Do-Not-Email Registries?

prgrmr writes "Wired has an article about Colorodo and Missouri's latest legislative proposals to deal with spam and with spammers. There appears to be actual consumer-protective teeth in these bills which mirror the telephone 'do not call' lists. A nice example of a government perpetuating a working concept instead of trying inventing new ways to break things."

Hmm

[Warmth+Is+Life]

To get an update on this registry, just send a blank email to opt-in@colorado.gov.

first post?

[robotpants]

The no-call list is a beautiful thing.

Re:first post?

That was a totally pointless post.

You, sir, are a total fuck job.

In other words: YOU FAIL IT!

Next step:

[Lord+Bitman]

Next, try and get all spammers to admit that what they are sending is "unsolicited". That's not going to happen any time soon.

Re:Next step:

I know what you mean,every time I get spam it says "we are sending this because you requested it from us or one of our affiliates..."blah,blah,blah.
?I DID??
Oh yeah,then theres the"To unsubscribe click here..."which translates to "To verify your e-mail address click here"

Am I the only person who thinks it makes more sense to have a "Call"or "E-mail"list instead of a "do not call"(or e-mail)Surely the number of people who want to be bothered would be much smaller than those who don't,so the cost of maintaning the list(s) would be considerably lower.Also,the companies making the calls or sending the E-Mails would be guaranteed that every call made would be to someone who will listen to or read the message.
Of course,the big business dollars will not allow that.

Accident

[Big+Mark]

Whatever happens, you'll still get the email equivalent of the following:

*phone rings*
"Excuse me, sir, are you interested in..."
"I thought I was on a fucking do-not-call list!"
"Sorry sir, you are, it was an accident. Sorry sir."

Direct marketing is here to piss the hell out of us for a long time yet.

-Mark

Re:Accident

Ah, but in Missouri, the conversation goes like this: *phone rings*
"Excuse me, sir, are you interested in..."
"I thought I was on a fucking do-not-call list!"
"Sorry sir, you are, it was an accident. Sorry sir."
*click*
*beep-beep-boop-beep*
Hello, Attorney General? I've got some more revenue for you here."

It works.

Re:Accident

Much more fun is to use the counterscript. I've had a few telemarketing people sounding so worried when I did it that I almost felt sorry for them.

Re:Accident

[KDan]

I like the HOP technique even more... "Hang On Please" (was posted on /. long time ago, but I can't find it anymore). When called by a telemarketting person, ask them to Hang On Please and put the phone down without hanging up. They'll wait a minute or two and then go away, but you'll have wasted their time and made their business plan unworkable (if they have to spend minutes instead of seconds on negative calls, they're going bankrupt).

Daniel

Out of Country Spam

[PepperedApple]

It seems like this would only protect us from spam by legitamate countries in America. I can just imagine trying to sue the fly-by-night spams I recieve, many of which I don't think are from this country.

I don't know how much this list will help.

Re:Out of Country Spam

[PsychoElf]

you mean there are illigitimate countries in America?

WOW

Thats all I can say. I'll be a millionare in a week!

Uh..Yea..I'm from Colorado...

[MrByte420]

Or who's to say that anyone who signs up with their email address on thist is from one of these states? I mean if we can forge just about anything else on the web I can certainly say I'm from colorado (In fact since I'm really from CT, oops...I missed that little drop box by one)
Now the question is, would the spammers want to risk it?

Re:Uh..Yea..I'm from Colorado...

[Drakonite]

Unfortunatly you have it backwords.

It doesn't matter where you are from, it's where they are from. The law only applies to those that reside in that area. If I were to move to a country that didn't have any laws against harrassment, I could call you every 15 minutes 24/7 and the only thing they could do is block my telephone number from accessing your phone, assuming the Bell whom they'd have to have block it would cooperate.

We can all take a sigh of relief knowing that it costs far too much money to make that many phone calls to another country for it to be any fun.

I can't wait...

...until the do-not-email databases are compromised! A spammer's wet dream.

What about the rest of us?

[Doctor+Sbaitso]

Will there be an opt-in list for those of us who still want to enlarge our penises and make money fast?

Re:What about the rest of us?

[C0LDFusion]

The opt-in is having lots of pr0n cookies on your computer.

Might work if....

[www.sorehands.com]

It might work if it had some of the following provisions:

• Trap names on the list so that the states' sttorney general's office may go after them.
• Statutory penalties for violations.
• Liability for companies that hire spammers.
• The ability to block domains, not just individual users.

Re:Might work if....

[Anne+Thwacks]

You have omitted:

• An unlimited supply of cruise missiles

Re:Might work if....

[Zeinfeld]

Actually the opt-out list approach is being pushed by the DMA as a way to try to avoid other measures.

The first problem is whether the list will be used as a source of email addresses to spam. This can be avoided if Phill Hallam-Baker's proposal of a one way encrypted opt-out list was used. The proposal was made 6-8 years ago and I don't think he applied for a patent. He has been hawking the idea arroud policy circles from time to time.

Another issue is the tripwire offense effect. The fact is that the vast bulk of spam is sent with criminal intent or close to it. The Nigerian letters and multi-level marketing schemes are fraud pure and simple. That leaves the quack medicines whose sales pitches are rarely FDA compliant.

One justification for legislation would be if email spam provided a clear cut case for prosecuting these scam artists. Instead of a costly to the taxpayers jury trial on the question of whether the FDA rules were broken a quick and cheap bench rulling that the scum don't have any case.

Another more pragmatic point is that it is a good plan to give legislators something to do that is OK raqther than leave them to invent something really clueless.

Re:Might work if....

[johnnyb]

Instead of trapping names, a nonprofit company could be set up which you had to send all broadcast emails through. This company would be the only one with the list, and simply use it to filter. All you had to do is make sure your broadcast list is pointed at one of these mailservers.

This would also make it easier for the people writing anti-spam software, to always allow email that originates from these mail servers.

Obviously, there would have to be a usage fee, but I don't see that as a problem.

Being part of a company that does email marketing and email marketing on behalf of other companies, I think the opt-out list idea is a great idea for the following reasons:

* If you _don't_ want email, I certainly don't want to send you any

* Just because you haven't specifically asked for the mailing in question, doesn't mean that you wouldn't be interested

I'm not talking about giant lists. The most we send to are about 5,000 people. Most of them are customers lists, but some of them are lists from trade shows we've attended, etc. I don't have any moral problem sending to such targetted lists, but if someone specifically asks not to be sent commercial email, I don't see why anyone would even _want_ to waste their time doing so.

Re:Might work if....

[Rewtie]

* Just because you haven't specifically asked for the mailing in question, doesn't mean that you wouldn't be interested See, it's that kind of attitude that makes me it so hard to deal with companies who spam. If I *want* to have the opportunity to see marketing emails, I should ask for that opportunity. What is needed is a two tier system. 1. Choose to recieve marketing emails 2. Choose *who* you want them from My wife rather enjoys her cool-savings emails, and often prints out coupons from the Internet. I, on the other hand, don't want to recieve any emails from companies trying to sell me anything. Your idea of having a centralized NPO handle the "list" -- won't happen. Too many people making too much money either selling email lists, selling spam software, or selling anti-spam software. Yes, I know there are freeware versions of antispam, but there are still people making money.

Re:Might work if....

[jez9999]

That leaves the quack medicines whose sales pitches are rarely FDA compliant.

You're forgetting the more hilarious "Wipe out junk eMail forever!" category.

Re:Might work if....

[johnnyb]

The centralized idea will actually make the lists that people sell _MORE_ valuable, not less, since they can be assured that anyone who has signed up for the global opt-out will be ignored. This gives more consumer confidence in buying lists, and thus would raise, not lower, their prices.

Washington State already has it

[shovelface]

In Washington State, spam is illegal and the attorney general encourages people to file complaints. These are often done by filling out a simple form.
To help argue against spammers saying "we didn't know this address originated from Washington State", there is online registration for users who reside in the state and do not want to receive spam. You can find it over here:

http://registry.waisp.org/

-trout

Re:Washington State already has it

[Skapare]

http://registry.waisp.org/

Pros:

• It appears to be free to register
• Does not appear to be distributing the list

Cons:

• Too hard to register lots of addresses
• Cannot register just a general domain
• Verification is only one at a time and way too hard to do

My conclusion is this site is a joke. Do they expect to handle millions of lookups an hour?

What they should do is distribute a list of the 160-bit SHA1 checksums of the registered addresses. Then it's simply a matter of the spammer hashing each email in their mailing list and looking that up against the list. If there's a match, bingo.

Re:Washington State already has it

[Beryllium+Sphere(tm)]

More precisely, deceptive spam is illegal.

In other words, a Washington resident has no legal recourse if you send spam with an accurate subject line, non-forged headers, correct identification and an honest business pitch.

So far all practical purposes spamming Washingtonians is illegal.

Re:Washington State already has it

[Student_Tech]

More information concerning the junk-email stuff is at http://www.wa.gov/ago/junkemail/.

