Spam Under Legislative Attack in Europe

Anonymous Coward writes: "CNN has an article in their Science and Technology section detailing how the European telecommunication ministers have agreed that unsolicited e-mail and wireless text messages should be prohibited under a new data protection law. They also are agreeing to allow leeway for law enforcement to access logs of e-mail and telephone traffic.

Somewhat normal

[quartz]

In a place where Internet traffic is priced by the megabyte or minute and SMS service by the message, I would imagine the motivation to eliminate spam is a little bit higher than in the country of flat rates.

Re:Somewhat normal

Europe is not a country.

Re:Somewhat normal

You're right! The US is though.

Re:Somewhat normal

http://www.frashii.com/wldo.swf

Re:Somewhat normal

That does not seem to be the issue. I am an European, and we do have monthy access fees (plus phone cost for those who have dialup!), as well as ADSL or cable (which usually has no limitation except basic fair use rules, or a limit where extra capacity must be paid for extra).

Bandwidth is not really the reason. Europeans simply do not like intrusive advertising techniques. "Cold-call" telemarketing by fax has been illegal sine 1997 (http://europa.eu.int/eur-lex/en/lif/dat/1997/en_3 97L0066.html)

Re:Somewhat normal

Wow! That is exactly why too much technology is a bad thing.

Gonads and strife

Re:Somewhat normal

[IT]

spam = terrorist

Re:Somewhat normal

[Darren+Winsper]

I do pay per SMS message (In fact, I spend more on SMS than voice calls off my phone), but my ADSL access is not metered. Neither was my dial-up, not since 1999 at least.

Re:Somewhat normal

Actually, most customers pay less for their Internet access than a US customer pays for his flat rate.

Re:Somewhat normal

[fiddlesticks]

I susbscribe to a mobile email service through my (UK) mobile phone telco. It's a 2.5G kludge - sending involves writing email as an SMS, using emailaddress@wherever#subject##body and then texting this to my telco's gateway (via '191')

(more here one2one.net

Yeah it's complicated but it works and it's here NOW. It used to be fixed cost receipt, extra cost to send - once you sent more than 10 emails a month.

however, recently, they started introducing paying (10p a go) for *receipt* of mobile emails.

So, all the crazy newsletters I'd signed up to which got forwarded to my mobile email, I had to kill, leaving only some urgent ones going to my mobile.

This makes spam doubly annoying, as not only does it clog my inbox up, but if it comes to any of the aliases that I *do* want forwarded, it a) sets off alarm bells in my head (ahh! urgent email to mobile) but it costs me money.

Just some thoughts...

Re:Somewhat normal

[Darren+Winsper]

I'm surprised, I didn't think any of the UK mobile phone companies charged to recieve SMS. Maybe you should try Vodafone or Orange, I'm certain neither of them charge for it.

Re:Somewhat normal

[fiddlesticks]

no, you misunderstand.

I pay for the email kludge to SMS conversion.

Normal SMS receipt is free, but emails received are charge at 10p a shot

g

I don't get it

Sure I hate spam with a passion, but why is everyone so up in arms about it? Phone solicitation is soooo much more annoying. Why don't people enact laws against that. At least I can automatically filter out spam.

Re:I don't get it

You can also block phone calls and if the caller is harassing enough, there's things like call trace. While it may not be entirely illegal to solicit over the phone, there's plenty to be done that's not readily available to do with e-mail.

Re:I don't get it

Most places already have laws on phone solicitation. Telemarketers have to maintain a do-not-call list, and have to put you on it when you ask them to (they also have to tell you the name of their company). They can't call cell phones or fax machines, they can only call during certain times of the day, they can't use auto-dialers with pre-recorded messages, etc.

Similar laws on spam would probably be helpful. For example, requiring spammers to keep a do-not-mail list, and making it illegal to forge headers, take advantage of open relays, or send messages to cell phones/pagers.

Re:I don't get it

[nomadic]

Sure I hate spam with a passion, but why is everyone so up in arms about it?

Because we hate it with a passion?

Re:I don't get it

[sam_handelman]

The right honorable Mr. Coward wrote:
Phone solicitation is soooo much more annoying. Why don't people enact laws against that.

The Telephone Consumer Protection Act was signed by George Sr. in 1991. The link also has some cute advice about how the law applies to you.

Of course, this is in the states - I don't know where Mr. Coward is from.

Anyway, the FCC/FTC/DOJ/park service etc. periodically come by and close down a telemarketer, but it is pretty much for show, and in every case the telemarketer has actually been charged with fraud, not with calling people who've been asked to have their numbers removed. In general, it being the law anyway, telemarketers will take your # off if you ask (unlike spammers.)

Re:I don't get it

[McDutchie]

Sure I hate spam with a passion, but why is everyone so up in arms about it? Phone solicitation is soooo much more annoying. Why don't people enact laws against that. At least I can automatically filter out spam.

Yeah, and you can screen your calls using Caller ID. That's hardly an argument, of course. Besides, automatic spamfilters are ineffective; they either let spam through or block legitimate mail. Companies cannot afford any risk of legitimate business mail being inadvertently caught in the filter, and therefore will not filter at all.

Here are some more reasons why people get up in arms:

• You don't pay to receive phone solicitations. You pay (in Europe by the second) to receive spam. On the job, spam costs employee's time = money (lots of it). Spam is theft of service, comparable with unsolicited junk faxes. (Another way spammers commonly steal service is by hijacking open STMP relays.)
  
• Because spam is paid for by the receiver and not the sender, spammers do not bother to target their spam properly. They randomly harvest e-mail addreses off the web and Usenet. They do not honor remove requests (these in fact lead to more spam because your e-mail address is re-sold as confirmed live).
  
• Phone solicitation is easier to regulate. For example, there are no phone solicitors offering you pictures of teens fucking dogs, or the latest illegal pyramid scheme.
  

Re:I don't get it

[(void*)]

Beep, sorry for trying, but there ARE laws against phone solicitation. In the US, at least.

Re:I don't get it

[worf_mo]

Phone solicitation creates costs for the initiator. Not just the calling costs, but somebody actually has to pay a couple persons to stay on the phone and talk to you. They don't call you 3 times in a row within an hour and ask you the same question. I do agree that phone solicitation is annoying, especially for people that get a load of these calls each day. I get a maximum of 10 calls per year (live in Italy), and I can live with that. I am definitely more annoyed by junk sms messages on my mobile.

Spam creates costs for the recipient (=me), and very low costs to the initiator. The "sender" can be a 15 years old jerk with his nice 2-CD-set of harvested email addresses and a "klick-and-go" software that sends out mails promising BIZ-domains, a big penis and a loan free life to millions of persons who have not requested this information.

I have my server at an ISP, and I pay for every MB that runs into, out of or through its network card. And when I read my mail over IMAP, I pay every second I'm connected from home via ISDN. So each time I get a spam message I pay for it a) when the spam hits my mail server, b) when I download it from my server, c) while I am connected from home. Point a) still applies when I filter my mail server side, and unfortunately it applies also when using systems as TMDA. And even when I'll get my flat rate ADSL I have pay about 1.000 Euro per year for it, so I do expect that only the stuff _I_ want and _I_ request travels on _my_ expense.

I'd rather waste my bandwith with The Weekly Kernel Update than with spam.

Asia

[Detritus]

Most of the spam that I receive is coming from China and South Korea. I don't think legislation will help much. I would rather see them BGP'd to /dev/null.

Re:Asia

[WoofLu]

Well ,when they come from fake yahoo.com e-mail adresses (got 10'ths of them in my trashbox), i don't think you can do anything about it ..

Re:Asia

Usually the open relay is in China or Korea, where they apparently are too stupid to configure a mail system but still do it.

Real problem targeting spam

[GSloop]

Most of the spam I get now, is from companies that are using "contractors" to spam, or spam from offshore (i.e. China) ISP's. The advertised product is from the US often, but the advertisee is not. Therefore, shutting down the "spammer" isn't going to do anything.

Now I don't know how to practically impliment this, as there are some pitfalls, but with some decent legislation, we could make it possible to target the beneficiary of the spam. That makes it possible to attack the real reason for the spam - where we can use our laws etc to attack it.

Sure, there will be spam that also has you send you money to China/Afganistan etc, but that will make the spam much less profitable, as most people won't do so. Lastly, most people will use credit cards, and I assume that most SPAM scams are frauds too, so the chargebacks will be hell for the spam beneficiary.

Anyway, it just seems that we can't just attack the spammer, we really need to attack the beneficiary. Then the spammers will go away, as they can't find anyone to demand their services.

Sure, I'm crazy, but what the heck!

Re:Real problem targeting spam

[TheMeld]

Most reasonable countries and reasonable laws are aware of the contract killer/spammer/whatever. What makes you think these laws will be any exception? I would expect that a well worded anti-spam law would choose its phrasing such that it didn't matter how many levels of indirection there were; if you are anywhere in the chain of "spam him" instructions, you're guilty.

Remember, The Man(tm) may be an asshole, he may be an ignoramus, but he is very rarely a moron. Morons aren't very threatening and if they are, they are easily controlled and manipulated into doing something less threatening.

Re:Real problem targeting spam

[ShaunC]

>Therefore, shutting down the "spammer" isn't going to do anything.

You're right - in those cases, to hell with the spammer, you have to go after the spamvertised product. Spammers spam because people are paying them to spam. People are paying spammers to spam because those people are making money off the spam. To borrow a Bush tactic, follow the money. If you're getting spam from Asia, Russia etc. advertising a website in the US (as I frequently do), forget tracking down the spammer unless you really want to spend the time doing so. Instead, forward the spam to the webhost of the target site, and the host of any email dropboxes contained within the spam.

It costs money to open webhosting accounts, so hit the real spammers (those who benefit from the advertising, not necessarily those who send the mail) in the pocketbook.

Shaun

Re:Real problem targeting spam

[Straker+Skunk]

That would make it possible for anyone to put the hurt on a legitimate business. Don't like Bob's Hardware Emporium? Talk to these guys in Taiwan, who will put together an authentic-looking spam campaign for you.

Re:Real problem targeting spam

[GSloop]

Sure, thats some of the problems I am referring to...

I can't think of any great way to prevent that kind of abuse...but it's not terribly likely that someone will pay to "hurt" spam their competitor. That probably eliminates a bunch of the abuse potential.

Open relays abuse are another matter, but in practical terms, these are more and more rare. (I think, I am not factually sure of this...)

That leaves people spamming using their "own" account. That would make tracking the "real owner" of the spam a bit easier to find.

Lastly, one might take advantage of the SPAM offer, and thus prove that the spammer benefitted from the SPAM, and was accepting the spoils thereof. With this in hand, the spam beneficiary gets whacked. Yeah, I know it's still got some loopholes...

Lastly (really this time) lots of the spam I get is for spam lists, or other seedy small time scam type stuff. Making this market a bit less profitable will dry up the market a lot. That leaves the big guys, but they will probably clean up their act, because they have more important things to worry about.

