[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] Let's try something different

To: Jed Margolin <jmsml@jmargolin.com>
Subject: Re: [Asrg] Let's try something different
From: Brad Davis <bdavis@cove-mtn.com>
Date: Fri, 07 Mar 2003 11:12:40 -0700
Cc: Asrg@ietf.org
List-archive: <https://www1.ietf.org/pipermail/asrg/>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=unsubscribe>
References: <00a101c2e40b$54e40cc0$ca81bbd0@kit>
Sender: asrg-admin@ietf.org
User-agent: Mozilla/5.0 (Windows; U; Win98; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01

Jed Margolin wrote:

1. Sender's email is stored on Sender's server. Recipient is sent a message
with a unique link to the message and a maximum Subject line of 80
alphanumeric characters.

As has been pointed out, spammers are already going down this path with HTML encoded email.

2. Sender can be anonymous, but not to Sender's ISP. There will be a feature
(a button) so Recipient can tell Sender's ISP, "Don't send me any further
email from this Sender."

3. Broadcasting is prohibited. If Sender wishes to send 1 million identical
messages, then Sender's server will contain 1 million copies of the message.

4. Sender's ISP will be notified if (and when) the email has been read so it
can be deleted from Sender's server. Alternatively, email can be deleted
from Sender's server at the end of the day (or week) that it is read.

These are useless since the spamming software (and often the spamming machine) is controlled by the spammer. (Some of the most "interesting" spam I've received is for software to do spamming from a Windows PC without the need for an ISP mail server (complete with a list of open SMTP relays and other open proxies to use)).

Solutions must assume that the other side (the spam server) is totally under control of spammers, that the other software was completely written by and for spammers, that the other ISP supports spamming (it can be lucrative for the ISP), and that the ISP's connection to the backbone is supportive of spamming (spamming may provide needed hard cash for poor 3rd world nations).

This implies two things: spam control must be performed at the client SMTP agent and international organizations must be willing to censure countries that fail to police their assigned domains and addresses (i.e. cut them off).

We (the IETF) can work on the first. Are we willing to push for the second? Without the second, we just have an escalating arms war (with, I fear, the advantage to the spammers).

Brad Davis

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

Follow-Ups:
- Re: [Asrg] Let's try something different
  - From: Jed Margolin

References:
- [Asrg] Let's try something different
  - From: Jed Margolin

Prev by Date: Re: False positives (was Re: [Asrg] Re: RMX Records)
Next by Date: Re: [Asrg] Do we need to do anything?
Previous by thread: Re: [OT] Mailing list alternatives (was RE: [Asrg] Let's try somethingdifferent)
Next by thread: Re: [Asrg] Let's try something different
Index(es):
- Date
- Thread