s’ e-mail - Network World
Court Protects Email from Secret Government Searches - Privacy Digest
Regulating the Cloud: Warshak v. United States - University of Chicago Law School Faculty Blog
Email Protected by 4th Amendment, Court Says - Freedom to Tinker
Email Safe From Government Searches - WebProNews
Appeals court: Feds can’t secretly seize e-mail without a warrant - Ars Technica
The Privacy of Internet Email - Monsters and Critics
Volokh Conspiracy - lots of detail and backstory on the case.

photo from Flickr user heathermariecarr

Ars Technica reported yesterday that a convicted “Spam King may rule prison cell for 11 years after Feds nail him.”

“(Adam) Vitale and codefendant Todd Moeller were arrested by the Secret Service in February 2006 after setting up a scheme to advertise a PC security application in exchange for 50 percent of the profits. Unfortunately for Vitale and Moeller, they were dealing with a government informant.”

Reuters added that “in less than a week in August 2005, Vitale and Moeller sent e-mails on behalf of the informant to more than 1,277,000 addresses of subscribers at AOL, the online division of Time Warner Inc.”

Yow… glad to see the CAN-SPAM Act is getting some of the big spammers here in the US.

Other reports on the story
All Things D
Download Squad
Deep Web

image by Flickr user r80o

It’s no secret that we love the Lifehacker blog (and lifehacking in general) here at Boxbe. We love all the efficiency it brings our lives and the general philosophy that things can always be better. Gmail tips, getting rid of junk snail mail, unix hacking, plugins to improve our experience on popular web sites, what’s not to love?

Who is Gina Trapani?

Well, the blog doesn’t just write and edit itself, folks. And we think that Gina Trapani, Lifehacker’s founding Editor and efficiency wünderkind, is the bee’s knees. Being Editor of Lifehacker, one of the most popular blogs on the internet, Gina doesn’t just sit around waiting for her blogger minions to write up posts so she can nitpick vocabulary and spelling, Gina normally writes about 6 posts a day and two weekly features. Many of those posts are tips emailed in from readers.

Besides being a brave soul who actually has an email address on her personal blog, Lifehacker has a public email address on every single page to their tips hotline.

I can only imagine how much spam and unwanted email she must receive. Given all the help Gina has given us, we’d like the opportunity to return the favor.

How to use Boxbe

One way Gina could use Boxbe would be to make all of the people submitting their tips to Lifehacker prove that they are human with our simple captcha test. Better yet, to prevent marketers from over running her inbox with pitches, she could simply set her contact price to $.10. That way, she could quickly weed out everyone who wasn’t serious about getting her attention by collecting a dime from every submitter who was marketing to her. She’s not going to get rich off of this, but it does raise the bar to reach Gina.

Her posts show that Gina Trapani is a power user of Google’s Gmail. Arguably, she might know Gmail better than anyone. She’s even created a plugin to make it better. We’ve added our own improvements to Gmail by integrating Boxbe into the service. The process is free and easy and can dramatically improve the quality of email that you receive in Gmail.

Boxbe does this by reducing your inbox to only the email that you want to read and leaving the rest in our quarantine. In practice, we accomplish this by allowing emails from people who are pre-approved in your white list, that take a test to prove they are human or pay a fee.

But Gmail has a spam filter…

Despite Gmail’s wonderful spam filter, unwanted emails and spam do slip through. We’re firm believers that filter based solutions to stop spam simply won’t work in the long run. Ultimately, the war on spam is an arms race and the good guys are losing. Market based solutions like ours are really the only long term solution getting rid of unwanted email and spam.

While you might not be a famous blogger, I bet you do have a problem with spam. Just like Gina and the crew at Lifehacker, we’re here to help.

photo from Flickr user rcrowley

This morning’s Seattle PI cover story reports that alleged spammer, Robert Soloway has been arrested under a provision of the 2003 CAN-SPAM Act.

AP Legal Affairs Writer, Gene Johnson reports that Robert Soloway is being held on “a 35-count indictment … charging him with mail fraud, wire fraud, e-mail fraud, aggravated identity theft and money laundering.”