Basically, it seems that virtually all spam beneficiaries have some tie to the US, or other 1st world country. DNS, Website, PO Box etc.

Also, the law wouldn't have to be criminal, that would just be a pain for everyone, just civil.

Just some additional thoughts...

Re:Real problem targeting spam

[TheMidget]

Sure, there will be spam that also has you send you money to China/Afganistan etc, but that will make the spam much less profitable, as most people won't do so. Lastly, most people will use credit cards, and I assume that most SPAM scams are frauds too, so the chargebacks will be hell for the spam beneficiary.

Chargebacks will be especially nice when spam fighters start submitting hundreds of bogus orders, with made up CC numbers. Perfectly safe if you use an open proxy, and pretty effective too (as long as the check digit matches, but it is easy to produce matching numbers...): for verification beyond check digit, the spammer has to pass card number, expiration date and billing/shipping address to his card processing firm before he can know the thing is bogus, but for each card check that turns out negative, it gives the spammer a black mark. Eventually, he'll be kicked...

Re:Real problem targeting spam

The problem with attacking the beneficiary of spam is determining who really is the beneficiary. Such a law would be interesting because it would encourage everyone with a hatred of a company to send spam out where the company seems to be the beneficiary. Just think, Millions of spams for Microsoft products from disgruntal Windows users - the cost to the company for each spam would result in enormous fines far higher than any increase in sales... Hey, maybe this WILL work *sarcastic*.

Re:Real problem targeting spam

[Erasmus+Darwin]

"Anyway, it just seems that we can't just attack the spammer, we really need to attack the beneficiary. Then the spammers will go away, as they can't find anyone to demand their services. "

Of course then it promotes another tactic. People could pay spammers to send out spam with their competitors' contact information. When the spammer's operating from China, it becomes much more difficulty to prove that the person listed in the spam is the person who ultimately initiated it.

Re:Real problem targeting spam

[ShaunC]

>That would make it possible for anyone to put the hurt on
>a legitimate business. Don't like Bob's Hardware Emporium?
>Talk to these guys in Taiwan, who will put together
>an authentic-looking spam campaign for you....

That's usually referred to as a "joe-job," and it already happens frequently. Most of the time it's easy to tell a joe-job from a real spam campaign:

1. Spammers are too stupid to put a notice on their website saying "we didn't send you that." Joe-job victims will quickly put up such a notice once they get reports that they're being framed. (See paypalwarning.com, who were joe-jobbed over the weekend.)

2. Joe-jobs often, if not always, target sites that have been around awhile (long enough to garner some competitors) but have no history of spamming.

3. Real spammers start spamming for their site as soon as it becomes active, because they're used to the cycle of "find a new webhost, start spamming, get shutdown, find a new webhost." I resell webhosting accounts and I've seen this firsthand several times. They open an account and I wind up nuking it within a day or two due to complaints. Webmasters who have a track record of being legit rarely wake up one day and decide to start spamming.

4. Joe-jobbers often make the mistake of leaving evidence which clearly links them to a competitor or enemy of the framed site. Some of them even post the forged spam from their own company's network. Nothing says "joe-job" like spam for Bob's Hardware Emporium which originated from gw.carlshardware.com.

Shaun

Re:Real problem targeting spam

[salyavin]

Hmm punshing those who'd benefit from the adverting could spark a new kind of attack. For example all the Microsoft haters could send out bulk mails advertising for Microsoft just to get them fined ;)

We hate spam, Saudis hate porn. Too bad.

[Marsh+Jedi]

We spend hundreds of kilobytes yammering about the great firewall of China, in particular laughing at the futility of it--legislation that stops the flow of information seems to be something we protest when implemented, and deride when proposed.

This is of course, while we upgrade our procmail recipes and secretly wish for a legally-mandated X-this-is-spam header.

In the end isn't stemming the flow of unwanted spam essentially the same thing? Going with the datahaven theory, eventually all your spam will come from the countries that _do_ allow spamming. And then all your bulk-marketing companies will set up branch offices there.

It starts making draconian black hole lists start seeming like the only viable solution. Because legislation sure don't work.

fax spammers suck

[Proud+Geek]

I have a fax number attached to my mobile phone as part of my plan. I don't use it much, so I didn't bother finding out the number for the first few weeks I had it. In that time period I got no less than 84 pages of, you guessed it, spam. Although this pales next to the amount of email spam I receive, it is shocking to know that I can get spammed when even I don't know my address.

Anything that reduces the volume of electronic junk I receive is good. I applaud the Europein Union for this, and I hope that it comes to the USA very soon.

Re:fax spammers suck

[jsmthng]

I'm 76% sure there's a U.S. law against fax spam, because it gets the bonus of specifically causing real-life monetary damage (in this case, waste of paper and ink, especially when fax paper was a big deal Back in the Day; email really is just electronic bits with the occasional per-minute cost).

Ha, google gets me a random attorney's page on the subject: http://www.markwelch.com/faxlaw.htm

You get $500 per violation. Woo.

Re:fax spammers suck

[Lowca]

A little karma whoring going on:

Here is the junk fax law (47 USC 227). As jsmtng said, you could get at least $500 for each junk fax sent to you.

Bout Time!!!

[heyetv]

Uh, so I can finally jail my aunt -- the one that only knows how to hit the "forward" button in AOL -- for her unsolicited relentless onslaught of "forward this to 20 people to support (insert random hippie political point here)..." crap?

Re:Bout Time!!!

[dawgfacedboy]

Or my aunt... the one that only knows how to hit the "forward" button in AOL -- for her unsolicited relentless onslaught of "forward this to 20 people to support (insert random right wing religious/political point here)..." crap?

Re:We hate spam, Saudis hate porn. Too bad.

[RogrWilco]

But if you could get spam to originate from only a few spam havens by ongoing legislation, it would be much easier to bully the remaining countries who allow spamming to change their minds. Blocking off ip ranges from the internet is a relatively easy task, and if people hate spam that much, the majority of ISP's would be on-board. Is it right to do this, perhaps not. Is it possible, definately!

Personally, when my network receives spam from a company, I send them a bill. Sure it costs me minimum 35 cents for postage, and the bills average only 12 cents, and I have yet to receive payment, but it's the principle of the issue. And more often than not, I receive a letter or a phone call back regarding the charges, so in some way I get my money.

Do they have the right focus?

[g2g]

It seems to me that the telecommunications ministers have much larger things to deal with than cookies. Do they really have the power or reason to deal with the Application layer of the system? Now my site needs a policy to tell people that my app server likes to set cookies? Anyone wish for the time when the web was less commercial?

Just make a real remove!

[dawgfacedboy]

I don't like spam, but I don't want any laws against it. If you want freedom, you have to support everyone's freedom... even if you hate them. The only law I would support is one that mandated a way to get off a spammers list... AND the remove must work.

Re:Just make a real remove!

[Spinality]

If you want freedom, you have to support everyone's freedom... -- dawgfacedboy

Your right to free speech doesn't extend to my living room. I assert that it shouldn't extend to my inbox or my telephone either, unless I've explicitly published my desire to receive such contact.

A working opt-out would be great, of course, as you say. But such a thing is not possible, or at least there's been no proposal yet that doesn't just make the spam problem worse by disseminating my email address to the very folks I want to shut up.

That's why the only route is draconian: ban ALL UCE entirely, until and unless somebody comes up with a safe, non-spamming mechanism for blocking UCE.

Re:Just make a real remove!

[McDutchie]

I don't like spam, but I don't want any laws against it. If you want freedom, you have to support everyone's freedom... even if you hate them.

Cool! Tomorrow I'll make use of my freedom to come to your house and dump a truckload of cow shit in your back yard. As a sign of my dedication to Freedom and the American Way, I'll even put a brand new US flag on top for you. How's that?

Don't like it? Sorry. If you want freedom, you have to support everyone's freedom, even if you hate them.

The only law I would support is one that mandated a way to get off a spammers list... AND the remove must work.

Yeah, that's reasonable I guess. I should stop dumping cow shit in your back yard if you tell me to stop, I can accept that. However, since you have now yelled at me, I now know for sure that you exist, and I'll be sure to sell your address to at least ten fellow cow shit dumpers as confirmed live!

Re:Just make a real remove!

[Micah]

There are how many millions of businesses in this country? And you're saying they should all have the right to send you their sales pitches by e-mail, but as long as you reply with "remove", they have to honor it?

You want to reply to 5 million e-mails with "remove" in the subject?

Sorry, try again.

Re:Just make a real remove!

[saikou]

Hey, if somebody likes a freedom of peeing on the lawn of the house you rent are you going to put up "please don't pee on my lawn" sign or do something more meaningful? :)

Remove will work. Except the list is always different :)

Re:Just make a real remove!

Right now it's perfectly legal for those millions of businesses to spam you. The vast majority won't because the 10-100 customers they'd get aren't worth the hundreds of current customers they'd lose. The ones that do spam usually have a working "remove" link so you can opt-out of future ads. If there wasn't a remove option they'd annoy and lose customers.

Spammers have no current customers to offend, so they spam people as often as they can. They also have remove links, but instead use them to confirm valid emails. Spammers like to fake IP addresses and use free anonymous email accounts, so even if you could legally opt-out of a particular spammer's spams, he could just spam you with a new pseudonym and you couldn't (without some serious digging) tell the difference.

In short, spam is beneficial for the few that do it, but not for the vast majority of companies. If it was truely beneficial to everyone, then you would be getting 5 million spams a day.

Re:Just make a real remove!

[Micah]

You're correct for the most part, but I think that if it was legitimized in ANY way, more legitimate businesses would get into the act and start spamming.

Re:Just make a real remove!

True. I don't think it would be that many more though.

Re:Just make a real remove!

[Darren+Winsper]

Heh, reminds me of a sign I saw a few weeks back. It said "Please do not deface this sign". That was it, nothing else. Who would put up a sign for the sole purpose of asking people not to deface it?

Re:Just make a real remove!

[Eivind]

What makes you think a working opt-out is not possible ?

We do infact have such a system in Norway. There's a single webiste, operated by the government whee you can register yourself, and mark check-boxes for which kind of targeted marketing you accept. (postal or by phone ? Not from anyone, or do you still accept postal marketing or phone-calls from charities?)

Anyone who does direct marketing is legally obligated to wash their adress-lists against this one atleast once every 3 months. Sending postal mail, or doing phone-marketing to a person on the list is a crime. Punishable by fines or prison up to 2 years. (In theory, in practice you get a fine offcourse)

When it comes to email we've got opt-in though. Sending marketing to individuals without *prior* *informed* *active* consent is a crime. Same punishment as above. And it *does* Work. I get about 200 spams a month. And this far in 2001 I've gotten *2* Count them - *TWO* spams from Norwegian spammers. Naturally I've reported them and had them fined.

Opt-out is actually acceptable if there's *one* single point where you opt out, and if there's punishments attached to ignoring your opt-out. I still prefer opt-in, but the opt-out on phone-marketing does work. I've got ZERO phone-marketing-calls after I registered myself on the opt-out site.