One of the parts I like in it is "Even if the sender fails to inquire about the information, as long as it's available, the sender is deemed to know." So if they "claim" to have looked it doesn't mater, if they have the deceptive items in it they are bustable.
I wonder that if the hotmail servers are located in Washington if "from a computer located in Washington" part of the law applies so people else where can have it enforced (as if the people actually send it with the start point on a hotmail server).

Re:Washington State already has it

[dalamcd]

Are you insane? I don't want any such list _easy_ to check against. I want them to say 'fuck it, he's probably not on there' so I can sue them.

dalamcd

Re:Washington State already has it

Actually, Washington's registry isn't technically a do-not-email list. Rather, it's a list of email addresses within the State of Washington that a spammer must check before emailing.

Washington's registry is ineffective. I registered my address (it even begins with "wa_resident", so spammers cannot claim they had no clue) and I still get 50-100 illegal spams per day. Illegal in WA State typically means bouncing it off a 3rd party relay.

Spammers thumb their nose at the Washington Attorney General's office. In spite of being in terrible economic shape and desperately needing the revenue, Washington State won't prosecute or collect from spammers, junk faxers, or automated messages to residential answering machines. Any complaints result in them mailing a form letter explaining how to sue them yourself.

The bottom line, at least in Washington State, is that the email address registry has zero effect on spammers. They still send all the junk they want, and the only approaches that have any effect at all are the traditional ones: SPEWS, MAPS, Spamcop, ORDB, hunting down their home addresses and signing them up for junk lists, etc.

Re:Washington State already has it

[Spunk]

But does it work?

Re:Washington State already has it

[Skapare]

You're just giving them a legal defense. While the court might not grant that to an obvious slimeball, in other cases involving borderline businesses (that you and I would still call a spammer, but the judge might not), the argument that it is not practical to use the list can be effective. If there is a single state mandated list, it would probably end up being a law suit against the state for not operating it properly. But if there are simply volunteer lists, such as ones to declare your residency, there could end up being many of them, and the argument would certainly say "we use the ones that are usable, so you should have registered with them".

The difference is...

Accountability. The telephone companies have a limited number of telephone accounts, and they have a rough idea of who owns each one, where calls are coming from, etc, etc. And, most importantly, it's very easy for them to track down offenders and terminate connections. Spammers, though, don't face exactly that same problem. Jumping to a new vulnerable server is MUCH easier than getting a new telephone line. I wouldn't be surprised to see illegal spammers using these lists as a source for their spamming.

Re:The difference is...

[kasperd]

I wouldn't be surprised to see illegal spammers using these lists as a source for their spamming.

Neither would I, in fact I was wondering how to get a test address on the list just to see how much spam it would get.

However there might be ways to deal with this situation. Imagine that 300 very subtle test addresses were created, and every version of the list would include a different subset with 200 of those. Now from the subset of the addresses being spammed you will know who abused the list.

Yeah right -- "Here's my email..."

"Now please don't spam it!"

That'll work.

Re:Yeah right -- "Here's my email..."

What if they did it with a hidden database? You put the email(s) you've collected in their form, they tell you which ones are on the do-not-spam list, without revealing the entire list. They'd have to take precautions against brute-forcing, of course, but at least it wouldn't make things worse.

Similar to spammers opt out

An easy comparison is to do-not-mail lists for junk mail and do-not-call lists for teleophone sales. It brakes down pretty quickly. So many spammers come from foreign sites that do not respect our proper laws. They live in a gray zone where they can take our money without following our laws. There is no recourse when they break them.

The only real impact of this list will be to give these unethical foreign spammers a list of email addresses that are owned by people who actually read their email.

Why Legal and Not Technical Solutions

[jaaron]

I understand the problem with SPAM, but why a legal solution to a technical problem? It reminds me of the litgation induced from "deep linking," when in reality the web master simply needs to better configure his/her server. Similarly there are technical solutions to this. If I'm on a "do-not-email" list, then why don't I configure my email client to only accept emails within my address book? Many email clients can do this filtering, even web based ones, so what's the problem? Effectively, this is what these people want and there's a solution so why the red tape?

Re:Why Legal and Not Technical Solutions

[MillionthMonkey]

I understand the problem with SPAM, but why a legal solution to a technical problem?

Because it's not a technical problem- it's a social problem that happens to involve technology. I suppose the phone company should come up with technical method to stop telemarketers as well, but the failure of technical solutions in solving the telemarketer problem was what prompted the creation of the do-not-call list. Technical solutions to spam have so far been a failure as well. The most you can hope for is a perpetual arms race.

It reminds me of the litgation induced from "deep linking," when in reality the web master simply needs to better configure his/her server.

That's a case of corporate idiots bursting onto the scene and applying political and legal pressure to destroy the protocols that made the web successful, because they want to shape it into something that favors their own myopic interests, and they think they can spend the money to get the courts to back them with a poorly reasoned decision. The fact that there's a technical solution to what they're whining about is convenient but irrelevant. Even if there weren't a technical solution to prevent deep linking, their case would be bankrupt.

Similarly there are technical solutions to this. If I'm on a "do-not-email" list, then why don't I configure my email client to only accept emails within my address book? Many email clients can do this filtering, even web based ones, so what's the problem? Effectively, this is what these people want and there's a solution so why the red tape?

Because we shouldn't have to resort to whitelists. I cannot compile a list of everyone in the world who isn't an asshole and who I might want to get email from. Maybe you never get mail except from six people, but some of us have to distribute our contact information.

I was wondering

[Lord_Slepnir]

Hi. I an email market-person from Laos. Where I get list so...ummm...I know who... er...not ... to send e-mail?

DUh, enforceability

[jpnews]

I'm on a state no-call list, and it's practically worthless. No all my sales calls have callerID numbers like 999-999-9999. Obviously if my phone privacy can't be protected, this email no-call list will be equally useless. Not to mention that... I can already see that the no-call list would be the most extensive (and valuable) list ever compiled. Who would secure it and how?

Re:DUh, enforceability

Er, this one is simple. I refuse to answer anonymous calls, there is a cool little switch on my phone which doesn't even let them ring.

Re:DUh, enforceability

Thats odd, i havent recieved a single telemarketing call since i signed up for missouris no-call list.

Not one. And its been over a year now.

I dont think the email one will be so successful, but im going to set up a hotmail account just to put it on the list & see what happens.

Bologna

First Post!

Post First

So i did

FP!

I live in Colorado, and have more bandwidth 'cause less email!

opt out?

[flonker]

Opt-out does not work! These solutions are going to be just as effective as states that outlawed spam entirely in stopping spam, and are going to be just another source of validated addresses, thus ensuring more spam for those on the lists.

-Philip

Re:opt out?

[SpaceLifeForm]

Exactly. This will not work. In the State of Missouri in fact, there are loopholes so that the politicians will be able to get the list and *legally* spam those that signed up.

Re:opt out?

[llefler]

Get real. The last thing a politician would want to do is spam people who put their name on the list, whether you have any recourse or not. People don't tend to vote for politicians that piss them off.

You know the first thing that will happen

is that some spam king or another will download the registry and spam everyone on it.

our method

on our email server we allow user accounts for emails. however, to receive an email, the user must have added the senders name in the list. if the recipient has not added the sender's name, then we use auto-reply and send mail back to sender asking whether they really meant to send the mail and if so, then read a text from the attached image and put that in the subject line. this way, the genuine mails will get delievered (albeit with a delay) while 100% spam gets filtered out. this is only an experimental server and we have a 100% success as of now. we have created some fake users and have registered them on 100s of sites for testing purposes.

Why this won't work

[possible]

I don't think this will work. Do not call lists (for telephone spam) work fairly well because it's rather easy for the government and/or utilities to investigate who is violating a DNC list. This is made even easier by the fact that phone/fax spam from abroad is almost non-existent in the USA.

With email, it is far more difficult to stop. First, the jurisdictional issues. Second, it is trivial for an email spammer to hide his identity -- there are plenty of open relays to bounce through.

I already receive spam for "500,000 opt-in email addresses on CD!" -- when do-not-email lists are in place, I'm sure I will be getting adverts for "500,000 do-not-email addresses on CD!". And nobody will be able to stop them.

Re:Why this won't work

[grahammm]

It may be easy for the actual sender of the email to hide his identity, but if the spam is offerring goods or services it is not so easy to hide the identity of the privider.

The type of spam which will probably be decreased by this type of law is that from businesses which put you on their mailing list because you purchase something from them (or download software)

Re:Why this won't work

[Tony+Hoyle]

It may be easy for the actual sender of the email to hide his identity, but if the spam is offerring goods or services it is not so easy to hide the identity of the privider.

Nice idea, who's going to sue Symantec then?

I get about two or three spams a day advertising Norton... most of these bounced through open relays with faked from/to address.

There is no idenification of who is really sending them (or why, for that matter.. to give Symantec a bad name? Or maybe they really are major league spammers?).

There's no way to stop things like that, because spammers are stupid and often don't actually give you a way to respond to their ad :-)

I can't see anything wrong with this idea...

[psoriac]

Of course we all know overseas spammers wouldn't dare harvest emails from such lists, because the government would arrest them at the airport when they came to visit...

Riiiight.

[Talinom]

And we KNOW that the spammers will pay attention to this.

Anything to help with spam...