Soloway has previously lost two civil lawsuits resulting in fines of seven and ten million dollars, but this is his first criminal indictment.

“He’s one of the top 10 spammers in the world,” said Tim Cranton, a Microsoft Corp. lawyer who is senior director of the company’s Worldwide Internet Safety Programs. “He’s a huge problem for our customers. This is a very good day.”

Allegedly, Robert Soloway was using so-called “Zombie” computers (or botnets) to create his attacks. Federal agents have been quoted as saying that Soloway was responsible for billions of spam emails and that we should expect a drop in spam as a result of his arrest.

Spam Wars author, Danny Goodman disagrees:

I don’t care how big a spammer Soloway allegedly is; his contribution to the 63 billion spam messages per day (Ironport) can’t be so big that we’ll even notice the absence. Additionally, there is no way of knowing how much of his process is automated and already in the hopper waiting to spew. Also, he was taken into custody before 8:00am PDT yesterday. Spam volume here yesterday was (alas) quite normal.

We tend to agree with Danny as we’ve seen no marked decrease in quarantined messages, but nevertheless, it’s good to see such a notorious spammer brought to justice.

More discussion and commentary

Slashdot
CNET
Richi Jennings
Valleywag
John C. Dvorak
Tingog.com
Boing Boing
Download Squad
TechDirt

image by Flickr user r80o

A few days ago, Domain Keys Identified Mail or DKIM, was approved by the Internet Engineering Task Force (IETF). DKIM is one of the standards that we use at Boxbe to keep your email safe from phishing attacks and fake emails in general.

What is DKIM?

From Yahoo:

DKIM is an email authentication framework that addresses the widespread issue of email forgery, using cryptography to verify the domain of the sender. It allows email providers to validate an email’s originating domain, making use of blacklists and whitelists more effective. It also makes phishing attacks easier to detect by helping to identify abusive domains.

DKIM is good for the internet and will help detect forged email addresses. However, DKIM alone won’t stop spam originating from non-faked addresses nor will it stop other forms of unwanted email. Email expert Richi Jennings says “At best, they give a partial indication whether a message is spam or not, but their main use is to allow recipients to look up the reputation of the sending domain.”

The UK’s PC Advisor says “To make it work, DKIM now has to be adopted and incorporated by independent software vendors into their email applications and related infrastructures.”

That said, this is a step forward in stopping phishing schemes and other illegal activities that originate from non-authenticated senders and we are happy to see the DKIM standard approved and hopefully more widely adopted.

More about DKIM

DKIM Workgroup
DKIM FAQ
Yahoo! Anecdotal

More discussion of the standard approval

Promising antispam technique gets nod - CNET News
IETF backs new cryptographic scheme to battle the effects of spam - Ars Technica
Junked: Is this the end of spam and spoof email? - Silicon.com
Bye Bye Spam and Phishing with DKIM? - Slashdot.org
New Spec Could Cut Phishing, Spam - Dark Reading
IETF approves DKIM to fight spam and phishing - A Canadian Geek
Why DKIM will fail - Spin on Cue
Promising new anti-spam techique gains key approval - Geeks Are Sexy

photo from Flickr user lordcuauhtli

Yahoo Mail unlimited rolling out
As mentioned back in March, Yahoo! Mail has started rolling out its unlimited storage this week. Our friends at Mashable are encouraging us to test what “unlimited” means.

Google Gmail: Hot, hip or 3rd place?
Donna Bogatin over at ZDNet talks about Gmail and it’s users. Recent studies have shown Gmail to be the third most popular email service, but it is used by the young and wealthy.

Pros and cons of web-based mail
J D Biersdorfer of the New York Times debates the finer points of using email on the web versus a desktop client. We love email of all kinds here at Boxbe.

Image spam by the numbers
Informative article (although formatted in a bewildering way) about the methods used by image spammers. [via Slashdot]

Completely unrelated image by Flickr user eva101.