Re:Just make a real remove!

[Spinality]

Sorry, I should have said "not possible in the US." Sorry for being US-centric in my thinking. I think the Norwegian system as described sounds ideal; but I'm dubious such a system could get implemented here.

However, I am surprised that foreign harvesters don't use this opt-out list to blanket you with spam. I get tons of spam from offshore sources who wouldn't give a hoot about antispam laws. And of course as long as we can send forged headers etc. it's not always trivial to track down the source of a violator.

Re:Just make a real remove!

[Eivind]

That's because they can't.

You see, you don't get this list from the government. What you do is you send in your adress-list, then they'll wash it for you and send you back the remaining adresses.

So you can deduct who's on the list by running diff on your input and your output, but you'll never be told the adress of anyone unless you already have it.

Re:Just make a real remove!

[Vadim+Makarov]

I can only attest that the system works. I've received maybe a couple of Norwegian spams this year.

Last time it came to my mailbox, my immediate thought was "Norway is a small community, there should be a working way to complain and shut down the business" (I knew nothing of what Eivind said here!). I decided not to complain that time, but my office neighbour immediately recited me the appropriate authority from the phone book...

Re:Just make a real remove!

[dawgfacedboy]

urinating in public is already illegal in most places. seems it could also be considered property destruction/defacement... or at least littering. There is a large difference between peeing on my lawn and sending me spam.

Fax spamming is illegal in the USA

According to this page, you can sue those fax spammers for $500 (or $1500 if they broke the law intentionally). From the page:

Actually, many collection companies exist which will (for example) go after the fax-abuser, get the $500, then get a $300 "take" and give you $200.

At $200 per fax, you could make $16,800. Maybe you should look into that.

Re:Fax spamming is illegal in the USA

[drsoran]

THAT is the kind of legislation we need in the USA for e-mail spam. I bet many of these collection companies would love to jump on the bandwagon if it meant making money busting spammers. Then you just sit back and collect your checks.

Re:Fax spamming is illegal in the USA

[linzeal]

A use for old fax machines and us poor slashdotters could get out of debt.

Re:We hate spam, Saudis hate porn. Too bad.

[Marsh+Jedi]

Again, the pressuring of people's ISPs is precisely the type of strongarm tactics we condemn in Great Britain. I think I missed my point in my previous post--yes, you can eventually legislate, sue, and arm-twist to get your way on the net--I just laugh at the hypocrisy, that's all.

Can of Spam?

[magnetx11]

Whatever happend to the the can of Spam icon /. used to use for articles related to spam?

Re:Can of Spam?

[Karma+50]

http://www.hormel.com/ci/ci_in.htm

Re:Can of Spam?

Fuck you mr. Patrick Bateman, Esq. You arranged for the death of the spam logo because slashdot doesn't support censorship?

Why don't you move to China or Iraq? You won't have to worry about anybody saying anything you don't agree with there, as long as don't want to say or hear anything the government doesn't want you to.

Re:We hate spam, Saudis hate porn. Too bad.

[RogrWilco]

And I wholehartedly agree. But hell, I don't own the Internet...

Re:Antiwar liberals are as bad as hitler

[dawgfacedboy]

This is a very small number of liberals.. the far left wing. When W gets 90% approval ratings, do you think that the country is 90% conservative? Very similar to the far right wing who would like to inject religion into every part of the government but fail to see that they are not very different than the Taliban who were very successful in forcing religion into the government.

Non-negotiable: My money=My service=My rules

[dcavanaugh]

Spam is no joke when consider that in some parts of the world, Internet service is pricey and there is no such thing as a flat rate. If you paid per MB or per minute of connect time, you would "get it" for sure. As the U.S. concept of "unlimited" internet service gets less and less "unlimited", the spam issue will only get hotter.

Personally, I have a zero tolerance policy -- I trace the headers and file complaints. No exceptions. I managed to get one spam website TOS'ed off 3 ISPs, as well as a direct hit on their DNS capability, just by recycling the same message headers as the spammers got booted from one ISP to the next. I find that complaint messages work better when I have a meaningless bunch of keywords at the bottom. Wonderful things like DMCA, copyright, infringement, litigation, trademark, liability, etc.

On to the telemarketers. If you live in a state that has a manadatory "do not call" list, get on it. Otherwise, write to your state rep. and lobby for one. I live in Connecticut, where the DNC list has hit the telemarketers like a "bunker buster".

Then we have the junk mail. That gets stuffed back into the "business reply envelope" and returned at the sender's expense. I heard someone suggest keeping a supply of junk mail on hand at all times, so as to overstuff whatever business reply envelopes you might receive. I pay for trash removal. The people who send me this junk can pay to take it away, not me.

Once again, trying to control the uncontrollable.

[ebbomega]

Within the midst of the world out there, there's a subworld. Communications developing to a point that I can hit on a girl in Indiana from Vancouver Canada through that simple "uh-oh" sound that we've all grown to despise and eventually thalamus out of our minds. My friend was convinced she was going to go on a trip to Holland to meet this guy she met over AIM.

And it goes on.

In the meantime, governments are trying to make the world more comfortable for... well... themselves... without even understanding what's going on.

The ramshackleness (is that a word?) of the world almost resembling the Austro-Hungarian empire prior to World War I is being manipulated by the people with access to this technology to transcend borders. Pornography of 14-year olds is illegal... except in the old Soviet republic of Fookerplakistani (apologies to Austin Powers)...

So it's possible, no matter where you are, to have access to pictures of naked 14-year-old Fookerplakistinians.

This is another attempt of them trying to regulate this borderless world. It's not bloody possible. 50% of the spam mail I get is in some foreign language that is neither french nor english, which suggests to me that it's from outside of Canada, and thusly any regulation the Canadian government will try to do will be in vain because it'll probably cut down on about 2% of my spam mail.

They're slowly trying to work their way into the internet, between Gore "fathering" the internet and the crackdowns on filesharing (I still say that Napster getting shut down was the greatest thing to happen to MP3s since WinAmp...) are becoming more and more regimented (Even audiogalaxy has filters now. Damnit).

So, I guess the point I'm getting at is that this is going to be a slow process because they're just not going to understand that it's a futile move on their part and that the more they try to regulate, the more loopholes the l33t h4x0rz and bored computer geeks will find. But they'll bury their heads in the sand and say that they've won the war on "indecent internet usage" or something like that simply because they've instated a sieve.

Re:We hate spam, Saudis hate porn. Too bad.

[ewhac]

In the end isn't stemming the flow of unwanted spam essentially the same thing [as the Great Firewall of China]?

No. In the case of the Great Firewall of China (and Saudi Arabia), a third party is attempting to block information people want. As such, the sheer number of minds applied to circumventing those artificial barriers all but assures they will be overcome.

Contrast with spam filtering, where a third party is attempting to block information people don't want, with the full support and agreement from said people. This makes the number of sociopaths trying to circumvent the barriers vanishingly small. Moreover, because people support the blocks, the number of people willing to report spammers who penetrate security is considerably higher (as opposed to the China/Saudi situation, where there's likely a silent agreement that the authorities are not informed when the barriers are breached).

Schwab

Apples, oranges.

[McDutchie]

The Great Firewall of China is intended to prohibit people from actively seeking out information they want.

Anti-spam legislation is intended to allow people to stop receiving information (?) they don't want.

This is not about control of the Internet. This is about control of my e-mail inbox, the one I pay for.

Re:Apples, oranges.

[LS]

Word games.

"allow people to stop receiving information". Hmmm. Shut off your radio if you don't want to "receive". How about, "prohibit people from sending information". Much different, isn't it? How would spam be defined? What if other things like petitions get lumped in with spam?

Damn, I paid for my radio and electricity, and all these damn stations keep sending me unsolicited information.

This may all sound like a troll, but it's not. The metaphors used in associating with email seem to break down when you get into the details.

If you want to live in a free society, you will have to "receive" the good with the bad.

LS

Re:Apples, oranges.

[sweetooth]

With a Radio you only tune into the station you want, and then "recieve" the information that they send, even if you don't want it all.

With email you don't have an option to tune everyone but the station you want out. You can do this somewhat with mail filters etc, but not to the same magnitude.

Also, radio is regulated quite heavily when compared with email.

Re:Apples, oranges.

[sweatyboatman]

Email petitions are a form of SPAM. I don't want joeschmoe@SPAMMAILER.com sending me a petition or any other piece of garbage. Now if my best friend wants to, that's another story (I'd have to give him a stern talking to).

Unsolicited mail is a pain in the ass. Whether or not it's well intentioned.

Re:Apples, oranges.

[jnana]

If you like spam so much, why don't you post your personal email address--the one you care about and can't change--and I'll be happy to forward every piece of spam i get to you.

I'm sure you could get spam forwards from hundreds of /.ers too if you like it so much. Just think, if it's ever outlawed, you'll have years worth of your own personal spam so you can still look at a hundred fresh ones every day.

Re:Apples, oranges.

[LS]

I would have to agree that the radio metaphor is flawed, as I had mentioned earlier. But the heavy regulation only allows big money junk and commercials on the airwaves with a few notable exceptions. I fear that spam regulation would have the same effect. Big corporations could send spam unpunished through some twisted legislation. I've been getting a lot of spam from large corporations lately in my spam filter box, so I wouldn't put it past them.

I don't agree that you can't filter properly. I get very little spam in my inbox with properly setup filters.

Re:Apples, oranges.

If you like spam so much, why don't you post your personal email address--the one you care about and can't change--and I'll be happy to forward every piece of spam i get to you.

You're a blatant idiot. The guy stated he liked his spam, meaning the spam he voluntarily provided his email address for. You, on the other hand, are threatening to have unsolicited spam be sent to him. You're no better than a spammer.

Re:Apples, oranges.

[jnana]

No, you're the idiot.

The guy stated: "I like spam" not "I like my spam". And there's no mention of liking spam that he signed up for. Do you read the posts before you reply, or just pick out one or two random words then write a response to what you think the person meant? p.s. Look up threat in the dictionary. I didn't make any kind of a threat, only suggested that if he likes spam, I have plenty i can share with him, if he's not just being contrarian.

Pay per Email

[janolder]

In the end, the only thing that will work is a pay per email system. As previous posters have pointed out, with 150+ countries having email - one single country that doesn't sign off on an international SPAM law will be sufficient to make all SPAM laws moot.

If I could set up my email system in such a way that it will only receive email after receiving notification from paypal that an amount X has been transferred to me, I would cease to receive spam overnight. My personal threshold would be 25 cents - less than a stamp but enough to be noticed. This would deter spammers, but not keep entities with a reasonable expectiation that I want the mail from emailing me. It might even deter those pesky friends that keep sending me copies of jokes that were already old when I was still young.

Between friends engaging in conversation, the amounts paid would balance out. But in the case of one way communication, I'd get paid a bit for the time I spend looking at my emails.

