[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] BCP suggestion: port-blocking by ISPs

To: asrg at ietf.org
Subject: Re: [Asrg] BCP suggestion: port-blocking by ISPs
From: Devdas Bhagat <devdas at dvb.homelinux.org>
Date: Tue, 3 Aug 2004 23:13:17 +0530
In-reply-to: <44fcd2e3012108cfa4e76971fa9d31b8410fc336@polyhedra.com>; from tim.bedding@polyhedra.com on Tue, Aug 03, 2004 at 05:57:51PM +0100
List-archive: <http://www1.ietf.org/pipermail/asrg>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
Mail-followup-to: asrg at ietf.org
Notice-requested-upon-delivery-to: devdas@dvb.homelinux.org
References: <44fcd2e3012108cfa4e76971fa9d31b8410fc336@polyhedra.com>
Reply-to: Devdas Bhagat <devdas at dvb.homelinux.org>
Sender: asrg-bounces at ietf.org
User-agent: Mutt/1.2.5.1i

On 03/08/04 17:57 +0100, Tim Bedding wrote:
> Walter
> 
> > Several major consumer-oriented ISPs block port-25 traffic (coming and
> > going) direct to external MTAs.  This is a palliative measure dealing
> > with compromised machines.  We can do better.  We can implement
> > preventative measures reduce the incidence of compromised machines.
> 
> I am considering the idea of a regulatory body in the UK using
> fines to ensure compliance with certain rules to tackle spam.

How about making them pay money to the end recipient of a mail? Proof by
complaint sent to abuse desk, and cc'ed to the regulatory body. If the
mail originated from the ISPs network, and they don't take action within
a suitably low period, terminate.

> One rule would be that ISPs must ensure rapid isolation of zombie
> machines.
> 
> Should I add port 25 blocking to the list of rules?

Yes please. Outbound for broadband ISPs and inbound and outbound for
dialup. 

> Can you think of other things that definitely should be required?

Abuse desk handling. 

Ingress/Egress filtering to prevent IP spoofing.

Devdas Bhagat

_______________________________________________
Asrg mailing list
Asrg at ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

References:
- [Asrg] BCP suggestion: port-blocking by ISPs
  - From: Tim Bedding

Prev by Date: [Asrg] BCP suggestion: port-blocking by ISPs
Next by Date: RE: [Asrg] Anti-spam laws do work, FYI. There's proof.
Previous by thread: [Asrg] BCP suggestion: port-blocking by ISPs
Next by thread: Re: [Asrg] BCP suggestion: port-blocking by ISPs
Index(es):
- Date
- Thread