[meme_police]

...is a major benefit. But these do-not-call lists still don't address the bulk of my spam, which is usually done by fly-by-night, illegal operations. Hell, I don't even have a listed phone number and the large number of calls I receive from politicians and telemarketers through war-dialing is astounding. Do politicians honor do-not-call lists?

Re:Anything to help with spam...

No, because the legislation (in some places, as i recall) expressly allows political and charity calls.

Slashdot celebrates Negro Month: Sammy Davis Jr.

Sammy Davis Jr.

On November 19, 1954, the career of Sammy Davis Jr. almost came to a sudden and tragic close. While driving to Los Angeles to record the title tune of the Universal International picture "Six Bridges to Cross", Sammy was the victim of an automobile smash-up and narrowly escaped death. He was so seriously injured that his left eye had to be removed. In spite of the terrible shock, Sammy rallied and went on with his work; he even insisted that he was the "luckiest guy in the world".

Since his accident, Sammy's courageous spirit and ever-growing talent have won him increasingly enthusiastic audiences. Let's hear it for Sammy Davis Jr. !

Celebrate Negro Month 2003 with Slashdot.

State v. Spam

[Joe+the+Lesser]

Well, we know two state government's whose officials' email addresses will have 400 offers for great savings and/or sexy girls in the next hour.

Re:State v. Spam

Now that is my definition of guerrilla warfare! That is such an excellent tactic. Putting the lawmakers on lists "opts them in", but they don't know it. Putting them on a couple of lists should ensure they will at least get SOME crap. This is assuming the spammers don't have their own "no-call" list (government addresses, law enforecement addresses, etc).

Re:State v. Spam

Maybe great savings on sexy girls?

Protecting your email on the list

[joelparker]

The problem is that your email address appears on the list, opening up a new can of worms. What are better solutions?

Maybe submitting a crypt() of your email? Or...?

Re:Protecting your email on the list

[dtdns]

See the site in my sig. Uses MD5 to distribute addresses so the spammers can remove addresses that match, while not exposing the others for harvesting. Of course, it can be brute-forced, but the chances of getting a match that way are so slim that I doubt any spammer would make an effort to do so when there are easier ways to harvest addresses. Then there is the issue of the spammer getting a match and moving it to a "better" list because they would know it was a live address. All risks, of course, but what doesn't have risk on the Internet?

Re:Protecting your email on the list

still a stupid idea. I have one list and after i do your little hack i have 2 lists. record diff these lists and i can get a list of the addresses removed. Brute force ... how silly can you be.

Re:Protecting your email on the list

[MadocGwyn]

The problem with things like that on a do not call list, is it makes the list useful, the only way the list works is if the spammers can check if your on the do-not-call list. If your email is encrypted you will have no recourse because they will have no way of telling what the address their not supposed to mail is.

Re:Protecting your email on the list

[dtdns]

Of course you can get the addresses that match between the two lists, that's the whole point, so they can be removed. There is a risk that a spammer would instead use those addresses in a different list, which is what I said. The brute force portion applies to the addresses that do NOT match their existing list. The way it's designed is so that the spammer will not end up with MORE addresses than they already have.

Good idea

[Krellan]

Seems like a great idea to me! Hope it succeeds and becomes law. I have almost no telemarketing calls since I subscribed to the do-not-call list.

Having met a spammer IRL

[t0qer]

Any measure other than completely banning the practice will just invite loopholes.

1 such loophole with this would be foriegn spam outfits, big deal if the US has a "don't spam me" list, doesn't stop them from setting up shop in china, new zealand, or .ru.

don't forget...

[ClamClit]

...to add michael@slashdot.org to the list

First

First.. yay

show-me state

[sweeney37]

the do not call list that was put into effect in Missouri has been a god-send. the Missouri attorney general has been vigilant about prosecuting those who break the list.

if a no-spam list works half as well as the do-not call list, I'll be ecstatic. but I'm still curious how they'll get it to work successfully.

Great on paper...

[moath]

But how many people do you know in real life who would be willing to take someone to court over advertisement. It'd be like me taking a Credit Card company to court every time I got a junk snail-mail.

Kinda silly.

-Aaron

Re:Great on paper...

[Cygnusx12]

You're missing the point, the individual doesn't sue, it's the state that fines the spammer for the violation. That's why the parallels are dawn to the do-not-call list.

You register, and simply report the violations to the proper state office. If you've been on the list long enough to make the latest release to the marketing companies, (its not instant), the spammer is fined.

The state of Florida is a great example, violations of their donotcall list constitude 10K fines (per violation I believe) .

fp

[Yablo]

fr1st ps0t

How about a "do not mail" list

[quan74]

As in, do not mail me junk "snail" mail, it's incredible the amount of crap I get in my mail box every day.

Re:How about a "do not mail" list

[Mr.+Firewall]

Here's why this will never happen.

The people sending what the US Postal Service calls "bulk mail" are actually PAYING to send that crap. In fact, it's a major revenue stream for the Postal Service.

Since they're actually paying their own way, it's unlikely that there will ever be any laws forbidding junk snail-mail (at least in the U.S.).

Re:How about a "do not mail" list

[dtdns]

See the JunkBusters Junk Mail page for good tips on this. Somewhere on that site is a link to the DMA's Mail Preference Service, which will get you off all DMA member mailing lists. Don't like pre-approved credit cards? There is a toll free number you can call that will tell the three major credit reporting agencies not to release your information (see here. There is a lot you can do to stop the junk snail-mail.

Re:How about a "do not mail" list

wrong, every first class stamp subsidizes the 4th class mail.

the 4th class mail is MONEY LOST TO THE POST OFFICE.

get it through your head. the snail mail spammers are making every legit mail user pay for their crap.

Won't this be ignored by the eeeevill spammers?

[teamhasnoi]

If I was someone who had a god-given mission to enlarge your penis, I sure wouldn't pay attention to any Do Not Spam list.

Yes but...

[EnlightenmentFan]

Half the slimeballs sending me spam are already claiming that I opted in--even those who send me spam at an address that I never, never use as a return address with any company. (That address is, unfortunately, on a couple of web pages where spambots found it.)

Thank you DMA

[bpfinn]

Nevertheless, Congress has failed to pass any of the 19 national antispam bills introduced since 1999, thanks in part to lobbying efforts of the business community.

No antispam bill has passed because the DMA wanted to reserve the right for their members to spam you.

Bush will get bored...

[gspr]

Sounds great and all... except Saddam will just add himself to a do-not-email list, and Bush can't send him the "Free Penis Enlargement" 'ads' he sends him every day. Bush will become outraged, and nuke Iraq, and the world will meet its doom. *Sniff sniff - sob*

Re:Bush will get bored...

At least we get to see the middle east burn. We almost got to see it in the 6 day war, of course, most here probably don't remember that.

good and bad

[falconed]

I can see where they're going by trying to make spamming less of a money maker. However, $500 anually for access to the list is nothing compared to what a hard core spammer can make in a week. Plus, they can still spam people who are on the list, they just can't spam them enough that it becomes worth their while (the spammee) at $10 per message to take the company to court.

excellent!

but doesnt missouri only have something like 4 people on the internet?

Hmm...

[SmlFreshwaterBuffalo]

The Colorado Junk E-Mail Law would require companies to pay an annual fee of up to $500 to access the registry. It would award consumers $10 for each unwanted message that they receive...

Sounds more like the states are in it to line their own pockets, as usual. How many people are really going to sue a spammer for $10??

(I say $10 since it seems most of my junk email is from completely different sources).

A good idea but...

[ewhenn]

What happens when the spammers get a hold of the list? Obviously there is no way to enforce international spammers. Adding your emails to a list like this could actually *increase* the ammount of spam you recieve, after all you would be providing them with a valid email address.

Spammers will simply move offshore, where I would bet a large portion of them are now anyways. Good idea, totally useless in practice.

Sign me up...

[chrisgeleven]

Sign me up...oh wait, I am in New Hampshire :(

On the difficulties of international enforcement

[SubliminalLove]

The article linked to makes an excellent point about the main problems associated with enforcing such a law. If someone creates fake Yahoo! accounts from Tahiti and uses them to tell you about how you can turn your cocktail weenie into a Polish sausage in just two weeks, the state of Washington is going to have a hard time going after the culprit.

I think this problem, and other problems associated with the internet, can only be realistically attacked by treating the Internet like what it is; an alternate universe that sprawls across the entire planet. International law needs to be written regulating how this sort of thing is going to be addressed, or it's simply not going to work.

Of course, that brings up all kinds of interesting side-issues having to do with enforcement. I'm certain there are any number of things I'm missing (I usually learn about these issues by reading other people's posts and following their links, but I seem to be the first responder to this one), so those of you who know more about this sort of thing; educate me!

~Benjamin

great

[inhiding]

This will never work. Like spammers will listen to this.

huh?

"Click here to be added to our never-spam-again list!"

Worthless

These are worthless. Furthermore, they're good sources of working email addresses for spammers to get a hold of.

I used to get no spam at all. I literally went for months where the only emails I got were reminders to pay my bill. Then I started conversing with two relatives over email. Within a week, I was getting spam. Now, I check my email every day or two, and always have four or five spam emails. One of the relatives uses MSN and the other uses Hotmail, so don't think for a second that companies won't use lists of valid email addresses for easy revenue.