Obviously, this can be implemented with reasonable effort pretty quickly. There are some minor details to deal with, nothing traumatic though: The sender would have to be able to determine what the going receiving rate of the recipient is. There needs to be a functional and pervasive micropayment system (paypal). Mail programs would need to be updated to deal with the added protocols.

I find it amusing how politicians still think they can regulate the Internet by way of stroke of pen. They'll have to learn the hard way. Sadly, we'll have to suffer in the meantime.

Re:Pay per Email

[Micah]

And what would happen to listservs???

> Obviously, this can be implemented with reasonable effort pretty quickly.

Do you have a clue how SMTP works? Doing something like this would drastically change the way everything is done! You have to modify mail clients and mail servers! ALL of them!

*Maybe* some kind of variation would be do-able -- like, you could set different payment threshholds for different (known) senders. Like, listservs and friends would be nothing. But it still seems like a bad idea.

I think the only thing that has any hope of working are laws, unfortunately. Just banning the obfuscation of sender info would go a LONG way. Also ban the selling of "harvested" e-mail addresses that would solely be used for spam, and possibly ban the act of harvesting itself.

Re:Pay per Email

[tshak]

As previous posters have pointed out, with 150+ countries having email - one single country that doesn't sign off on an international SPAM law will be sufficient to make all SPAM laws moot.

Actually, it's NOT moot. SPAM exists because there's money behind it. Even if the spam is coming from Israel, if the product is US based, that company should be held liable. If this was the case, the amount of SPAM would drop significantly. If the EU bans SPAM, it will make an even bigger impact. I'd be happy to go back to the days of 1 - 2 SPAM's a week instead of 30-40.

Re:Pay per Email

[janolder]

Do you have a clue how SMTP works?

Oddly enough, I do - quite intimately. :-)

Doing something like this would drastically change the way everything is done! You have to modify mail clients and mail servers! ALL of them!

Not all of them. The only software that would need to be modified is my mail server and the mail clients of people that want to send me email.

The cool thing is that this could be a gradual process. First a few people that are fed up with SPAM (like myself) but only have a handful of friends that send them email would convert to this new system. Perhaps this select group of people would even have two email addresses for a while. Over time, more and more users would force their ISPs to support this new standard to be free of spam. Mail clients would gradually be upgraded as users want to communicate with a growing community of spam free friends.

Eventually, as software becomes available, everybody converts as it is so much nicer to be spam free. I'm envisioning this as a rather landslide-like process in the end.

Look at what hard to enforce laws do - usually nothing at all. Examples: prostitution, drugs, alcohol (prohibition). If you want to change something, you have to either be able to enforce the law effectively or come up with an incentive system that is self-enforcing by using man's basic nature against him (or to his benefit [cf capitalism]).

I think the only thing that has any hope of working are laws, unfortunately. Just banning the obfuscation of sender info would go a LONG way.

As I'm sure time will prove, this won't do anything at all. The fraudulent-to-begin-with spammers (most of them, I'd wager) will ignore such a law. The others will move their operations to another country or will be replaced by entities in other countries. Keep in mind that spammers, by definition, are rude, selfish people oblivious to the needs of others.

Re:Pay per Email

[Kvasio]

That's not the case. If you were right, I wouldn't get any SMS spam. I get them more or less regulary despite that sending them costs bulk sender about $0.02 from most european operators.

Besides - your pricing is too low for some spammers, and too much for the majority of people in poorly developed countries. I don't see you spending 1/10th of your wage (unless you're a weirdo) for internet access anyway, and most people using net in transition economies have to.
In poorly-developed countries in Africa this would have even greater impact.

EU has possibility to do something effective. It can force all european companies ( _AND_ their
dependant susidiaries abroad) to behave in particular way; what's more - it can influence
at least other OECD countries to do the same ... and getting rid of those american-believing-that-spam-works-although-they-s ay-it-does-not businesses would reduce spam in 70-90%. Without them chineese guys won't have demand and after while would stop this.

Personally I have set on my SMTP server declining all mails from *.cn, *.msn, *aol.com domains, as I have complety no frients there and donnot expect anything besides spam from them.

Re:Pay per Email

[Banjonardo]

one single country that doesn't sign off on an international SPAM law will be sufficient to make all SPAM laws moot.

No, it won't. Joe Schmoe, who payed for a little spam server and a connection in his little home in Indiana isn't gonna relocate to China, or buy/rent a spam-server there. At least, not as many Joe Schmoes will. I think a U.S. spam law isn't enough, but it sure would be a help.

Re:Pay per Email

[Micah]

ok, I was thinking at first you were going to impose this on everyone at once!

True, laws would have limited effect if there were countries that didn't have such laws, but still, even if the mail was SENT from overseas, most of the crooks that actually COLLECT the money will have to be in the USA. International orders can get hairy. Not that it can't be done of course.... And even if you just shut down the ones actually IN the USA and other complying countries it would be worth something.

But why would you charge your friends to send you mail? I know, you said it would even out, but I don't think people would like that too much. And your 25 cents seems pretty steep. Even 5 cents would deter spammers, as that would add up quickly.

Then, again, there's listservs. We certainly don't want to ban those!

Re:Pay per Email

[Jesus+IS+the+Devil]

Haven't we learned from Napster and Divx? Once people have a taste for *FREE* they will never ever want to pay for it again. And one thing we all should know too, is that when it comes to computers, NOTHING can prevent us from bypassing security measures.

If worse comes to worst, people will just develop their own version of a network and grow that into another internet. The paid-for-email one will die off rather quickly.

Re:Pay per Email

[redhog]

A better system would just be to block all mails not signed with GPG/PGP with a key which you have previously accepted, and for all the rest of the mails just send a reply stating the myst first send a signed message (but signed with an unaproved key) with the subject "I want to send you e-mail" (or something like that), except those with such a subject-line, which would be put in a special mail folder, for you to check as you like... Of course, mailprograms would then have to facilitate encryption... You could even do this without signing, and just match on aproved adresses instaed...

Re:Pay per Email

[_ph1ux_]

ok - so I would have agreed to your comment on several points - however there is one thing that I am *totally* at ends with what you said:

"If I could set up my email system in such a way that it will only receive email after receiving notification from paypal that an amount X has been transferred to me..."

Um, I dont know if you have noticed but 99% of all people that use email enjoy the fact that they do not have to pay postage on the messages they send out....

and I would say that if your argument is that "I receive too much spam so as it is costing me" - I would suggest you stop soliciting email from porn sites....

(also - if your argument were to truly hold merit - you would not receive any junk mail in your snail mail box....

I dont know about you - but I get a shit-load of true garbage in my box that is actually *PAID* for by the sending party...

I asked the mail-man how to take care of this - and he said that the only way to "reduce but not eliminate" this problem was to get a P.O. box...

so as I stated - I think that your logic is flawed - and i you want to pay for mail - why dont I give you my address (p.o. box of course) and you can send me .25 cents for every spam you get.)

that is precisely the reason that I keep many email addresses.... a hotmail, a yahoo, one on each of the domains that I own, one on several friends domains, and some other randoms.

the yahoo I use for things like resume sending/replying.

hotmail is used for nothing - except personal forwarding of attachments - others are used when required for an email conf for password/whatever...

and the others I use for various personal reasons.

and my primary is totally for friend communication - and not given to anyone other than "trustees" and I NEVER get spam there.....

(however I get the most spam on HOTMAIL - even though this account was originally created for me to forward attachements that I wanted to keep that were sent to me while I was travelling for six months - that I did not want to clog my main box with. The hotmail addy i have NEVER given to ANYONE even my closest friends - and I get the *most* spam there - Thanks MSN.fags)

anyway - I would never want to agree to pay for postage on email - and I think that you need to look at what emails true value is - rathere than your ability to mis-manage your accounts...

Like I stated - spam is not a problem on *trustee* addy's - but only on corporate booty call boxes....

**HEAR THAT MISCROSOFT/HOTMAIL/YAHOO/WHOMEVER? YOU FSCKERS THAT SELL OUR ADDYS ARE DOING A DIS_SERVICE TO YOURSELF**

That means that your credibility has been flushed with the spam that we delete.... you would have much greater "brand loyalty" if you didnt allow your shitty market-droids to convince you that we wanted this crap...

Re:Pay per Email

[KjetilK]

As previous posters have pointed out, with 150+ countries having email - one single country that doesn't sign off on an international SPAM law will be sufficient to make all SPAM laws moot.

No it will not! The rest of the world will just block that country completely, so they have to make their choice: Either adopt good laws or rot in their own spam hole without being able to communicate with the rest of the world. I think they would get it pretty fast if that happened.

If the US adopted some good laws, I think a lot of people would start blocking a few countries which would then get their eyes opened (Argentina is second on my list of spam countries, after the US).

No legislation would remove spam entirely (as most total solutions requires totalitarian regimes), but if I got one spam a month as opposed to 10 a day, I would say the problem was solved.

Re:Pay per Email

[janolder]

True, laws would have limited effect if there were countries that didn't have such laws, but still, even if the mail was SENT from overseas, most of the crooks that actually COLLECT the money will have to be in the USA.

In non-US countries, most of the spam you receive doesn't even apply. The spam mails mostly assume that you live in the US, can read English, have a US bank account and can write checks drawn on a US bank. The funniest thing are spam mails that were translated with Babelfish to localize them but still assume everything else. Then you can't even understand the mail if you speak both your native language and English. :-) My point is that any European law is irrelevant to the bulk of spam. Nothing will change.

But why would you charge your friends to send you mail? And your 25 cents seems pretty steep.

Good point. As another poster pointed out, an extension to my scheme could be to have variable charges. No charge for friends, $1 for every aol sourced email and 25 cents for everyone else.

As for the 25 cents being high, that's just the cost I assign for the time it takes me to sift through the spam mails and delete them. The amount is a personal choice - if you want a lower one or a higher one just set it up that way.

Then, again, there's listservs. We certainly don't want to ban those!

True. Put the list server on the list of sources that are accepted without charge.

Re:Pay per Email

[janolder]

That's not the case. If you were right, I wouldn't get any SMS spam. I get them more or less regulary despite that sending them costs bulk sender about $0.02 from most european operators.

That's why I was going for a variable price. The math for the spammer is pretty simple: as long as cost-per-mail / percentage-of-buyers < profit-per-sale, you will be spammed. This holds true for snail mail, SMS, fax, phone bots and email. As for email, I seem to remember reading somewhere that spammers make about 1 sale out of 1000 spam mails sent. If this holds true for SMS as well, you can see why your SMS inbox is full: The spammer only needs to make more than $20 for this scheme to be successful.

As for the price being too high for developing countries - true. This scheme is both variable and optional though so developing countries can opt to not use this system and/or to set the price at $0.001.

I don't see you spending 1/10th of your wage (unless you're a weirdo) for internet access anyway, and most people using net in transition economies have to.