Congrats to the Hotmail team at Microsoft for deploying the new version of the Hotmail service to users and removing that beta tag. Following are links to the details of the launch.

Windows Live Hotmail launches
After a year long beta, Windows Live Hotmail launched yesterday with a whole bunch of new features including 2 gigabytes of storage, Outlook-like design, auto-completion and more.

Rebuilding Hotmail from scratch
A fascinating look at the rebuilding of the Hotmail service.

Windows Live Hotmail vs Gmail
Pete Cashmore over at Mashable compares the new Windows Live Hotmail to Gmail. Is it time to switch? I won’t ruin it for you as we are platform agnostic here at Boxbe.

Other links: Webware, Techcrunch, eWeek.

Undelivered e-mail an offshoot of spam-prevention
John Agsalud of the Honolulu Star Bulletin reports on the increase in false positives in spam filtering systems (FYI, a false positive is a message incorrectly identified as spam).

This battle of good versus evil has been going on for years. Unfortunately, the bad guys have improved their stock so much that the good guys are starting to have a difficult time fighting back. The end result? The good guys’ software is becoming more error-prone and mis-identifying messages as spam when they really are not.

Wired News reports today on the 29th anniversary of the “first piece of unsolicited bulk e-mail” sent out over the internet. Sent from DEC employee, Gary Thuerk to 400 people on Arpanet (the precursor network to the internet), this email started the menace that we all deal with today.

Apparently, Mr. Thuerk “thought Arpanet users would find it cool that DEC had integrated Arpanet protocol support directly into the new DEC-20 and TOPS-20 OS,” according to EFF Chairman Brad Templeton, who has an archive of the entire message.

The content of that message starts:

“DIGITAL WILL BE GIVING A PRODUCT PRESENTATION OF THE NEWEST MEMBERS OF THE DECSYSTEM-20 FAMILY; THE DECSYSTEM-2020, 2020T, 2060, AND 2060T. THE DECSYSTEM-20 FAMILY OF COMPUTERS HAS EVOLVED FROM THE TENEX OPERATING SYSTEM AND THE DECSYSTEM-10 COMPUTER ARCHITECTURE. BOTH THE DECSYSTEM-2060T AND 2020T OFFER FULL ARPANET SUPPORT UNDER THE TOPS-20 OPERATING SYSTEM.”

Looks like spam was hard to read from the beginning.

As you can imagine, people weren’t too happy to have their inbox invaded by unwanted and unrequested email. Brad Templeton’s page has the full message as well as reactions to that initial spam.

Read [via Wired News]

photo from Flickr member brunkfordbraun

Major Anti-Spam Lawsuit Filed in Virginia - Washington Post
“The company filed the suit on behalf of some 20,000 people who use its anti-spam tool. Web site owners use the project’s free software to generate pages that feature unique “spam trap” e-mail addresses each time those pages are visited. The software then records the Internet address of the visitor and the date and time of the visit. Because those addresses are never used to sign up for e-mail lists, the software can help investigators draw connections between harvesters and spammers if an address generated by a spam trap or “honey pot” later receives junk e-mail.” [via Ars Technica and Slashdot]

Before you declare email bankruptcy - Web Worker Daily
“Did you ever wish you could delete all your email without responding? Maybe you can. It’s called email bankruptcy. You realize you are never going to dig yourself out from under the pile of email in your inbox so you just declare that you won’t. You start afresh.”

Great tips on how to avoid an email overload calamity. I can’t tell you how many times I’ve considered doing this.

Classic DM tactics are spam for filters - Direct Marketing News
“More and more well-intended e-mail is ending up in the junk box as companies and individuals tighten the screws on their anti-spam systems.”

Interesting article about the multitude of false positives that are generated by standard email spam filters.

Photo by Flickr member Rosa y Dani

So, we’ve talked about botnets in the recent post, but what exactly is a botnet?

From Wikipedia

While the term “botnet” can be used to refer to any group of bots, such as IRC bots, the word is generally used to refer to a collection of compromised, or Zombie computers running programs, usually referred to as worms, Trojan horses, or backdoors, under a common command and control infrastructure.