Enforcement May Be Harder

[syntap]

With email, the source can be proxied and faked up enough that broad enforcement is difficult. At least a phone company can find the source of a phone call pretty easily if you're on the "do not call" list and get annoyed with a telemarketer.

Re:Enforcement May Be Harder

[thing12]

With email, the source can be proxied and faked up enough that broad enforcement is difficult.

All SPAM is offering some commercial product - and that product is never obscured, there's either a telephone number, web site, or mailing address to buy whatever junk they're selling. So it is, in fact, very easy to track down and prosecute most spammers... except when both the spammer and the product are being sold outside of the US.

Re:Enforcement May Be Harder

[Muggins+the+Mad]

All SPAM is offering some commercial product - and that product is never obscured, there's either a telephone number, web site, or mailing address to buy whatever junk they're selling. So it is, in fact, very easy to track down and prosecute most spammers...

In most of the spam that I've bothered looking at, the website or phone number is somewhere overseas. Usually in some country where international law doesn't mean much.

Also, how to you prove that it was the company being advertised that sent the spam, and not some competitor trying to get them in trouble?

- Muggins the Mad

Will it work?

[papasui]

Anytime I track down spam that I get it almost always is coming from servers located outside the US. While this is great for dealing with US originating spam, will it be effective for foreign countries?

Re:Will it work?

[grahammm]

The location of the servers should not matter. If the promoter of the spam (provider of goods/service) is either based in, or has an office in, your country then they should be within the juristiction of the law.

get rid of it

[Drummer_Dan]

I hate spam. I'd be for anything that'd combat it.

Other countries?

[Grim+Grepper]

How are they going to get the spammers in other countries? Doesn't a lot of it come from Asian countries?

But will other states adopt such laws?

[QangMartoq]

I can only hope that other states will adopt similar laws - Laws that hopefully will say a disclaimer such as "Not intended for residents of [state here]" are not good enough, and that since a resident of such state received the mail, the spammer's automatically liable. If wishes were horses though..

Not Gonna work

[johnatjohnytech]

Really doubt this will work.

They will find ways, or simply send from other countires (like they do now)

Flawed on so many levels

[The_Laughing_God]

I applaud the notion, but it betrays a profound cluelessness about the interstate -not to mention international- nature of spam, and the lack of any clear connection between cyber- and geographical address. In the first paragraphs, it becomes clear neither will survive the first legal challenge:

"The Colorado Junk E-Mail Law would require companies to pay an annual fee of up to $500 to access the registry. It would award consumers $10 for each unwanted message that they receive, assuming they are willing to take the spammer to court. If they win the case, their attorney's fees would be reimbursed.

In Missouri, companies would have free access to the list, but residents would be able to sue marketers for up to $5,000 for violating it.

Critics say the proposed opt-out lists are a futile version of equally futile statewide spam laws. (Both Colorado and Missouri already have statutes regulating unsolicited commercial e-mail.) "

Look, I hate spam as much as the next guy (I postmaster over a dozen domains), but the leagal history of most topics on Slashdot clearly shows that an ill-considered "solution" often does more damage than no solution at all (if only because when companies start lobbying for these *known* ineffectual measures alongside the clueless public, they be come (politically, pragmatically))
unstoppable in the eyes of politicians

Stupidity ensues.

The anti-"fax spam" laws only worked because faxes were still heavily concentrated in the offices of companies and professionals. They were affordable, but as someone who'd had faxes at work, school, as part of professional organizations, etc., since the 80's, I can assure you that when that law was passed, the fact that I had one at home 24/7 still surprised people. Though the standard modem was already a faxmodem, few had them configured and on (not to mention the whole consumer OS crash problem, which was a major problem, even if it was often better than it was in the mid-late 90's)

Out-of-country spammers rejoice

[Qinopio]

as the government gives them a new batch of addresses to add to their lists...

I dedicate this first post to RPN

RPN, the tool of the gods!

Don't be a FOOL!

[teamhasnoi]

I signed up for the Donut Spam list, and now all I get are emails from Hormel and Krispie Kreme's new venture.

*shudder*

yeah sure

I bet all the porno spammers in Russia will care.

how about a "Do Not Mail list"

[quan74]

As in, don't fill my snail mail box with useless crap I could care less about. It's amazing the amount of crap I get in my box every day.

other countries

[bananaape]

Once again, what is to stop people from getting the list and using it outside of the country?

Great!

[RTPMatt]

Now it wont be the spammers spamin you, itll be the government using this list to spread their political messages...hey, well, if their not askin my if i want to enlarge my penis, it might be an improvement...maybe

A good idea? Probably not...

[FunWithHeadlines]

I dunno. Seems to me that putting your email address on any accessible list is just asking for more spam, not less. Yes, yes, I know, the laws are written to allow you to take the spammers to court and even get court costs reimbursed. But how likely is it that of all the spam you get that you'll have the time and energy to go after them, all the way through the court system? Maybe a few highly-motivated persons will do a few representative cases, and some spammers will pay a fine, and that's about it. They will just chalk it down to the cost of doing business.

A more serious reason for not liking this is highlighted in this quote from the article:

"Antispam activists, including the 16,000-member Coalition Against Unsolicited Commercial Email, charge that opt-out lists unfairly put the onus on consumers to remove themselves from spam databases that they didn't want to join in the first place."

Exactly! Why should I put my name on a list that says, uh, let's say that I don't want to be slapped on my face as I walk down the street. Well, excuse me, but if I get assaulted, there are existing laws that take effect. Why do I need a new law? Just enforce the existing law. And why should I be forced to say I don't want spam when that is the default condition of 99.9993% of the population?

-----------

first post?

what the hell? this topic has been here for ages and still no posts....... fucked up

1st post

1st post

Re:1st post

was = war

fp - this goes out to ma red hat niggaz homiez

Want me to kiss it?

do not call lists.

[garcia]

great, so I am on the "fine" state of MN's "do not call list". Instead of 5 phone calls a day from asshole telemarketers, I get 5 phone calls a day from "market research" people.

I am going to go out on a limb here and say that the telemarketers switched from that to market-research.

Just as annoying, same thing, but legal.

Are no emails going to take care of ALL email that is un-wanted or just bullshit Viagra spam?

Re:do not call lists.

[c.emmertfoster]

There are a number of organizations which are exempt from telemarketing laws: banks/credit card companies, phone companies, non-profit organizations (including and especially political parties), and buisinesses which have established a "prior relationship" with you.

IMHO, demonstrating the futility of legislative measures where a technological one would suffice. (Like those legendary phone-phreaking boxes that supposedly destroyed modems)

I love the smell of an auto-dialer catching fire in the morning.

There are people AGAINST this, and not spammers!

[Ayanami+Rei]

I don't get it.

They (CAUCE) complain that it shifts the burden onto the consumer to be a member of the opt-out list (which is free, and easy to get into). The complain that we are treating the symptoms and not the cause.

Bull. It costs the spammers money to even SEE the lists, and they face $500+ penalties if they don't check and mail first. Hence, this is a real financial deterrent (at least in those states). This artificially raises the transaction costs, which gets at the cause (that is, email is cheap and free).

Instead, CAUCE wants it to be like junk fax laws wherein no one can send you email without having established "a business relationship" with the recipient. I see too many ways of twisting this around in court that would prevent legitimate email from being sent to people when your first contact with them would be through that medium. It would scare people away from just sending email notes because they won't know how it'll be interpreted at the other end. I can envision paranoid use policies sprouting up in IT departments all over our fair land. Nooo!!!!

What is unclear is whether both the spammer and the spammee (sp ?) have to be in the same state (or in states with similar laws) for this to be effective. In that case, all the spammers will just base their operations in Florida where half the GDP comes from MLM and other scams.

Lists?

[gowmc]

If the lists are freely available, what would prevent someone exempt from those laws (out of state?) from using it as a database?

Although, I think the spammers might be smart enough to realize that sending spam to someone so wholly opposed to it would probably just delete the message before its even read.

room for abuse...

[Sodakar]

Somehow, I get the feeling that the list will be eaten up by a spammer, and as a result, I'll end up getting more spam... :(

Part of the problem is that not all spam is from these massive-spam companies -- quite a few are from "free" accounts which people create and throw away after a day's use...

btw.. fp... almost...

No Call List the best

[linuxkrn]

I for one have been on the no call list for a while. It's great and no calls really means no calls. I sure hope that this pans out for email. They get a $500 per call fine for calling someone on a no call list. That's the only way you get them to stop.

The problem

[DarthWiggle]

The problem with this is that the transaction costs are so low for just deleting spam that there's no real incentive to pursue legal action against spammers. In other words, it costs me more - far more - to register a complaint against a spammer than I'd ever get in a penalty payment. There's also the legal question of damages: what harm do I suffer from spam, other than annoyance? (I'm not saying there isn't any; rather, it just may be minimal as compared to available damages.)

The real damages are suffered by the network providers who have to route all this crap. But then there's the conundrum that there's no reliable way to separate the wheat (legit email) from the chaff (spam).