You don't have to look that far to get to internet access pricing like that. Just a few years ago, in 1998, I'd be billed an average of DM 200 a month for internet related phone charges by German Telekom in addition to the DM 35 I'd have to pay the provider for a 33kbit account. At 5 DM an hour, that doesn't even add up to an addiction (1.33 hours use per day). Minimum wage in Germany is around DM 800. 1 USD ~ 0.5 DM. Granted, most people earn a lot more. But back then, many people weren't that far off from your "weirdo" definition - especially students.

Re:Pay per Email

[Micah]

AND put the list server itself on such a system so you have to pay a quarter to send a message. Should eliminate much of the junk on those. :-)

Re:Pay per Email

[Mattsson]

And while we're at it, why not get rid of the idiotic smtp-protocol.

Replace it with something that *doesn't* let you fake your return-adress, or that dump mail whose return-adress isn't valid...

You can opt-out of phone solicitation

[barzok]

At least in most of the US, that is. All you have to say is "do not call this number again" and they are legally obligated to put you on a do-not-call list. If they call again within 10 years (the time limit may vary state to state), you can take legal action against them.

New York even has a website where you can submit your name, address & phone number for a semiannually-distributed list from the state of people who have opted out.

Try that with SPAM, as things sit right now.

Re:You can opt-out of phone solicitation

[DrSpin]

1) Europe is not in America.

2) Europe has laws limiting cold calling

3) Sure you can tell one cold caller, but others will still call you.

4) We dont pay the phone bill for cold calling.

5) In the last week, spam has gone from 1 in 10 of my e-mails to 8/10.

6) I believe in the death penalty for people who sell your e-mail ID if you click on remove.

In fact, I would support treating countries that harbour them like the Taliban. Fuck, I'd nuke the lot of them.

Re:You can opt-out of phone solicitation

At least in most of the US, that is. All you have to say is "do not call this number again" and they are legally obligated to put you on a do-not-call list.

At least with hotmail, all you have to do is click on "block this sender", and you never get mail from that address again.

Re:You can opt-out of phone solicitation

[barzok]

And have you noticed that it doesn't work very well? SPAMmers shuffle From: addresses constantly. I've taken to blocking entire domains.

the only legislation that would work...

[jqh1]

would have to have an aircraft carrier to enforce it. There are, however, tech solutions *other* than black lists that work with little or no undesirable side effects: spamgourmet.com, for instance.

It is not that easy.

[DiveX]

It is not the plain advertisement that gets most people, it is is the theft of service. It is the tactics of stealing the addresses of those that post on message boards and newsgroups. Slashdot is not immune as I have received 3 spams emails in as many days to the address I use for posting here. Do you supprt tha ability of someone to force you to spend time and money to receive the piece when they, in *no* way, support the medium? If they want to advertise, then let them do so in TV, radio, or print since that would support those services. Junk mail from the postal service remains inexpensive because of the bulk mailers that pay for the services. Until the medium is supported, I will combat spam with everything I have an take it to any means necessary.

Re:Once again, trying to control the uncontrollabl

[janolder]

Pornography of 14-year olds is illegal... except in the old Soviet republic of Fookerplakistani (apologies to Austin Powers)...

You don't have to look that far or into fiction. If memory serves, the legal age in the Netherlands is 14. This includes posing for porn.

Freedom of Speech

[zmalone]

I dunno, I feel as though, while spam is an annoyance, placing a block on how information can be disseminated (sic?) is wrong. And where do you draw the line? By that measure, we should have placed limits on telemarketers long ago. On the other hand, if someone were to go spray paint an advertisement on the side of a bus, it would be illegal, as you would be damaging the bus system (much like how if you send out spam, you are placing a load, and therefore costing SOMEONE money, on a mail server somewhere). So there are precedents both ways.

Enforced how?

[Ian+the+Terrible]

The article doesn't have much meat to it. Boiled down, it says "The Council of Ministers think unsolicited email and SMS messages should be legislated against. Two weeks ago, European Parliament voted against a ban on spam".

Or, more briefly:
Council: Spam bad. Anti-spam laws good.
Parliament: We disagree.

I wish something had been said about how the Council plans to enforce anti-spam laws. I live in Washington (US), where the state government passed anti-spam laws several years ago.

I still get spam. Anti-spam legislation is well and good, but it doesn't seem to work.

If you outlaw mass-mailers, only outlaws will mass-mail. Or something like that.

I have an Idea..

[A_Non_Moose]

Don't try to regulate spam as long as the agree to the following conditions:

1) the Must use @home service or
2) can only use 300 baud modems connected to pay phones outside a busy intersection.
3) must use win 3.X and trumpet winsock.
4) they must have a reply phone, fax and email address and 666 or spam tattooed on their forheads (they get to choose which...same same)

Then and only then can they avoid legislation.

Ought to help take a byte out of crime.

[OT] Re:Why did Slashdot change their SPAM logo?

Jesus H. Grits, you need to get a new hobby. Can't you find something else to deconstruct, like Salon.com or something?

You can be RUDE to a phone solicitor

[MillionthMonkey]

I disagree. Spammers are soooo much more annoying than phone solicitors.

-Phone solicitors don't immediately engage in sex talk with your 7 year old when he picks up the phone.
-Coming home from a long vacation doesn't usually mean you're going to have to sift through a blizzard of thousands of phone solicitation calls. (Interspersed by warnings from the phone company about how you're getting too many phone calls and would you like to buy more space?)
-When a huge amount of phone solicitations overwhelm the phone company and force them to invest in additional infrastructure, the cost is passed to the phone solicitors, not to you.
-If you have an unlisted number, and a phone solicitor calls, it doesn't automatically mean that the gig is up and the number is no good anymore.
-There actually exist phone solicitors who are not running scams.
-You don't get hundreds of phone solicitations in the space of 24 hours.
-Phone solicitors don't try to fool you by pretending to be people you know.
-Phone solicitors don't call you and offer to sell you a CD of the phone numbers they're calling.
-Phone company operators aren't kept awake at the phone company at 3 AM clearing wayward phone solicitations out of the equipment after a torrent of wrongly dialed phone solicitations.
-You don't get the same phone call from the same solicitor five times in a row in immediate succession, unless he has an organic brain disorder.
-While they can sometimes block the number from appearing at all, phone solicitors don't intentionally send forged numbers to your Caller ID box.
-If you tell a phone solicitor to take your phone number off his list, he doesn't immediately sell your number to all the other phone solicitors in town. ("It works, someone picked up the phone!") This is because we have laws dictating that phone solicitors cannot do this.
-And you can at least be rude to a phone solicitor. In fact, a phone solicitation from the PBA offers the quick-thinking solicitee a rare opportunity to safely tell off a cop. And you can do stuff like this:

ME: Hello?
PHONE SOLICITOR: (bubbly female voice) Hello, do you subscribe to the <name of local newspaper>
ME: Uh, no...
PHONE SOLICITOR: Oh my GOD! How do you get your news?
ME: Well, if you must know, the government implanted a chip in my brain, and now God and aliens just beam all that news right into my head. Why, isn't the chip in your brain working?
PHONE SOLICITOR: Uhh, OK, ummm... goodbye!

Re:You can be RUDE to a phone solicitor

[david+duncan+scott]

In fact, a phone solicitation from the PBA offers the quick-thinking solicitee a rare opportunity to safely tell off a cop.

You really think that's a cop calling? I always figured it was just another hired hand in a basement somewhere, maybe working off his hours of "community service".

Re:You can be RUDE to a phone solicitor

[MillionthMonkey]

You really think that's a cop calling? I always figured it was just another hired hand in a basement somewhere, maybe working off his hours of "community service".
You can usually tell who it is by the attitude. They act like they've pulled you over when you pick up the phone. And they do really weird stuff like making fun of you to the guy next to them. Whoever it is doesn't do it for a living. It could be some lowlife working off hours of community service. Next time one calls I'll ask.

Spam == Terrorism?

"They also are agreeing to allow leeway for law enforcement to access logs of e-mail and telephone traffic."

And in other news, the USA has approved a measure under which spammers will be execu^H^H^H^H^Htried in secret military tribunals ;)

Just ban harvesting!!!

[Micah]

This may be one of the best legal solutions. Simply ban the "harvesting" of e-mail addresses from web pages and newsgroups and/or the selling of those addresses. Obviously, those things have no legitimate use, and are used only to send me crap that I don't want.

It would also be easy to catch people to prosecute them. Set up a web page that, when it's hit, generates an e-mail address, and logs that address along with the IP address and timestamp of when and from where that page was requested. When an e-mail comes to one of those addresses, get a little help from the ISP and you're well on your way to finding out who did it! Not just who sent it, but the scum that harvested the address!

Those people are the worst of all Internet citizens. If I was alone in a room with an e-mail harvester, and I had a baseball bat in my hand, it wouldn't be pretty.

That and banning ANY sender info or header forgery, require a valid mail or phone AND e-mail contact in all commercial e-mail, and I think the spam problem will be pretty much done. You might still get a few UCEs, but not the sheer quantity of stupid and annoying ones we get now.

Re:Just ban harvesting!!!

[Karma+50]

Just ban harvesting

That's a pretty hard thing to define though.
You can't leave it broad (email addresses can't be read automatically from the web and stored in a database) because that will catch out google.
And you can't bring intent into it (email addresses can't be read automatically from the web and stored in a database with the intent to use them to mail crap to people) because the harvester itself doesn't have any intent and the person running the harvester may not have the intent to use the addresses for spamming; he may sell them to a spammer.
And it's hard to bring the human factor into it (you may not store an address from the web in a database) because that makes it illegal to someone to store my address in their mail client's address book
The more you narrow it down, the more ways around it you leave - it seems easier to legislate against the act that is causing the damage - the actual sending of the mail.

Your webpage->email address idea is a good one though for helping identifying the spammers

Re:Just ban harvesting!!!

[Micah]

hmm, you might be right, but I *think* with a bit of creativity, a reasonable definition of harvesting can be determined.

What first comes to mind would be to have licenses or permits for people that are permitted to spider the web storing addresses, which would permit Google etc to get one, but admittedly that doesn't sound very palettable. Just a brainstorm.

Perhaps it's best simply to ban SELLING of such lists. I think a reasonable definition of that could be come up with easily. "The selling of any list of e-mail addresses obtained from 'spidering' web sites or newsgroups where neither party has any preexisting business relationship with the majority of the people listed" or something like that.

Re:Just make a real remove! does not cut it!

[jnana]

I don't like spam, but I don't want any laws against it. If you want freedom, you have to support everyone's freedom... even if you hate them. The only law I would support is one that mandated a way to get off a spammers list... AND the remove must work.

Spam is not a freedom that people should be able to exercise, no more than direct marketers should be able to send out a pound of junk mail per household per day.