How widespread are these botnets? From a recent story from MSNBC, “Internet founding father Vint Cerf dramatically suggested that 150 million computers worldwide may have been hijacked by criminals.

Essentially, botnets are the root of all sorts of computer nastiness, but first and foremost, they seem to be the source of a very large portion of spam on the internet today.

To protect yourself (and others) from botnets, take a look at my post last week, 5 ways to protect your computer from botnets, spyware and other malware.

Here are some resources for learning more about botnets:

• Tracking Botnets
• Is the botnet battle already lost?
• Is your computer a criminal?

Photo from Wikipedia

Technorati tags: botnet, spam

So, besides using Boxbe to screen your email, here are the top five ways to protect your PC from botnets, spyware, and other malware.

1. Buy a Mac

Seriously. Last year, Symantec’s official blog caused waves by saying “Simply put, at the time of writing this article, there are no file-infecting viruses that can infect Mac OS X.”

This isn’t to say their couldn’t be malware for the Mac, it’s just that their isn’t any currently. Compared to the millions of viruses for Windows, that sounds pretty good to me. For many users this isn’t possible or desireable, so keep reading for things that you can do to secure your Windows installation.

2. Upgrade to Vista

One of the claimed benefits of upgrading to Windows Vista is increased security. Symantec has backed Microsoft up with a white paper [PDF] (and a site section) that has a detailed Vista security audit and their assessment that there have been no known Vista viruses to date.

3. Install security updates

One of the interesting things about bots, spyware and other software designed to exploit your computer, is that most people become infected after a fix has been released from Microsoft. Why? Well, let’s just say that creators of malware aren’t all super geniuses.

When an exploit is revealed, there is a gap in between when a fix is released and when users actually download and install the fix. That opening gives hackers an opportunity to create a program that exploits the very problem that was just patched.

Generally, I’d advise people to wait when it comes to installing recently updated software as sometimes the fix can be worse the original problem. However security updates should be installed right away.

4. Install and use anti-virus and anti-spyware applications

Most anti-virus and anti-spyware software can be scheduled to run at specific times of day. If you eat lunch at the same time every day, consider scheduling the software to run then. It could also serve as a helpful reminder to actually eat lunch.

And don’t forget to keep your virus and spyware definitions up to date. Having outdated definitions is kind of like not having protection at all.

5. Don’t open email attachments from untrusted senders

And frankly, sometimes even from trusted senders if they aren’t technically savvy. I can’t believe that this still needs to be mentioned but these attachments aren’t opening themselves.

Bonus: Turn off your PC at night

PCs these days have a number of power saving modes that make it acceptable to leave your computer on all the time. I had gotten in the habit of leaving my home computers on all the time to guarantee instant access whenever I needed them.

If your computer has been compromised by a spam bot, leaving your computer on 24/7 gives these bots more of an opportunity to send their illicit messages. While it won’t get rid of the spam bot, it certainly will cut back on the messages sent.

Finally

Short of turning off network connectivity to your PC, many security experts believe that malware is becoming more widespread and common, everyday computers have so much power that it is far more likely for a botnet to go undetected than ever before. The internet is still a wild wholly frontier, keep yourself safe out there.

photo from Flickr user brookenovak

Better Gmail Firefox plugin
Gina Trapani, blogger and Lifehacker supreme has a released a plugin for Gmail that pulls together several Greasemonkey scripts that improve Gmail’s overall usability.

Features include “adding saved searches, attachment icons, label colors, keyboard macros, a filter assistant and right-click conversation previews.”

Massive spam shot of ‘Storm Trojan’ reaches record proportions
According to a recent article in Computerworld, the Storm Trojan virus attack is sending 50 to 60 times the normal volume of spam. The trojan contains a rootkit to cloak itself and it adds the computer to it’s botnet army to perpetuate the trojan horse. Scary stuff. [via PC Doctor and Slashdot]

Gmail vs. Yahoo! Mail Prize Fight [video]
CNET decides which email service is better. We won’t disagree with the results.