I betcha the only real way to defeat spam is to introduce validated transactionids on emails so that the source and destination can be realiably authenticated. Kinda like certified mail in the paper world.

But, then again, that introduces the nasty spectre of MICROPAYMENTS... bleh.

It's probably cheaper for me to filter and delete spam and bitch about it than it would be for me to pay for each individual email.

Then again, my broadband may be cheaper if so much spam weren't sailing through the pipes.

*sigh* ... it's turtles all the way down.

Any network provider sysadmins out there got any hard numbers about the percentage of bandwidth (and, thus, profits) eaten up by spam?

woo

w00t

fp?!

could it be?! third post!

Most spam isn't a nuisance...

[melloncollienet]

Most spam doesn't bother me too much, it mainly originates from WHOIS or Mailing lists and is easy to filter; but when people decide to send 500Kb attachments to address that isn't splattered around the Internet - I get upset...

Of course, the 300 or so spam messages from WHOIS and Mailing list archives do waste bandwidth; but that could keep people expanding networks, building bigger, faster routers. ;-)

Not First Post!

THis is not the first post so you may continue reading.

Longest FP EVER!

Wow. Look at the time of this post and the time the story was posted. Amazing.

First Post

[DaemonGem]

First Post

Give unemployed techies $ to bring down spam

[EnlightenmentFan]

Remember the WPA? That was one of Roosevelt's tools to fight the Depression by giving government jobs to unemployed people doing really useful work. I'm not just talking ditch-diggers here (no offense to ditch-diggers intended)--the WPA also hired tons of writers, photographers, etc.

Right now the job situation for us tech-folks really stinks. So how about paying at least some of us highly-educated-but-unemployed to work fulltime, hunting down those deceptive spammers and shutting them down?

Think of the many hours you've wasted fighting the spam in your inbox--wouldn't you be happy to see your tax dollars go to a project like this?

Re:Give unemployed techies $ to bring down spam

[Mr.+Firewall]

Right now the job situation for us tech-folks really stinks. So how about paying at least some of us highly-educated-but-unemployed to work fulltime, hunting down those deceptive spammers and shutting them down?

Back when the American West was being settled, some communities were paying bounties to people who killed & brought in the bodies of unwanted varmints and pests (such as wolves, coyotes, poisonous snakes, etc.)

Now, I've long been an advocate of giving spammer-hunting the same legal status as duck hunting (suggested bag limit: two per day, no more than five carcasses in your possession) -- but paying a bounty to hunt them down and bring in the bodies? Now, there's an idea I LIKE!

$10 a message?

[countzer0interrupt]

$10 per unwanted message? I could earn $1000 from my Hotmail account in a week!

And mother said I'd never be able to live on Spam...

May work for US entities which follow laws...

[MORTAR_COMBAT!]

... but seeing as how most of my SPAM is from out of the country... oh well. This is a good start to get American business SPAM out of my inbox, I'll have to rely on procmail and SpamAssassin for the rest of it, I guess.

Re:May work for US entities which follow laws...

[Skapare]

Actually, it probably won't work at all, at least as long as the registries are impractical to use.

So...

What happens when someone gets ahold of the 'do not email' list and starts spamming away from Vanuatu or China?

Here's a start...

[turbosaab]

You can opt-out of some emails by joining the Direct Marketers Association "Do Not Email" list. This is similar to the do not call list they maintain, and is used by many companies.

DMA Email Opt-Out

first post

first post

This is the stupidest idea ever.

What the hell is this going to do to fight spammers? Foreign spammers will just take the list of confirmed addys and spam them.

fp

word wor d

triming the leaves while the roots grow rampant

[binarybum]

I'd have to agree that this sounds a little to corporation friendly. How does Joe user take on overseas providers like terra.es (one of if not the most henious spam hosts on the planet) in small claims court? It might turn out that the number of people who persues legal action (especially at $10) does not outweigh the benefits reaped by paying the state for the list and then spamming that list.
Still, it would be good for one of these states to try this as an experiment because at the very least it's a somewhat agreeable law because it doesn't greatly obstruct anyone's right to be obnoxious, and isn't that what this country is all about?

Here's a novel concept

It's called "capitalism." You know, free enterprise, people starting their own businesses, living the American dream. Sound familiar? This type of strict government control is the kind of shit we worked for 70 years to overthrow in the old Soviet Union. Call it what it is. It's communism, and I'm having none of it.

I hate spam

'nuff said

If ever there was a bad idea..

[attackiko]

..this is it!

Can you imagine what will happen when the spammers get the list?

Spam is underrated.

[eniu!uine]

I'm sure glad not everyone has to sign up for these databases, because I need to recieve my e-mail notifications for special offers. For instance, without me even having to ask, sun microsystems sends me a useful newsletter, just because I downloaded the JDK. Now if I want to start some sort of enterprise network it will be that much easier. It also eases my depression a little when I pretend that all my spam is mail from friends and family. Look at all that mail. Someone really loves me.

What the heck?

This story's been on the front page for 20 minutes, and nobody has replied yet.

Stupid Risk

[dragons_flight]

In order to have a do-not-email list you have to have an accessible list of valid email addresses. Okay so company A looks at the list and agrees not to email any of the people on it, and then turns a big profit by covertly selling the list to other companies comfortably located outside of US jurisdiction.

Email is global, it's hard to believe that any state is going to come up with a way of significantly controlling spam.

Maybe not so good news.

[Aquillion]

Spam is already supposed to be illegal in those states, isn't it? Creating this kind of 'opt-out' program would seem to be a step backwards by giving spammers a flimsy shield in court if their victims didn't sign the list.

It'll never work

[Gyorg_Lavode]

How are they going to prosecute it. It's a big dog, w/ mean teeth, chained to a post by a chain 3 feet too short to touch the spammers.

First Post

[DaemonGem]

First Post. -Dae

Yes... a do not email list...

[Dwedit]

Great Idea, have everyone add their email address to a Do-Not-Email list...

You actually trust those spammer jerks?

Incremental? Are we there yet?

[MacAndrew]

Is this sort of thing an incremental step towards federal legislation (the only decisive approach IMHO), or will it delay it? Is there a downside to almost-there legislation?

Clearly legislative solutions are going to happen. People are angry, and even politicians must get junk mail that their staff complain about. What I'm perplexed about is why the federal junk fax law was passed so (relatively) quickly and (relatively) easily. Surely the interest groups are more or less the same.

Oh, I almost forgot: Die spammers, die. My spam % has hit about 60, through no fault of my own (some idiot managed to "opt-in" my email address for his; now that the address is burned into some commercial CD-ROM I'm hosed). Because teh geomatrically expanding junk email reduces the email technology to uselessness, I will not accept any solution short of opt-in only.

in uk...

[Graspee_Leemoor]

We have "do not call" lists in the UK and it is illegal to call numbers on them for marketing firms etc., but, get this, the list is maintained by an independent for-profit company who charge to gain access to the list.

So basically you have to pay up or you could be breaking the law! It's like a telephone spam tax!

Actually- that's a good thing, isn't it?

graspee

P.S. First post

suck on this!

fp!

why no first posts?

I've reloaded this story a bajillion times...

who's the man with the first post??

Anonymous Coward!! Excuse me now while I go drink a 40 of Olde English "800" malt liquor. Propz to all my dead homiez, and propz to Wesley Willis too for whooping batman's ass.

How do you sue them when you can't track them?

[Losat]

The real question with a law like this is with enforcement. Both of these laws require residents to sue the spammers. This would be fine if one knew whom to sue. But how many illegal spammers (those ignoring the do-not-spam list) would put actual identification information in the emails or use legitimate accounts that would allow for tracing?
Sure, the "nice" spammers might voluntarily honor the do-not-spam list. Haha.
(At least with telephone spam, the cost per call is significant, discouraging calling those that don't want to be bothered.)

yay

slashdot is borken!

it's FARKed!

woot!

Sorry to be a looser, had to do it tho....

FP!!@

Boy, I wish.

[twiztidlojik]

Unfortunately, the "targeted marketing via email" (read: spam) industry doesn't have the FCC rules and regulations that the telephone does. If the FCC does have a bit of control over an area of communications, then that opens up a window of opportunity for lawmakers. Unfortunately||fortunately for us, the FCC doesn't regulate e-mail, so we don't have the protection afforded to us by the FCC, but keep in mind that e-mail is/was a constantly moving target. We don't have solid, rigid definitions of e-mail like we have solid, rigid definitions of a telephone. Because of this distinction, e-mail is hard to regulate.

As for the idea itself, I'm all for it.

Jesus saves!

Wow!

Ask him into your heart today!

No contact info?!

[$$$$$exyGal]

But few cases have been successfully prosecuted under state laws, partly because spammers hide their identities -- by forging e-mail headers and routing information or by relaying spam through an unsuspecting host. That makes it hard to pinpoint the humans responsible for sending out the illegal missives.

For crying out loud. If you are going to spam 1,000,000 people with a penis replacement advertisement, then you'd at least better give an address so that people know where to send you money! Does a lot of spam, nowadays, not include any way at all to contact the spammer? How can that be profitable?

--panties

Re:No contact info?!