A real remove does not come close to being a solution. People shouldn't have to 'opt out' of spam; spammers should only be able to spam those who have opted in. Yeah, I know they wouldn't be able to spam anybody in that case, but that's the point. Spam is forcing something on an individual and making him or her pay for it. Consider that ISPs (i'm in the US) are looking into ways of charging high-bandwidth users more--AT&T has plans for this in the future (their 1.5 mbps bandwidth cap was their first step towards that; if you want more, you pay for it). Should I have to pay for Spam? Should the ISP have to pay for it?

Saying that people should be able to opt out of spam is a bit like saying Microsoft should be able to install spyware on your hard drive that monitors all the software you have installed, whether all your MP3s are legally ripped or downloaded, and tracks your every click online--unless you find the small print that says you can request to be put on the please don't f*ck me, bill, list.

Wait, that's WinXP, but there's no such opt-out option.

My point is that a remove list does not cut it. A small database containing the email addresses of all those who are willing to pay for and receive spam should be consulted by spammers first. If they insist on sending unsolicited email, they should be fined enough that it no longer is a profitable pursuit, however much the fine has to be.

Technical Means

A unified outgoing/incoming mail solution, relying on password-protected login for authentication so it can be accessed from any ISP, would facilitate validation of email addresses. This makes it easier to filter out, warn, or perhaps even prosecute those who abuse the email system.

Re:Technical Means

[RogrWilco]

kinda like eliminating open relays. The spam-friendly ISP's are going to authenticate anyways.

hypocrites

If the government had those sort of powers to fight terrorism you'd all be up in arms, but if it's to fight spam you're all for it.

Re:hypocrites

Yeah, do you have a point?

Re:hypocrites

So we should have an opt out list so that terrorists will not target any country/location that has specifically asked not to be targeted.

I would probably fall about laughing, not be up in arms about it.

Re:Score +5, Funny

You forgot the obligatory 'witty cowboy neal' reference.

Spam vs unsoliceted snailmail

[StevenHallman76]

bitch, bitch, bitch.

Everyday I get snailmail spam. It's become so ubiquitous that I don't even complain anymore. But really it's worse than SPAM. It least you can just delete unsolicited email.. with unsolicited postal mail they waste paper. Why don't governments take an active role in emliminating waste POSTAL mail? SPAM is annoying, but at the end of the day, it's just wasted bits, not wasted natural resources..

god, I feel like such a hippy for complaining about this... I need to get back into floursecent lighting to regain my apathy and cynicism.

Re:Spam vs unsoliceted snailmail

[Ryokos_boytoy]

You're right about snail mail spam being worse but as long as the gov gets paid to deliver it, they'll keep doing it.

Re:Spam vs unsoliceted snailmail

[Jesus+IS+the+Devil]

I feel exactly as you do. Capitalism to the extreme can been seen every day in those stupid Interland junkmail postcards I get.

Re:Spam vs unsoliceted snailmail

[drsoran]

Why don't you eliminate it yourself? Businesses love when you rip up another business's unsolicited postal spam and put it in their business reply envelopes and mail it to them. Some people like to put garbage in there as well but I think that's a little rude. A torn up letter or two from another company is fine. You can have fun for hours doing this depending on how much mail you get.

Re:Spam vs unsoliceted snailmail

[anno1602]

Well, at least in Germany, there are two kinds of unsolicited snailmail you find in your postal mail: (1) Ones send by German Mail, and (2) others just shoved into any mailbox the distributers can find. To counter number (1), there is a so-called Robinson-List you can submit your address to, and that is honored by the senders (because sending mail costs money, and people who don't read it anyway are not worth the cost). Against number (2), just put a sticker with "No ads, please" on your mailbox. 99% of those distributers stop putting their stuff in it.

What I'm missing is a "No ads, please" sticker for the email account.

Anno.

Re:Spam vs unsoliceted snailmail

[int0x80]

Here in Portugal the Portuguese Post has some stickers you can put in your mailbox. Then they won't put publicity there.

And it is illegal for anyone but the Post Office to put stuff in someone else's mailbox. (I think the fact that most mailboxes are *inside* the buildings also helps)

I don't receive snailmail spam at all! :)

So it'll be something like this:

[tunah]

*Telephone rings*

Me: Hello?

Guy: Hi! Is this some random guy who is posting on /.?

Me: Yup, thats me!

Guy: I wonder if I can have permission to send you an email.

Me: Why?

Guy: I need to send you an email to ask if you want to receive spam from me.

Me: WHAT? Oh, ok. By the way, what are you selling?

Guy: Email address lists.

Self help is more effective (slightly off topic)

Some replies have already indicated how legislation in one jurisdiction may not be very effective in the jurisdiction-less world of the 'net.

I very rarely receive spam these days. This is my self-help tactic:

1. buy a domain name from a registrar that offers email aliases (this is inexpensive, 12euros from gandi.net, or US$15 from a few others). (i use gandi.net for registration and zoneedit.com for dns.)

2. set up an email address to forward to your normal ISP, or hotmail or whatever account. only give this address to trusted people.

3. set up a temporary spam email address (eg. temp1@yourdomain.com) and also forward it to your normal ISP/hotmail account. this is your 'public' address for web sites that require one. when you start getting spam, simply change it to temp2@yourdomain.com. no more spam.

at one stage i had about 10 different addresses all forwarding to my ISP account - it's interesting to see how and where they get around. i used one in usenet and one for web sites - the usenet one seemed to generate more spam.

another advantage is that you can keep the same 'main' address when you switch ISP or employer.

make sure you never give out your real ISP address.

for US$10-15 per year i have found this to be a very cheap and very effective spam-busting solution. it's worth registering a domain just for the control over email addresses. the ability to simply 'kill' the email address that's getting the spam is great.

Bill Gates's Prediction

[wirefarm]

Bill Gates laid out that very same thought in "The Road Ahead" a few years back.
Interesting idea, but doubtful to work with the current system in any way. (You really want to have to declare all of those micropayments on your 1040?)

Personally, I think some kind of pre-authorization scheme is better than a pay system - remember, this has to work in third world countries, too.

Brad Templeton has a neat system in place that is not too difficult to use at all. If you send him an email, you get the following:

I apologize, but this address gets a lot of junk E-mail (spam). Since my
"secretary" (Viking) has not seen your address before, you need to send
a simple confirmation to get on my good-list.

Your message on:
[subject removed for slashdot]
is being held. If it is not a "spam" (see below), just send a reply,
any reply, to this message. Your held mail will be delivered to me
immediately and all future mail from you will go through directly.

OK - there goes 99% of your spam.
If spammers figure a way to reply, add a question and answer feature:

Your message on:
[subject removed for slashdot]
is being held. If it is not a "spam" (see below),
You must answer the following question:
What is the Airspeed Velocity of an Unladen Swallow?

You could make the questions progressively tougher ,to filter out morons, too. ;-)

Procmail could handle the rest of the mail, too, (if it weren't so damn hard to write recipes for. Yes, I know about the perl mail filters - I'm looking into them now.)

Imagine a procmail-type system that could strip attatchments and process them:

• PDFs go through pdf2txt and summarized.
  
• Word docs could get piped through msdoc2txt (If it only existed!).
  
• Html mail goes through lynx -dump. (No need to complain to the less-clueful that you don't want their 'pretty' mails.)
  
• Web bugs are dropped. Same for Javascript and iframes.
  
• Images are relocated to your own server.
  
• Viral attachments get logged and further mail refused, user slapped, whatever...
  
• Bounce messages that you don't want.
  
• Filter text to make it work-friendly: s/sh$t/poo-poo/g
  
• Filter text from certain people to make it more interesting: s/Stop stalking me/I love you/g
  

Since I get a lot of mail in Japanese, I could choose to detect DBCS text and run it through babelfish before I read it.
Most of these things could be and are being done. I bet there would be a market for a prewritten package customizable through a web interface. I would buy it.

What you do with incoming mail is a very personal decision - some people *like* mails that you and I would consider spam. There are always exceptions to the rules:
What happens when your mail filter blindly drops a mail from your wife telling that the baby just ate the Copier Toner or your housemate writes to tell you that a group of Real Naked Coeds are waiting in your room - get home quick! OK, neither of those situations are likely to occur, but you get the idea...

Cheers,
Jim in Tokyo

Re: Bill Gates's Prediction

[mutende]

Dan J. Bernstein has a neat system similar to Brad Templeton's, although with a twist. It reads:

If you reply to this notice, you are

1. acknowledging that Professor Bernstein does not want to receive bulk mail;
2. confirming that your message is not part of a bulk mailing; and
3. agreeing to pay Professor Bernstein $250 if your message is part of a bulk mailing.

:-)

Re:Bill Gates's Prediction

[linzeal]

Viral attachments get logged and further mail refused, user slapped, whatever...

I found a simple rule to automatically reply with a link to a virus removal tool to whatever virus of the day is out there helps alot. Even got complements from an attorney I had never heard of before sending me random attachments from wills and such. Wonder why he had me on his email list?

Re:Bill Gates's Prediction

[GSloop]

Jim, go look at spamassassin...

It uses several perl style filters, RBL _and_ Razor. See http://razor.sourceforge.net - sorry, I hate contructing links...

It's a but difficult to setup - at least for me...but I am going to do a easy howto doc for it next - one dedicated for inexpierenced (sp) users.

Plus SA gives you some easy ways to rank spam. I just filter into a "possible spam" ourlook folder based on a change on the subject line. Then I just review the messages. If I get too many false positives or too many spams getting by, I can change the rating system slightly, and get what I want.

I've just started using it, but so far, it seems pretty well tuned.

Just give it a look, it makes spam-blocking much easier.

Re:Bill Gates's Prediction

[Howie]

If you have your own mail server running postfix, qmail or exim, then TMDA will perform this service for you (the reply-to-mail-through policy).

For everyone else, SpamCop does a similar job.

Re:Bill Gates's Prediction

[Scooby+Snacks]

Word docs could get piped through msdoc2txt (If it only existed!).

Actually it does exist. Additionally, you can view MS-Word, HTML, etc, inline. You need to define a conversion routine in your /etc/mailcap or ~/.mailcap:

text/html; /usr/bin/w3m -dump -T text/html '%s'; copiousoutput; description=HTML Text; nametemplate=%s.html
application/msword; word2text %s; copiousoutput

And then put lines in your .muttrc similar to the following:

auto_view text/html
auto_view application/msword

Then the HTML and MS-Word attachments will show up as plain text right in mutt's internal pager. I'm sure there are similar procedures for other mail readers. More information is available.

Re:Bill Gates's Prediction

msdoc2txt==a small program called 'Anti-Word'. Go look for it; it rocks.

AOL is the same thing...

AOL via their "bring your own access" is just $9 a month and you can create/delete as many screen names as you want. Still too expensive?

There's always hotmail...

No need to spend a fortune of money or register your own domain just to get throwaway e-mail accounts.

Ha, put the Chinese censorship to good use!

[TheMidget]

Everybody knows that spammers often like to use open mail relays which are located in China. And they do this, because they know very well that the Chinese are very unreactive in closing those down.

