Re: [Asrg] 6 - Yahoo Domain Keys

["Alan DeKok" <aland at ox.org>]

Barry Shein <bzs at world.std.com> wrote:
> As far as I can tell spammers have now become domain registries and
> just generate random-appearing, generated domains like www.fxbrezd.com
> (or, more often, .info or .somecountryyoudon'twanttoknowmoreabout.)
> For example, these whacko domains usually have functioning MX's.
> 
> Which means they can just as easily set up SPF or Domain Key or
> similar services for those randomly generated domains.

  <shrug> Blacklist the DNS IP.

> Also, much spam from hijacked PCs seems to use the hijacked
> PC's host, as in wasteofoxygen at dyn-83-155-31-99.ppp.tiscali.fr
> 
> That sort of thing will get around these SPF/YDK approaches, right?

  Yes and no.  It depends on how it's implemented.

> Again, I don't know for a fact that this is completely useless
> technology (like proof-of-work which is useless technology), but I
> think it's only potentially useful against certain types of scams,
> domain forgeries with malicious intent, in a very weak way, and as
> such really has little to nothing to do with spam per se except
> inasmuch as we can rationalize that ``anything which comes via email
> and might harm or annoy me'' is hereby spam.=

  Is there a better suggestion on the table?

  This isn't to say we should do something nonsensical, simply because
it's better than nothing.  But it does have some applicability, a
number of domains are implementing it, and the implementors are strong
proponents.

  Alan DeKok.

_______________________________________________
Asrg mailing list
Asrg at ietf.org
https://www1.ietf.org/mailman/listinfo/asrg