[40000]

The spammer just sets up a web page which re-directs to the seller of the goods. They get paid for referrals. The penis enlargement kit seller claims to have no knowledge of what people were doing to get referrals.

Will it work for email coming from overseas?

[corebreech]

No?

So what good is it?

Re:Will it work for email coming from overseas?

[meringuoid]

So what good is it?

Most spam is sent from overseas, because the US ISPs have mostly learned that spammers are bad news. Well, apart from SpewUNet. And Qworst. And Clueless & Witless. Nonetheless, the spammers themselves are almost all either American or spamming on behalf of Americans to make sales in America. It's rare for me to receive a spam from (say) a German in German for a product sold in Germany, though I do get the occasional all-Korean spew.

A government-backed do-not-mail list wouldn't stop genuinely foreign spam, but suppose Ralsky (an old Slashdot favourite ;-) fires up his computer (that's the one at 6747 MINNOW POND DR, WEST BLOOMFIELD, MI 48322), links to his account on cn.net or to an open relay at some Korean high school, and uses those machines to fire his spam back at people in the US. Though the spam was sent via China or Korea, it was sent by a US citizen to US citizens with the intent of promoting products sold by US citizens to US citizens, and Ralsky's in the shitola.

Cool

It's nice to see the U.S. government doing something constructive. Now omly if we could apply this in other areas....

fp

[smic]

werd

Hey!

[gazbo]

1. Let's all put our email addresses on a list that spammers can download, so they'll know not to spam us.
2. ???
3. Profit!

FRITZ POST!

zet is not funny!

FP

first post i hope (damn slashdot and its 20 second post rule)

cat thing has my

[Graspee_Leemoor]

slash is broken

Spammers will love this.

[The+Bean]

Perfect, just what the spammer's want, a list of working email addresses of people who will be eager to read their spam so they can sue.

Hope the list is just a list of checksums or the like so you can't get the email addresses out of the list yet still check it easily.

Get off hotmail

[SpanishInquisition]

if you don't want spam you loser

Gah

Yeah. Um yeah.

How does the spammer know...

[phrenq]

How do they know where I live?

I live in New York. If I sign up on one of these lists, will I get less spam because spammers just don't send to the whole list?

Of course that's assuming it was effective enough that spammers took it seriously..

Enforcement

[napoleonin]

How exactly do they plan on enforcing this? I'd imagine there could be some jurisdictional issues?

Jay Nixon's History with This

[pgrote]

Jay Nixon is the attorney general of Missouri where I reside.

He has been very active in ensuring his office in on the net and useful.

He has made great strides in the nocall area. His legislation is used as a template by most states.

Here is an older story with much more info on the legislation and what it brings to the table.

Good to see state government making a national impact.

Re:Jay Nixon's History with This

[ry4an]

He's done a much better job than his prececessor, John Aschcroft, who is also making a difference on the national level.

Address fishing

The listing of "do not e-mail" addresses would, of course, be a goldmine for spammers.

i fail it

did or or didn't i? i think i failed it. propz 2 anon posters

register and the govt. will spam you

[DrSkwid]

Dear Citizen,

Did you know that the State of Texas has some great special offers this month?

To find out more why not visit our Website

-----
You received this message because you registered for the junk-mail opt-out list.

To opt out of opt out click here

too late

[evil-empir3]

spammers are always a step ahead of the curve, unfortunately. :(

Link to Colorado

Wired's link doesn't work, you have to search..here's Colorado's proposed law in .pdf format.

ASK /.: Do Japanese girls have squinty pussies?

I really really want to know!

About time

[jimbobborg]

Of course, by the time this actually goes through, all the teeth will be pulled, but it's a nice suggestion.

Even then...

Even if they pass whatever b.s. legislation they want to pass then spam will still come through... The spam terrorists will simply move their operations to a axis of evil and probably join Al Qaeda (sp?)

These idiotic politicians need to worry about serious shit such as the fact that the army is just openly pouring chemicals on us:

http://www.dailyoklahoman.com/cgi-bin/show_article ?ID=983399&pic=none&TP=getarticle

Ummm....

Fuck You? Please?

More Spam

[robertchin]

Yeah, and then spammers from other states add your e-mail address to their list...

Constitutional rights violated

[unterderbrucke]

This is a violation of everyones right to free speech.

Wheter or not you want to hear them, solicitors have the right to send you all the shit they want.

One reply to one of my earlier comments about this saidI was confusing the right to speak with the right to be listened to but I'm not. If you are being told you can't speak to people because they said they didn't want to hear you, its violating your right to free speech.

But who cares, just one more nail in the coffin of the Constitution...

Boy, I wish.

[twiztidlojik]

Unfortunately, the "targeted marketing via email" (read: spam) industry doesn't have the FCC rules and regulations that the telephone does. If the FCC does have a bit of control over an area of communications, then that opens up a window of opportunity for lawmakers. Unfortunately||fortunately for us, the FCC doesn't regulate e-mail, so we don't have the protection afforded to us by the FCC, but keep in mind that e-mail is/was a constantly moving target. We don't have solid, rigid definitions of e-mail like we have solid, rigid definitions of a telephone. Because of this distinction, e-mail is hard to regulate.

As for the idea itself, I'm all for it.

Do you believe this ?

fp?

I live in Missouri.

[beldraen]

This system has worked well. Since it went into effect about two years ago, all the telemarketing calls have stopped save for one long distance company. On the second time they called me, I politely reminded them that what they were doing was illegal in Missouri and if they called again I would hand them over to the Missouri A.G. No more calls since. I'm a happy camper.

Missouri

[dinsdale3]

Finally... a reason to be glad I live in Missouri

Suckers!

[Quixote]

Yah, right! As if some "do-not-email" list will keep away the spammers who are based in the far-east. If anything, this DNE list will become a convenient source of valid email addresses for the spammers! If I were a resident of these states, I'd stay as far away from it as possible. :-)

Nice! But I expect it to get struck down

[fudgefactor7]

Why, you ask? Becuase companies tend to be in a couple of categories, as it comes to email marketing:

(1) Deep pockets to lobby the elimination of this bill; or
(2) Fly-by-night or off-shore types that could care less.

Pity, as I would love to see the end of spam in my lifetime.

Nth invisible post!

[Graspee_Leemoor]

I hereby claim Nth invisible post on this story!

graspee

p.s. don't mod me down, fucknutz, I am highlighting a problem with slashdot- it is accepting comments but not showing any new ones.

Where Do I Sign ...

[Derg]

I would sign up for such a thing. I am a slacker college student, having an avenue to sue somebody for my daily spam alotment in $10 increments is worth it to me. Do you know how much cheap beer and crappy chips I'd get for one days worth of spam suits?... *drool*


Too bad I live in wisconin.

sixth?

damn 20 seconds got me twice!

at last...

[pakolorin83]

finally...genius

A simple first post

I am a man amongst men.

fp

first post

with props to those dead homiez

International Law

[nikpieX]

I don't see this being much of an impact on people getting spam until it's an international law.

it won't work.

[hal9000(jr)]

Too bad it won't work when your dealing with spam coming from foreign servers. Hell, the US can't effectively police the nuclear world (not saying the US should). How can we police spammers?

Well, maybe there is more incentive to get spammers.

Last Post

last post suckers

Probably won't work....

[llamaluvr]

How many spammers right now obey the existing spam laws?

Ohio has a law that says you have to provide full identification on unsolicited email advertisements, and that you must provide a way out for the consumer. But I still recieve plenty of spam with no identification other than a forged header, and certainly no way to tell the spammer that I don't want their stuff anymore.

Good intentions, but, just like every other law covering the digital realm, it's too hard to enforce.

slash is borken

[Graspee_Leemoor]

This is a cheap way to up your post count and not get modded down! New- non-corporeal posts!

graspee

Re:slash is borken

[PerryMason]

The way I see it, its either one of two things;

1) New slashcode to prevent first-posts by stopping any posts

or

2) A new lameness filter that stops anyone who reads /. from posting ;)

Spam Addresses Motherlode

And what happenens when a foreign spammer uses the list as an address book?

F off!

[DustinB]

How about a "leave me the hell alone!" list?

here's a solution....

[martone66]

All we need to do to stop spam is to find the personal contact info (home address and phone number) of the people running the companies. Once their info gets posted here and they get maildotted, maybe they'll realize how irritating and intrusive spam really is and decide to use their evil powers for something else.

retarded americans

You know, the government isn't out to get you. There are rules you must follow - there are responsibilities you have to society in order to have your beloved rights. If you don't comply with responsibility, you get no rights. It's very simple. Stop being selfish idiots.

NIce idea but..

[zjbs14]

Since email has no geographic reference point associated with it, it's pretty hard to force someone sending email to pay for several different drop lists from different states just in case someone they're mailing is on one of them.

Slashdot must have a "Do Not Post Registry"

Since it still shows 0 comments, and I know for a fact there are more than that. Too bad no one will see this for a while.