However, how about the following idea: if a spam relay is not closed within, say, 2 business days, we start using it ourselves... to spam thousands of Chinese email addresses with anti-communist articles from various news sources. I betcha, that relay will get closed down real quick.

Re:Ha, put the Chinese censorship to good use!

> However, how about the following idea: if a spam relay is not closed within, say, 2 business days, we start using it ourselves... to spam thousands of Chinese email addresses with anti-communist articles from various news sources. I betcha, that relay will get closed down real quick.

Best solution I've seen yet. Anti-gov mass mail would also cause the Korean gov's to act in the same way.

Re:Ha, put the Chinese censorship to good use!

However, how about the following idea: if a spam relay is not closed within, say, 2 business days, we start using it ourselves... to spam thousands of Chinese email addresses with anti-communist articles from various news sources. I betcha, that relay will get closed down real quick.

No, your thinking is wrong. It's the individuals doing the spamming for those companies paying them. By your proposal, then I have the right to kill police officers if they don't solve my brother's murder.

Re:Ha, put the Chinese censorship to good use!

[TheMidget]

You don't make sense. Please read up on what an open relay is. I even provided a link in my article. And please, don't kill your aunt.

Put spam under 47 USC Sec 227

[Nonesuch]

I don't get telemarketing calls any more- I dumped all my POTS lines, all I have is a cell phone. It is a violation of Federal Law (47 USC Sec 227) to use an automated dialing system to make unsolicted calls to cellular, pager, and other radio-based system where the user pays to receive the message.

In most states, you can collect $500 from the originator for each violation.

Sounds like a good model for spam legislation.

Re:Score +5, Funny

I'm sorry, I'm new at trolling, I'm much more better at sleeping

off to bed I fgo.

laissez faire

[LazyDawg]

If only the governments of the world didn't have such a stringent, screwy obsession with "cyber crime legislation." Rather than whining and lobbying to our jurisdictional nannies to do something about spam, the more clueful private citizens could harass, berate and take action against spammers better, using less white-hat tactics than are required right now.

When we were growing up, absolutely no good ever came from telling your mom to beat up the bully's mom, so why are we telling our governments to beat up spammers and soft-line governments all the time?

Re:laissez faire

Sure it did. When my dad beat the shit out of the dad of the guy that was bullying me and threatened to fucking kill him if he touched me again I never had any more problems from that bully. It was great. :-) That and the time we chased him around in our car while he was running away on his bike. Man that kid never fucked with me again. :-) Lame ass bullies deserve to get whooped.

Re:Non-negotiable: My money=My service=My rules

[riven1128]

I get 30 or 40 a day that slip through the filtering gauntlet I have set up .. unfortunately tracing each one would eat up my entire day ..

Spam-Vote Button

[QuickFox]

Mail clients should have a spam-vote button, a button that lets you vote for blacklisting the sender of the message you are just viewing.

If you press the button you get a warning, explaining what you're about to do. If you accept, a message including all the headers of the spam mail is created automatically and sent to a spam-vote server at your e-mail service provider. This vote server verifies that the vote comes from you, and then, possibly after some processing, sends your vote to one or more blacklisting services chosen by your e-mail service provider.

If there are just a few votes to blacklist a particular sender it's considered a mistake and no blacklisting occurs. The sender is blacklisted only if the number of votes is large. If a provider has a very large number of blacklisted senders, that provider may be blacklisted.

This would give technically clueless users a say in the matter. It would let clueless users send proper spam complaints, complete with all the headers. And it would allow people to stem the flood without revealing their e-mail address to fake opt-out lists that just increase the spamming.

When you press the spam-vote button, the mail client not only sends the spam vote. It also puts the sender in the client's own list of blocked senders, and removes all the messages that came from that sender. You can change your mind and remove the blocking, so you can receive messages from that sender again. Then the mail client creates another automatic message revoking the blacklist vote.

This way even the clueless will see what happens. A clueless user can't just keep sending a lot of blacklisting votes by mistake. Mistakes have consequences that have to be rectified.

At the server side, the system can be refined and improved over time. For instance, the voting services should count percentages rather than absolute numbers. They might also keep karma points and reputation scores. They might use collaborative filtering. Lots of different refinements are possible. Hopefully there would be several different services trying different strategies so the system evolves.

Users can then try different e-mail service providers with different spam-vote and spam-block policies. Probably many providers would let users choose among several alternatives. Tastes differ very much in this matter. You try different alternatives and see what works best for you.

Give a man a fish and you have fed him for one day. Teach him how to fish and he'll eat for a lifetime. Unfortunately, he'll call you a miser for not giving him your fish.

Re:Spam-Vote Button

[jonesvery]

Not quite what you describe, but rather similar in principle, is Vipul's Razor -- mentioned here a day or two ago.

From the project site:
Vipul's Razor is a distributed, collaborative, spam detection and filtering network. Razor establishes a distributed and constantly updating catalogue of spam in propagation. This catalogue is used by clients to filter out known spam. On receiving a spam, a Razor Reporting Agent (run by an end-user or a troll box) calculates and submits a 20-character unique identification of the spam (a SHA Digest) to its closest Razor Catalogue Server. The Catalogue Server echos this signature to other trusted servers after storing it in its database. Prior to manual processing or transport-level reception, Razor Filtering Agents (end-users and MTAs) check their incoming mail against a Catalogue Server and filter out or deny transport in case of a signature match. Catalogued spam, once identified and reported by a Reporting Agent, can be blocked out by the rest of the Filtering Agents on the network.

Re:Spam-Vote Button

[DrSpin]

If there are just a few votes to blacklist a particular sender it's considered a mistake and no blacklisting occurs. The sender is blacklisted only if the number of votes is large. If a provider has a very large number of blacklisted senders, that provider may be blacklisted.

How about:

For each vote an extra volt goes back up the line into his modem.

When 30,000 people vote his message as spam, his modem explodes!

Re:Spam-Vote Button

[QuickFox]

Indeed, Vipul's Razor sounds really interesting. I just wish that at the client end we had communication standards and a simple button, so that every office worker and every housewife and every grandfather could react to spam, and lots of different filtering systems -- Vipul's Razor and many others -- could receive the resulting votes and act on them. This way I think we could really stem the flood.

Give a man a fish and you have fed him for one day. Teach him how to fish and he'll eat for a lifetime. Unfortunately, he'll call you a miser for not giving him your fish.

Re:Spam-Vote Button

[dazed-n-confused]

Mail clients should have a spam-vote button, a button that lets you vote for blacklisting the sender of the message you are just viewing.

Mine does. It's called "Spam Deputy". Works a treat. Add-in for Outlook 2000, standalone program for Outlook Express, Netscape Messenger, Eudora and other mail clients. Check out the details at the Spam Deputy site.

Re:We hate spam, Saudis hate porn. Too bad.

[Teun]

You don't get it; it's not (only) about going after the carrier of the message, it's about challenging the idiot that thought to benefit of the spam.
And their addresses are known and virtually all of them are in our own countries, how else could they do business with us...

Example exists already

[Teun]

Hmm, for example here in The Netherlands there is a central database where you can register to opt out of this curse, AND IT WORKS!

Not so somewhat normal

[Drone-X]

Well, I can't speak for all European countries but Belgium here has a very high rate of people using cable or ADSL for internet, meaning no fee per megabyte or minute (cable users have a 10GB cap though). Heck, how long does it take to download your spam on a regular charged-by-the-minute telephone? I really expect this to have been a non-issue.

Your comment about paying per SMS message makes no sense to me as it's the spammer that has to pay, not the recipient. Care to elaborate?

Re:Not so somewhat normal

[hearingaid]

Heck, how long does it take to download your spam on a regular charged-by-the-minute telephone?

At some points, I have received more than 4 spams - per minute. (My filters are better now.) On a 56K dialup (which normally gets you 33K-40K), that would net you in the region of 80% or more of your bandwidth, assuming you were connected 24/7. (Spams are often quite large, and include JPEGs and HTML.)

Easy

[DrSpin]

There's an easy solution to spam from off-shore-

Use a cruise missile

That should deter them.

I think I'm on Auto Reject

[PbHead]

When I submitted this article:
2001-12-07 17:15:15 European Ministers to Control Spam and Cookies (spam) (rejected)
It was rejected before my browser could refresh (Less than 3 seconds). Either the Slashdot Admins hate me and have me on Auto Reject, or maybe they don't really read the content but instead use counters to post articles after so many requests.
"Well this one finaly hit 500 requests, go ahead and post it, what ever it is."

All the more reason to have your own page to post the stuff you find important or interesting, even if others find it boring as hell.

Re:We hate spam, Saudis hate porn. Too bad.

[KjetilK]

Well, european legislators have perhaps a better track record of not totally-clueless legislation. For one thing, Norway's legislation in the area is good. I guess europeans still have a bit more confidence in their legislators, and I understand why USians have none.

I think legislation is the Right Thing[tm] to do right now. I'm not going into details, but the privacy concerns with ISPs stopping their customers from spamming is so great, I wouldn't want my ISP to be able to tell if I spammed.

The most significant problem is that the US is right now a spam haven, as about 90 % of my spam (get about 10 a day) comes from the US. If the US gets some good legislation too, the spam-havens will die, as the rest of the world will block them back to the stone age untill they get some good laws.

5 accounts and +/- 140 SPAM messages/day!

[freaker_TuC]

I live in Europe, the only SPAM I receive is from the US. I have 5 accounts (personal and business accounts) where I get +/- 140 to 200 spam messages. Most of these messages are "US deals only".

They should stop harvesting-email addresses as first, secondly SPAM should be something the end-user needs to decide about. I did not give permission to use my email address and send up to 200 messages to my accounts!

It's not the spammer that pays the price, but the end-user who can't get out of the list.

Often there are also "remove me" lines. It has came to my attention that they did not remove me though that it subscribed me to even more spamlists!

Is it that difficult to just have "Regulated spam-lists" ? no intrusion? I wouldn't like a guy knocking down my front-door announcing that I need a penis-enlargement or ADSL (that's only offered in the US and NOT in the EU anyway).

I neither need spam shoved down my throat like that, I don't even like the real SPAM!

Re:5 accounts and +/- 140 SPAM messages/day!

[anno1602]

Often there are also "remove me" lines. It has came to my attention that they did not remove me though that it subscribed me to even more spamlists!

It is common practise to include "remove-me" lines. If somebody clicks on it, the spammer knows that that email address is valid and in active use, and can sell it to his peers as a "confirmed" address, which is worth much more than the automatically harvested ones (which may be wrong or not in use any more, or dedicated spam accounts).

My .su-lution to the spam problem...

[ReaganBSD]

Replace the TLD for your email address with ".su". The .su domain used to be assigned to the Soviet Union, and was retired when the Soviet Union went CCCPut (couldn't resist the pun, sorry). Take my personal email address--it ends with "links.am". There is a links.am, but there is not now and will probably never be a links.su domain.

Address harvesters will collect username@domain.su addresses, as .su is a valid ccTLD. But the mail won't go anywhere and definetly won't land in your IN box.

