Spam Under Legislative Attack in Europe

Anonymous Coward writes: "CNN has an article in their Science and Technology section detailing how the European telecommunication ministers have agreed that unsolicited e-mail and wireless text messages should be prohibited under a new data protection law. They also are agreeing to allow leeway for law enforcement to access logs of e-mail and telephone traffic.

Real problem targeting spam

[GSloop]

Most of the spam I get now, is from companies that are using "contractors" to spam, or spam from offshore (i.e. China) ISP's. The advertised product is from the US often, but the advertisee is not. Therefore, shutting down the "spammer" isn't going to do anything.

Now I don't know how to practically impliment this, as there are some pitfalls, but with some decent legislation, we could make it possible to target the beneficiary of the spam. That makes it possible to attack the real reason for the spam - where we can use our laws etc to attack it.

Sure, there will be spam that also has you send you money to China/Afganistan etc, but that will make the spam much less profitable, as most people won't do so. Lastly, most people will use credit cards, and I assume that most SPAM scams are frauds too, so the chargebacks will be hell for the spam beneficiary.

Anyway, it just seems that we can't just attack the spammer, we really need to attack the beneficiary. Then the spammers will go away, as they can't find anyone to demand their services.

Sure, I'm crazy, but what the heck!

We hate spam, Saudis hate porn. Too bad.

[Marsh+Jedi]

We spend hundreds of kilobytes yammering about the great firewall of China, in particular laughing at the futility of it--legislation that stops the flow of information seems to be something we protest when implemented, and deride when proposed.

This is of course, while we upgrade our procmail recipes and secretly wish for a legally-mandated X-this-is-spam header.

In the end isn't stemming the flow of unwanted spam essentially the same thing? Going with the datahaven theory, eventually all your spam will come from the countries that _do_ allow spamming. And then all your bulk-marketing companies will set up branch offices there.

It starts making draconian black hole lists start seeming like the only viable solution. Because legislation sure don't work.

Re:I don't get it

[McDutchie]

Sure I hate spam with a passion, but why is everyone so up in arms about it? Phone solicitation is soooo much more annoying. Why don't people enact laws against that. At least I can automatically filter out spam.

Yeah, and you can screen your calls using Caller ID. That's hardly an argument, of course. Besides, automatic spamfilters are ineffective; they either let spam through or block legitimate mail. Companies cannot afford any risk of legitimate business mail being inadvertently caught in the filter, and therefore will not filter at all.

Here are some more reasons why people get up in arms:

• You don't pay to receive phone solicitations. You pay (in Europe by the second) to receive spam. On the job, spam costs employee's time = money (lots of it). Spam is theft of service, comparable with unsolicited junk faxes. (Another way spammers commonly steal service is by hijacking open STMP relays.)
  
• Because spam is paid for by the receiver and not the sender, spammers do not bother to target their spam properly. They randomly harvest e-mail addreses off the web and Usenet. They do not honor remove requests (these in fact lead to more spam because your e-mail address is re-sold as confirmed live).
  
• Phone solicitation is easier to regulate. For example, there are no phone solicitors offering you pictures of teens fucking dogs, or the latest illegal pyramid scheme.
  

Pay per Email

[janolder]

In the end, the only thing that will work is a pay per email system. As previous posters have pointed out, with 150+ countries having email - one single country that doesn't sign off on an international SPAM law will be sufficient to make all SPAM laws moot.

If I could set up my email system in such a way that it will only receive email after receiving notification from paypal that an amount X has been transferred to me, I would cease to receive spam overnight. My personal threshold would be 25 cents - less than a stamp but enough to be noticed. This would deter spammers, but not keep entities with a reasonable expectiation that I want the mail from emailing me. It might even deter those pesky friends that keep sending me copies of jokes that were already old when I was still young.

Between friends engaging in conversation, the amounts paid would balance out. But in the case of one way communication, I'd get paid a bit for the time I spend looking at my emails.

Obviously, this can be implemented with reasonable effort pretty quickly. There are some minor details to deal with, nothing traumatic though: The sender would have to be able to determine what the going receiving rate of the recipient is. There needs to be a functional and pervasive micropayment system (paypal). Mail programs would need to be updated to deal with the added protocols.

I find it amusing how politicians still think they can regulate the Internet by way of stroke of pen. They'll have to learn the hard way. Sadly, we'll have to suffer in the meantime.

Re:Just make a real remove!

[Micah]

There are how many millions of businesses in this country? And you're saying they should all have the right to send you their sales pitches by e-mail, but as long as you reply with "remove", they have to honor it?

You want to reply to 5 million e-mails with "remove" in the subject?

Sorry, try again.

You can be RUDE to a phone solicitor

[MillionthMonkey]

I disagree. Spammers are soooo much more annoying than phone solicitors.

-Phone solicitors don't immediately engage in sex talk with your 7 year old when he picks up the phone.
-Coming home from a long vacation doesn't usually mean you're going to have to sift through a blizzard of thousands of phone solicitation calls. (Interspersed by warnings from the phone company about how you're getting too many phone calls and would you like to buy more space?)
-When a huge amount of phone solicitations overwhelm the phone company and force them to invest in additional infrastructure, the cost is passed to the phone solicitors, not to you.
-If you have an unlisted number, and a phone solicitor calls, it doesn't automatically mean that the gig is up and the number is no good anymore.
-There actually exist phone solicitors who are not running scams.
-You don't get hundreds of phone solicitations in the space of 24 hours.
-Phone solicitors don't try to fool you by pretending to be people you know.
-Phone solicitors don't call you and offer to sell you a CD of the phone numbers they're calling.
-Phone company operators aren't kept awake at the phone company at 3 AM clearing wayward phone solicitations out of the equipment after a torrent of wrongly dialed phone solicitations.
-You don't get the same phone call from the same solicitor five times in a row in immediate succession, unless he has an organic brain disorder.
-While they can sometimes block the number from appearing at all, phone solicitors don't intentionally send forged numbers to your Caller ID box.
-If you tell a phone solicitor to take your phone number off his list, he doesn't immediately sell your number to all the other phone solicitors in town. ("It works, someone picked up the phone!") This is because we have laws dictating that phone solicitors cannot do this.
-And you can at least be rude to a phone solicitor. In fact, a phone solicitation from the PBA offers the quick-thinking solicitee a rare opportunity to safely tell off a cop. And you can do stuff like this:

ME: Hello?
PHONE SOLICITOR: (bubbly female voice) Hello, do you subscribe to the <name of local newspaper>
ME: Uh, no...
PHONE SOLICITOR: Oh my GOD! How do you get your news?
ME: Well, if you must know, the government implanted a chip in my brain, and now God and aliens just beam all that news right into my head. Why, isn't the chip in your brain working?
PHONE SOLICITOR: Uhh, OK, ummm... goodbye!

Bill Gates's Prediction

[wirefarm]

Bill Gates laid out that very same thought in "The Road Ahead" a few years back.
Interesting idea, but doubtful to work with the current system in any way. (You really want to have to declare all of those micropayments on your 1040?)

Personally, I think some kind of pre-authorization scheme is better than a pay system - remember, this has to work in third world countries, too.

Brad Templeton has a neat system in place that is not too difficult to use at all. If you send him an email, you get the following:

I apologize, but this address gets a lot of junk E-mail (spam). Since my
"secretary" (Viking) has not seen your address before, you need to send
a simple confirmation to get on my good-list.

Your message on:
[subject removed for slashdot]
is being held. If it is not a "spam" (see below), just send a reply,
any reply, to this message. Your held mail will be delivered to me
immediately and all future mail from you will go through directly.

OK - there goes 99% of your spam.
If spammers figure a way to reply, add a question and answer feature:

Your message on:
[subject removed for slashdot]
is being held. If it is not a "spam" (see below),
You must answer the following question:
What is the Airspeed Velocity of an Unladen Swallow?

You could make the questions progressively tougher ,to filter out morons, too. ;-)

Procmail could handle the rest of the mail, too, (if it weren't so damn hard to write recipes for. Yes, I know about the perl mail filters - I'm looking into them now.)

Imagine a procmail-type system that could strip attatchments and process them:

• PDFs go through pdf2txt and summarized.
  
• Word docs could get piped through msdoc2txt (If it only existed!).
  
• Html mail goes through lynx -dump. (No need to complain to the less-clueful that you don't want their 'pretty' mails.)
  
• Web bugs are dropped. Same for Javascript and iframes.
  
• Images are relocated to your own server.
  
• Viral attachments get logged and further mail refused, user slapped, whatever...
  
• Bounce messages that you don't want.
  
• Filter text to make it work-friendly: s/sh$t/poo-poo/g
  
• Filter text from certain people to make it more interesting: s/Stop stalking me/I love you/g
  

Since I get a lot of mail in Japanese, I could choose to detect DBCS text and run it through babelfish before I read it.
Most of these things could be and are being done. I bet there would be a market for a prewritten package customizable through a web interface. I would buy it.

What you do with incoming mail is a very personal decision - some people *like* mails that you and I would consider spam. There are always exceptions to the rules:
What happens when your mail filter blindly drops a mail from your wife telling that the baby just ate the Copier Toner or your housemate writes to tell you that a group of Real Naked Coeds are waiting in your room - get home quick! OK, neither of those situations are likely to occur, but you get the idea...

Cheers,
Jim in Tokyo

Spam-Vote Button

[QuickFox]

Mail clients should have a spam-vote button, a button that lets you vote for blacklisting the sender of the message you are just viewing.

If you press the button you get a warning, explaining what you're about to do. If you accept, a message including all the headers of the spam mail is created automatically and sent to a spam-vote server at your e-mail service provider. This vote server verifies that the vote comes from you, and then, possibly after some processing, sends your vote to one or more blacklisting services chosen by your e-mail service provider.

If there are just a few votes to blacklist a particular sender it's considered a mistake and no blacklisting occurs. The sender is blacklisted only if the number of votes is large. If a provider has a very large number of blacklisted senders, that provider may be blacklisted.

This would give technically clueless users a say in the matter. It would let clueless users send proper spam complaints, complete with all the headers. And it would allow people to stem the flood without revealing their e-mail address to fake opt-out lists that just increase the spamming.

When you press the spam-vote button, the mail client not only sends the spam vote. It also puts the sender in the client's own list of blocked senders, and removes all the messages that came from that sender. You can change your mind and remove the blocking, so you can receive messages from that sender again. Then the mail client creates another automatic message revoking the blacklist vote.

This way even the clueless will see what happens. A clueless user can't just keep sending a lot of blacklisting votes by mistake. Mistakes have consequences that have to be rectified.

At the server side, the system can be refined and improved over time. For instance, the voting services should count percentages rather than absolute numbers. They might also keep karma points and reputation scores. They might use collaborative filtering. Lots of different refinements are possible. Hopefully there would be several different services trying different strategies so the system evolves.

Users can then try different e-mail service providers with different spam-vote and spam-block policies. Probably many providers would let users choose among several alternatives. Tastes differ very much in this matter. You try different alternatives and see what works best for you.

Give a man a fish and you have fed him for one day. Teach him how to fish and he'll eat for a lifetime. Unfortunately, he'll call you a miser for not giving him your fish.