No Spam

[Cirvam]

Its surprising that spam is looked down upon in the adult webmaster world even though so much spam is pornographic in nature. Most sites that spam you, you can easily find the sponser that is paying them for every signup and report them there, that way they get screwed for their spam. Remember nice sites like Digital Teenz.com never will spam you. So report what porn spam you get to the sponsers the spam is promoting, if enough people do this you might be surprised at how much spam gets cut down.

And my blantent spam: Check out Digital Teenz

first post

[Maxx]

maybe

First Post!!!

Come to my pussy!!!

w00t!

w00t!

it'll never work

[lambadomy]

This is basically stated in the article, but this will never work. They have no jurisdiction over a huge amount of the spammers - even a national do not e-mail list wouldn't stop overseas spammers.

Speaking of overseas spammers, it seems that the high cost of long distance telephone calls is one of the few things that keeps me from getting telemarketer solicitations from people based in, say, thailand. While it doesn't look like this is going to happen anytime soon, if international calling prices dropped significantly due to, say, VoIP, would we end up getting a bunch of calls from overseas selling us penis enlargers or mini rc cars?

Loophole

[good.reverend]

This is mostly just a law to close a loophole. In current Colorado law, if the offending email doesn't follow certain rules ("ADV:" in the Subject, etc.), the recipient can take the spammer to Small Claims and win $10 -- if they can somehow collect it.

One possible legal defense for spammers is to claim that they didn't know the recipient was in Colorado. This would create a directory of emails so that the spammer should have reasonably known that the recipient was in Colorado and shouldn't be contacted.

Overall, though, I'd like to see the list be free, too. Spammers can easily avoid court if they opt to 'go renegade' and not check to make sure no Colorado or Missouri residents receive the email -- because the costs of losing are so much less than having to buy several lists of people not to email. If it were free, they might be more inclined to check.

Better solution

[mkro]

This should be the law: If one wants that garbage: get it by opt-in. Getting it anyway? - Find, persecute, and punish the spammer hard. Yeah, it should be possible to get most of them (at least the newly-recruited) without going totalitarian.

Burden still on the consumer

[coyote-san]

The Colorado law is not modeled on our highly popular telephone registry. In the latter case, if somebody calls us we can report them to the state and the Attorney General will go after them. I don't know whether we get any renumeration, and frankly I don't care since the intent is to ensure compliance. A call from the AG's office carries a lot of weight with companies, even those suing to overturn the law.

In contrast, the proposed spam law still puts the burden on us to track down the spammers, and for our trouble we'll get the princely sum of $10. Thanks, but no thanks since I already have that right for the 99% of the spam I receive that doesn't have "ADV:" in the headers. Meanwhile the $10 won't come close to compensating me for this asshole passing my address along to everyone he can in retaliation.

What I want to see is the right of the AG's office to go after anyone who violates some common sense rules. $100 fine/message for forged headers. $1000 fine/message if the forged header pointed at a Colorado resident. $1,000 fine/message if the forged message was bounced through an open relay located in this jurisdiction. $1,000 fine/message if a commercial message did not contain a valid "remove me" link, and $2,000 fine/message if the message was not acknowledged and acted upon within a reasonable period. (Say 3 business days.) With stacking fines. One night with a spambot and even a low-level spammer could be facing tens of thousands of counts, and millions of dollars in fines.

That won't stop the Nigerians or the jerks bouncing mail through Korean ISPs, but it should stop the spammeisters who brag to the WSJ then bitch when they get tons of unsolicited physical mail.

FP

FP

hooray

slashdot is broken!

Response to the obvious objection

[Maniakes]

But few cases have been successfully prosecuted under state laws, partly because spammers hide their identities -- by forging e-mail headers and routing information or by relaying spam through an unsuspecting host. That makes it hard to pinpoint the humans responsible for sending out the illegal missives.

If spammers can avoid prosecution under these laws, they can use the do-not-email list as a source of emails to spam. We know they would do this because of how they use the "reply-to-remove" links to see if an email address is live and unfiltered.

There's a way to avoid this problem: don't publish the emails; publish a one-way hash of the emails. Cracking the hash would take enough resources that it wouldn't be cost effective for the spammers, but "ethical" spammers who are trying to obey the law would be able to use the hashes to check if emails already on their list were opted-out.

fp

woot!!!

Yeah right

[WickedClean]

They can't make real people stop calling my house, and we are supposed to believe they can make anonymouse internet people stop sending out mass emails. RIGHT!

Signing up from other states?

[Cheap+Imitation]

Given how difficult it can be to pin down the physical location of an email address, what's to stop those of us from outside these states from signing up for their do-not-spam lists?

Obviously, the legal protections would be void... but any reduction in spam would be welcome. (On the longshot that the lists actually help)

Right

[Atese]

from the article:

It would award consumers $10 for each unwanted message that they receive

So, you can sue em for $10 per spam e-mail. Better start saving up.

Hi, I'm a spammer...

[SimplexO]

... I can make it so that nobody knows that I am sending emails. Where can I harvest thousands of email addresses to advertise my product?

hmm...

This is different to MO's (I live in Missouri) no-call list, because when they call I can:

1. communicate with them real-time (threaten to sue)
2. most of the time find their phone number on my caller-id (which usually isn't spoofed)

Oregon in the lead again

[sohp]

Legislators for the state of Oregon are considering such a law. The state Attorney General is pushing it, according to this story. It doesn't seem like it would be a huge win, but it's something, and the recognition that spam is out of control.

Doomed, I'm afraid.

[thermopile]

A great idea, really. not quite treating the problem (stopping the spammers in the first place), but a step better than just treating the symptom (filters, where the emails have to be downloaded anyhow and clog up the network). Not to be an out-and-out wet blanket, but I think the following details aren't going to be worked out. Taken from the article: Furthermore, spammers reside in several different states or overseas, bringing up jurisdiction problems. Nevertheless, Congress has failed to pass any of the 19 national antispam bills introduced since 1999, thanks in part to lobbying efforts of the business community.

Do Not Call

[Radio+Shack+Robot]

Radio Shack will not spam you, but they'll send you a flyer.

FIRST POST! /. is Screwed up again...

Or is /. really screwed up again. I was getting real tired of having to scroll down whenever I go into anyone's user info, and now new comments aren't showing up. Either that, or this is really the first post (ha).

FP

asjkflasjkdlehklawjeklwhrklawjekasdklja YOU SUCK FUCKER

So now they get free lists?

I thought lists of e-mail addresses had to be paid for...

Hey fuckers!

You are a waste of space! I'm sorry I ever fucked your geek ass!!

Thank You!!

Precious

FP for Pooty-Poot! Go USSR!

The Domain Level

[use_compress]

Have anyone considered having an entire domain name as an atom in the do not email list as opposed to only individual email address? For instance, the administrator of goatfactory.com could simply request that *@goatfactory.com be added to the list. It would of having to submit joe@goatfactory.com, buyagoat@goatfactory.com, etc... as well as subsequently having to add each new email address that he assigns.

Re:The Domain Level

[40000]

Entire domain names like hotmail and yahoo .com should be added to a do not email list. They have to pay for their bandwidth (unless spammers are paying MSN not to do very much about the problem). Are Microsoft not interested in taking spammers to court? It's Microsoft which receives a large percentage of all spam since they own the hotmail domain, it's sent to them.
Do Hotmail users buy products advertised to them by spam? Almost every single Hotmail address must be on a spammer's list, every name and dictionary word will have been added right from the start but a lot of those addresses must be spam catchers or just neglected.

I claim the first

[Graspee_Leemoor]

This is the ultra-difficult to secure first post on The Thread No-one Could Reply To.

graspee

Come on, congratulate me or something!

great idea...

[pizza_milkshake]

until someone cracks into the database and sells the x million verified email addresses to overseas spammers

Dealing with Spammers.

[anubi]

I get the idea we may be going about this the same way RIAA is going after Kazaa'ers.

It is apt to grow into one humongous cat and mouse game trying to find out just *who* sent the spam.

This seems like a neat idea, and at least having the law publicly on the books gives a bit of leverage against blatant spamming, although I do get the idea it may be difficult to enforce.

I am of the idea that receiving spam may be something we will just have to live with, just as I think P2P will be something the **AA's have to live with. I just think the best idea is to know its there, and make provisions for it. It just comes with the territory, so to speak.

I know there are those of us who would like to demand we see ads if we are going to see the content, and many of us circumvent that. There are many of us ( me included ) which highly detest unsolicited ads - but I really do not see any way a lawyer is going to help me. I see both of these as a technical issue, and are best solved through technology.

Silly Colorado

[llamaluvr]

Going to Small Claims court is not worth the ten dollars. It's not worth the $20 if they email you twice. It's not worth the $30 if they email you three times. It's simply not worth the trouble, and the small chance that you would lose, and the high probability that the spammer wouldn't even show up.

They should at least make the penalty as costly as the court fees needed to collect it.

Appalling risks of unintended consequences

[billstewart]

There are so many things that can go wrong with a list like that if you don't implement it carefully. First of all, it'll be downloaded by Korean-proxy-abusing spammers and spammed anyway, from outside the states' jurisdictions. ("Buy Our Spam Prevention Software Now!") And SPAMMERS ALWAYS LIE. You'll start seeing spam about "This Email Isn't Spam, and by not using the State Spam-Blocking-List, you've given us permission to contact you about our AmAAAAZING Spam-Free Offers!"