That's my .su-lution, and it works quite well. Back that up with a HotMail account for registrations, etc and you're pretty much spamproof.

Re:We hate spam, Saudis hate porn. Too bad.

[CaptainSuperBoy]

Who cares where they send spam from! If they are a business that operates in a country where spam is illegal, sending spam to that country's citizens they are breaking the law and they can be tracked down! They have to provide SOME sort of contact information in the spam - otherwise you have no way of ordering their product.

Get my company to move our mail server location

[wowbagger]

I work for a company that has offices in both the US and England. I get about 50 spams/day on my work mail account. I wonder if I could get our IT department to move our mail server to the other side of the pond, and would that provide legal leverage to nuke these offspring-of-unmarried-syphillic-camels?

Follow the Money

[zelyan]

a _BUSH_ tactic? Excuse me, follow the money is a quote from either the movie version or the original story of the Watergate investigation, thank you Woodward and Bernstein. I don't remember whether they said it that way or Redford edited it to be that way. But the point is, it predates the Bushes. Which would be easy to realize if you just thought about it this way: it's an intelligent thought.

Re:Follow the Money

From the movie "All The President's Men", where "Deep Throat" is advising Woodward (Redford) on how he can get a handle on where his story is going, and who's involved. I don't know if it's in the book or not.

Get the ISP and E:mail portals to help?

Most of my spam does not have a valid domain name in the return address. Reply fails. Looking at the "full" header shows the sender without even a domain name that match the xxxx.tld standard. If the ISP and E:mail programs would just reject anything that comes without a valid domain, we might start getting somewhere. Of course using someone elses domain name will start to occur (nothing is perfect).

WA state law makes it illegal to send commercial advertising without a valid e:mail address or having the subject line being misleading to WA state residents (you can register your e:mail address in their database so senders can look to see). This law does not work as no one knows who to go after unless we could call in the Feds to track spamming over interstate lines through router logs etc.

What are you all doing wrong?!?

I have been using email since 1994 and my email box only gets maybe 1 or 2 spam emails per month. If I could be bothered to write a mail rule in outlook I am sure I could catch those quite easily (anything with a dollar sign is suspect because i live in the uk).

My point is: what did you do to get this crap?!?

I just checked my "deleted" folder in outlook - the last two emails I consider spam were actually from companies I probably opted in for (commision junction and another company i dealt with once).

Lucky me I guess.

Jamie.

The TCPA does work.

[Nonesuch]

Anyway, the FCC/FTC/DOJ/park service etc. periodically come by and close down a telemarketer, but it is pretty much for show, and in every case the telemarketer has actually been charged with fraud, not with calling people who've been asked to have their numbers removed. In general, it being the law anyway, telemarketers will take your # off if you ask (unlike spammers.)

Actually, some provisions of the TCPA do work pretty well- I've only ever received one telemarketer call in the past two years on my cell phone.

Alice

[gfr]

What about using Alice (www.alicebot.org) as automatic reply secretary?

If everyone did this then perhaps companies would think twice before spamming.

However, you'd have to examine alices psychological profile regarding questions like "would you buy this?". Othervise bad thing could happen. :-).

/ Ralf

Re:We hate spam, Saudis hate porn. Too bad.

[dirk]

In the end isn't stemming the flow of unwanted spam essentially the same thing [as the Great Firewall of China]?
No. In the case of the Great Firewall of China (and Saudi Arabia), a third party is attempting to block information people want. As such, the sheer number of minds applied to circumventing those artificial barriers all but assures they will be overcome.

Contrast with spam filtering, where a third party is attempting to block information people don't want, with the full support and agreement from said people. This makes the number of sociopaths trying to circumvent the barriers vanishingly small. Moreover, because people support the blocks, the number of people willing to report spammers who penetrate security is considerably higher (as opposed to the China/Saudi situation, where there's likely a silent agreement that the authorities are not informed when the barriers are breached).

But obviously some people want spam. Thsi stuff is profitable. IF it wasn't it would have ended a long time ago. Spammers may be slimy, but they aren't stupid. If it costs them 5 cents per email (which I am completely making up, it's probably lower, but for this arguement, we'll say 5 cents) and they only get an increase in hits and sales which equals out to 2 cents per email, they would quit doing it. It's like the X10 ads, everyone complains about how they hate them, but they work. When they started doing them, the traffic on their site skyrocketed. So some people obviously do want them, they use them. Same thing with spam. If no one wanted it, then no one would click on the link and give them money.

why "forgery" can be a good thing

[Corgha]

That and banning ANY sender info or header forgery, require a valid mail or phone AND e-mail contact in all commercial e-mail, and I think the spam problem will be pretty much done.

Banning header "forgery" is a very bad idea, if you mean that (as people usually do) to indicate making the email appear as if it came from someone other than the actual sender. [You may not have meant it so broadly, but a lot of people do, so I feel justified in pointing a few things out for at least their benefit, so forgive me for taking this opportunity to make a general rant about the issue.]

Note that RFC 822 explicitly allows the From: header to be something other than the actual sender of the message (though it does require a Sender: header, but MUAs tend not to display that). It's easy to "forge" From: addresses because email was designed with this "forgery" in mind. Note also that because of Received: headers, it's actually difficult to mask the message's true origins. It's just that most people don't know about headers, so they focus on the From: line.

RFC 822 gives several examples of how this feature of email can be used, but here are a couple from my daily life:

1) I am a sysadmin at a rather large organization. I often find the need, when acting in an official capacity, to send email to users as "manager" or "postmaster" or "security" or as some other hat that I wear. This makes people notice the email, marks it as a formal note, allows the other admins to deal with responses to the mail, and has a number of other benefits. For a variety of reasons, it would be rather unprofessional for me to send out such email as myself. (Should the tens of thousands of users we support have to keep track of the staff changes in the our department?)

2) On the side, I do hosting for a number of smaller organizations. Sometimes the people who run these organizations feel the need to send out an email in an official capacity. In this case, they often send the mail with a From: address of something like info@foo.org, and the message originates on a totally different network than the one on which the foo.org machines live. Should the senders be forced to log into the foo.org machines as the "info" user and run mutt or maix? It's much better for them to be able to use their preferred MUA and their ISP's MTA. [This is why I get worried when I hear about ISPs requiring certain From: addresses.] Also, the people who send the message are not always the ones who answer mail to info@foo.org. Should organizations be forced to structure themselves around the requirements of email?

That's just my personal experience -- there are lots of other cases, I am sure.

Keep in mind that email was in large part modelled after the US postal system. It's interesting to note that return addresses are not always required by the USPS (think about post cards).

That said, I do think that some sort of valid return contact information is important (and I do hate unsolicited {mail,email,faxes,phone calls}). We should, however, be careful when recommending that certain things be outlawed -- just because we can not see a legitimate use of something does not mean that such a use does not exist and that the people engaging in that use should be punished for the bad behavior of others.

<offtopic rant>
It seems like this issue arises a lot on slashdot, and among the newbies I talk to. People tend to bash large, highly featureful packages or protocols (e.g. sendmail and X11) because they think that the particular ways they use them apply to all other cases. It's a natural tendency, I suppose, but sometimes I feel like I should wear a button reading "that doesn't scale" or "what about the corner cases" or something similar when talking to junior sysadmins.
</offtopic rant>

Re:why "forgery" can be a good thing

[Micah]

ok, you're right. Then there are cases where people would legitimately want to be annonymous when asking for help or something. But is there any legitimate use for forged headers when trying to SELL something? You could ban the combo of forged headers and solicitations.

FWD: Re:Bout Time!!!

Or my aunt... the one that only knows how to hit the "forward" button in AOL -- for her unsolicited relentless onslaught of "forward this to 20 people to support (insert random right wing religious/political point here)..." crap?

Draconian measures for spam!

If world leaders had to deal with spam, then
it would go away. If Congressman and Senators
didn't have flunkies to fix their problem with
spam, then we'd see some action. I think we need to declare spam a form of terrorism and wage world wide war against spammers. We need long jail terms. Military tribunals. We need to confiscate all their property and wealth. Spam is a scourge on the civilized world. A disease that should be wiped out. I vote for the death sentence for repeat offendors! Die, spamming Dogs, die!!!!

Good thing I'm a calm person!

How To Fight The Spammers

This is how you do it:

1) Go to your favorite web directory, where sites are paying per clickthrough (like Goto.com)

2) Search on any of these keyword phrases:

email marketing
bulk email marketing
direct email marketing
bulk email marketing campaign
email marketing company
email marketing software
opt in email marketing
targeted email marketing
permission email marketing
marketing email
email marketing services
email marketing tool
optin email marketing
online email marketing
email marketing program
email marketing list
email marketing campaign
free email marketing
bulk email work marketing
email marketing strategy
email marketing solution
permission based email marketing
email marketing uk
marketing email list
target bulk email marketing
email marketing consultant
direct email marketing firm
precision email marketing
bulk email marketing software
marketing bulk email
marketing email service agent
direct marketing email
email marketing 98
email marketing service
targeted bulk email marketing
discount targeted email marketing
email marketing secret closeout
email marketing technology
email marketing consulting
email target marketing
business to business email marketing
html email marketing
opt in email marketing software
global email marketing
marketing via email newsletter and mailing list
email marketing system
email marketing benefit
targeted opt in email direct marketing
viral email marketing
marketing with email
direct email marketing australia
replynet powerful email marketing tool
email marketing arabic
mass email marketing
email lab marketing specialist
email marketing career
email marketing etiquette
marketing phd email list
optinpro opt in email marketing software
email marketing research

3) Start clicking away; some of these companies are paying five and six dollars per clickthrough!

In most cases, Slashdotters would exhaust a lot of marketing capital that these companies have. In a few cases, the company may not have set a cap on their spending, and a few hundred thousand frivilous clickthroughs would bankrupt them.

It's brutal. It's legal. It's online activism.

Yeah but...

[Skyppey]

What about Publisher's Clearing house? I have had the equivalent of two trees sent to my house? Which is more unjust loads of email or a couple of trees? Maybe there is a problem we aren't looking at

I'm impressed

[Spinality]

This is very wonderful. I guess I'm not really surprised. Relatively small close-knit communities often have good strategies for dealing with this kind of social problem. (Spam is best viewed as a social problem rather than a commercial or civil rights problem.) I'll bet there's not a lot of spam originating in Orkney either. Again, I'm afraid I don't see this system being replicated in the US. Too bad.

"Penis enlargement"

[Kvasio]

Well, spammers are fair.

They tested their penis enlargment metod on themselves.

Now, they _are_ huge dicks.
;-)

Finally!

> Spam Under Legislative Attack in Europe

Finally, they are dealing with the REAL terrorists!

Harvesting is already illegal

Within the EU harvesting e-mail addresses is already illegal thanks to the data protection directive. Selling those lists is also illegal.

Re:We hate spam, Saudis hate porn. Too bad.

People on slashdot have a definite problem spelling definitely.