[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] Mailing list signup handshakes

To: Anti-Spam Research Group - IRTF <asrg at irtf.org>
Subject: Re: [Asrg] Mailing list signup handshakes
From: Rich Kulawiec <rsk at gsp.org>
Date: Sun, 30 Nov 2008 18:24:40 -0500
Delivered-to: ietfarch-asrg-archive at core3.amsl.com
Delivered-to: asrg at core3.amsl.com
In-reply-to: <4932EC3E.2040707 at mtcc.com>
List-archive: <http://www.irtf.org/pipermail/asrg>
List-help: <mailto:asrg-request@irtf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.irtf.org>
List-post: <mailto:asrg@irtf.org>
List-subscribe: <https://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=subscribe>
List-unsubscribe: <https://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=unsubscribe>
References: <493175A7.6070404 at tana.it> <493179F1.9030501 at mtcc.com> <9BFB64BA-F676-4B0A-9886-FE30EDA75ADA at blighty.com> <4931868A.1080901 at mtcc.com> <959E3384-D84B-4575-A3EE-64435F2AB7AA at blighty.com> <4931901C.5070401 at mtcc.com> <49329D71.90009 at tana.it> <4932AE51.5060704 at mtcc.com> <20081130181025.GA15565 at gsp.org> <4932EC3E.2040707 at mtcc.com>
Reply-to: Anti-Spam Research Group - IRTF <asrg at irtf.org>
Sender: asrg-bounces at irtf.org
User-agent: Mutt/1.5.18 (2008-05-17)

On Sun, Nov 30, 2008 at 11:40:46AM -0800, Michael Thomas wrote:
>> I think increased use of RFC 2369 headers and their corresponding
>> presentation would help; I've also considered the possibility of
>> making MUAs aware of proper opt-in signups (say, via RFC 2142 -request
>> addresses, which all all mailing lists should support), as it would leave
>> open the door for the MUA's to decline to present a "report as spam"
>> button while viewing any message on that list and instead present a
>> "request unsubscription" button (using the RFC 2369 headers) instead.
>> (Why do this in the MUA?  Because it's MUA behavior that needs to
>> be affected, and it needs to be affected even when the MUA is running
>> on a system that's not Internet-connected at the moment.)
>>   
>
>    See, you've already lost me: I and I hope that just about everybody
>    else has been conditioned to not trust those "unsubscribe" buttons
>    because there's a pretty good chance that something actively evil will
>    happen if you click it.

What I'm talking about -- in response to comments about UI improvements --
is an "unsubscribe" button that you only see if your own MUA knows that
you previously subscribed via a proper (COI) process.  I'm not overly
enthused wtih the idea by any means, but if we're going to think about
UI improvements, then *maybe* having the MUA try to keep track of
mailing list subscriptions is one of them.

(I do this is an entirely manual way: every mailing list I'm on gets
a procmail rule, and in that rule I make a note of the data I subscribed.
I also note when I unsubscribe and deactivate the rule.  But this is
clearly not for everyone.)

> So I'm not getting why you're saying that a "Unsubscribe" button in the
> MUA would be a good choice? It seems like we're likely in agreement, but
> I'm confused.

I think we're in agreement -- I'm not sure it's a good thing either, but
I was trying to say that *if* we're going to give users "unsubscribe"
and "report as spam" buttons then maybe there are ways to at least make
them work better.

> We're only marginally better than "If you learned to run a mass  spectrometer"
> on the spam/phish front. Our automatons need to be *way* smarter, and to
> the degree that we blame the user/victim is to the degree that we miss that
> point.

Agreed.  I regard it as "our" responsibility to deal with the spam problem,
not end users'.  (And I don't blame them unless they do something that's
actively self-destructive, e.g., following spammer "unsubscribe" links.
I blame us.)

---Rsk
_______________________________________________
Asrg mailing list
Asrg at irtf.org
https://www.irtf.org/mailman/listinfo/asrg

References:
- Re: [Asrg] Mailing list signup handshakes
  - From: Alessandro Vesely
- Re: [Asrg] Mailing list signup handshakes
  - From: Michael Thomas
- Re: [Asrg] Mailing list signup handshakes
  - From: Steve Atkins
- Re: [Asrg] Mailing list signup handshakes
  - From: Michael Thomas
- Re: [Asrg] Mailing list signup handshakes
  - From: Steve Atkins
- Re: [Asrg] Mailing list signup handshakes
  - From: Michael Thomas
- Re: [Asrg] Mailing list signup handshakes
  - From: Alessandro Vesely
- Re: [Asrg] Mailing list signup handshakes
  - From: Michael Thomas
- Re: [Asrg] Mailing list signup handshakes
  - From: Rich Kulawiec
- Re: [Asrg] Mailing list signup handshakes
  - From: Michael Thomas

Prev by Date: Re: [Asrg] attention bonds, was Email Postage
Next by Date: Re: [Asrg] list spamming
Previous by thread: Re: [Asrg] Mailing list signup handshakes
Next by thread: Re: [Asrg] Mailing list signup handshakes
Index(es):
- Date
- Thread