Second, if you don't verify the information carefully, at minimum with double-opt-in and some kind of Turing test (e.g."type the number from the gif into this box"), there'll be all sorts of abuse, signing up people who don't want to be there, automated h4X0r b0ts trying to kill everybody in the state, random crap like that. Do you trust your average state government to implement something like that right? (If you answered "yes", and live in California or New Jersey, you obviously don't bother reading headlines about state government computer project debacles, and if you live somewhere else, your local government is just as stupid by I haven't been paying attention to them :-)

Third, there are ways to provide some privacy protection while still maintaining a blocking list. For instance, instead of keeping a database of addresses that pass the double-opt-in test, publish a list of harder-to-abuse hashes of the addresses:

Salt, Hash(emailaddress, salt)

Fourth, this doesn't always mix well with newer tagged-format addresses ("username+tag1@example.com") or domain or subdomain addresses ("anything@mydomain-example.com" or "anything@username.fastmail.fm") unless the rules are tediously explicit and accurate for how to use them. These kinds of addresses let you give every recipient a unique address, which your email programs can filter on to discard stuff that's obviously abuse and sort stuff that's from real people.

Under penalty of...

[Metallic+Matty]

Thats what I'm waiting for... what they'll be fined or how much time they'll get.

Being beaten with sticks doesn't seem to unfair to me, considering how much I loathe spam.

Just wait...

[Powercntrl]

Some spammer will set up shop overseas in a country that will provide them a safe haven to use these "Do-Not-Email" lists as "Super-verified-to-exist" lists. That's just as good as replying to a spammer requesting to be removed from their list. Of course they remove you! What they don't tell you is that now you're on a totally new list of e-mail addresses known to be valid and of people who actually read their spam (How else did you know the remove proceedure?). Spam sucks.

No spam in years, and yet...

[Zhe+Mappel]

OK, that's an exaggeration. I've had a little -- about two or three pieces per year -- in my main e-mail box. The reason is obvious. Spam is why God created Hotmail.

I only bring it up because it's the sensible temporary personal solution while public policy continues to fail us. We can't count on Washington, and few can count on state legislatures. An e-mail address, like a pair of aces, is something to hold close to your chest. Use Microsoft's spam trough for public communication.

The optimal solution to spam is simple: thunderously vicious overkill, an art in which the US (thanks to the Drug War) is now well-practiced. But we can't get legislation from our servile lawmakers, who well understand that to even think of hushing the roar of unbridled greed is to sacrifice their usefulness to the Machine, and hence their careers.

The registries are promising, but feature one tremendous drawback and other subtle ones. The main problem is that you don't want to leave these matters open to the vagaries of shifting political control. Here in Minnesota, our state opt-out telemarketing registry will take effect in a matter of weeks -- if the new radical right wing government here deigns to operate it correctly. In an age of fiscal and moral deficits, I'm not holding my breath.

More subtle are the problems of collection and control of information. First, registries place the onus of education and participation upon citizens when properly the onus of desisting should fall upon spammers. Second, registries collect the very data after which spammers lust, and hand it to them. Toothless penalties will only encourage massive abuse, making spamming easier.

Michael ..... I Love You

The blow job you gave me yesterday, was the best I ever had!!!

Please be my wife!?!?!?

PLEEEEZZZZ

I'm from Missouri....

[scottm52]

And this version of the proposed law sucks big-time. How about they put a million bucks in a pool, open up 50 or 60 tracking bank accounts, and buy whatever it is the spam is selling.... Thus creating a $$$ trail that can be followed, and a judge can just take and put back into the state coffers. Him em where it hurts... in the pocket!

nope. opt-in!

how about a "yes, please send me SPAM" opt-in registry instead?

-eurotrash

Second Post??

[billstewart]

I wrote a real post, but it's not showing up here. Sigh...

can it be?

FIRST POST MOTHERRRUFCKERS

States should not regulate E-mail

[btempleton]

Even as much as we hate spam, the idea that states should be allowed to regulate E-mail is really frightening. On most of my E-mails, I have no idea what state (or nation) the recipient is in.

If state regulation of E-mail is upheld, it means every time you send an E-mail you must figure out what state it is going to, learn the laws of that state, and then obey them. Sounds fine if it's an anti-spam law, but the principle would apply to any regulation the state might dream up. You would get 50 different sents of rules about what emails were legal and which were not. For example, New Mexico tried to pass a law regulating decency in internet traffic to New Mexico. No thanks to granting states that sort of authority.

If you want an opt-out list, it's got to be global or at least federal. Global's hard to do. Unfortunately, unlike phone numbers, I have an infinite number of E-mail addresses so an opt-out list is not so practical. If you allowed patterns you could cover it but you would need a way to authenticate the ownership of the pattern.

You also don't want the list published in cleartext, though it's hard to avoid this. While you could publish a list of hashes of excluded e-mail addresses, it's not hard to extract a lot of the addresses since the real ones come from a finite space. After all spammers have managed to harvest well enough.

FP!

FP!

??? huh

Whuh? This sucketh

What about email that doesn't

[The+Analog+Kid]

come from the U.S. and comes from countries with not extradition agreement well what do you do then.

Will this really work?

Will this really work? Especially for overseas spammers? What's their incentive to follow this list?

Additionally, won't they just take these lists and spam the hell out of these people as they KNOW they are active email accounts?

I doubt the spammers in Singapore will care

[Denver_80203]

Legislation against spam is great, but I wonder how enforcable it could be?

I KICK UR ASS

first post fuckers!

historic day!

[Graspee_Leemoor]

"This exact comment has already been posted. Try to be more original..."

So maybe slash is down for upgrades, as I haven't heard of this before- though I think that they would have had a piece informing people of it if that were the case.

If it knows this comment existed maybe it was stored after all.

JESUS CHRIST this topic is going to have about 1000 first post claims on it! It could go down in history!

Can we beat the highest post count on a story ever? Will they let the record stand?

Am I really sad for playing slash like a game?

Am I going to lose lots of karma along with lots of other people as the mods who get up don't realize the problems slash was having with showing posts?

AHHAHAHAH Historic day!

graspee

hate to be a downer

[morgajel]

but how are they going to procecute out-of-country spammers?

basically they're getting a huge verified list of email addresses.
what I'd do is put some test addresses in there before my personal one and see if it gets spammed first.

should be interesting either way.

Well, ...

[i.r.id10t]

.. its about time.

Of course, what will prevent a company (off shore or otherwise not under the influence of US law, well, except for that one Russian incident) from getting a copy of said list and then using it for more spam?

I gave written testimony to the Missouri House.

[Mustang+Matt]

Here's my written testimony...
Testimony

The house bill 228 wasn't perfect, it still needs a lot of work. It was suppossed to be voted on last Monday but I didn't hear the results.

Are lists needed?

[HillClimber]

The key is government enforcement (i.e. stiff fines) for spammers. I think the "do not call" list is unnecessary and error prone. I think we just need big penalties for spammers who don't a) abide by current laws to have non-fraudulent "remove me" instructions, or b) use truthful headers. I think those would cut way down on spam without forcing people to sign up for something that *everyone* wants anyway.

And if you want to be on a do-not-call for via Gra, you might still want to get emails about network software tools!

donkey balls

fp

De Ja Vu

Didn't I see this same article, with no posts, 20 minutes ago?

What bothers me about this idea.

[Crusty+Oldman]

The one thing wrong with this idea is that once government starts providing services, it also looks for compensation. And we know that once it finds a source of money or power, it never, ever gives it up.

Let's save the 'net for the people. Keep government out of it!

Finally

[Gorilla_Man]

I signed up for the Do Not Call list in Massachusetts and it has worked great- no pesky calls since then. I hope the email implementation can have the same success!

Sure......

[Alcimedes]

Um, yeah, just put your e-mail address here on this "special" list, and I swear I'll send them to the state for the do not mail list.

Oh, and you may receive a few notices as to other great products we offer, such as appendage enlargement, ways to meet women, and wonderful investment opportunities.

Best Scam Ever. :)

Maybe..

this would get all sorted out if spam were punishable with death. Hmm..

Ok I'm lost.

[xombo]

I am so lost, no posts after like 30 seconds. To keep this from being a troll: The do not email list will never work, it would be too big and take up too much processing power. It would be possible somehow if they used open source, open source will always work because it is what keeps the world at peace.

Oh, enough

[cscx]

Just get a spam filter.

Do what you do with annoying Jehovah's Witnesses that come to your door -- don't let them in.

Where is the frist porsts?

in search of posts...

not fp

$10? Come on....

[WotPeed]

One of the proposed laws gives the consumer $10 for successfully sueing a spammer. Gimme a break, who's got the time to go to court for $10? Another of the proposed laws awarded the spamee $5000 (or was it $2000?) if they had registered on the no-spam list but gets spammed anyway. That would certainly be more of a deterrant, but it doesn't address the problem of finding the spammer to begin with. While it's good to see someone trying to do something about the problem, this ain't it.

About time!

[vapor2000]

According to postini.com, my ISP's filtering service, up to 65% of all email is spam.

Spam costs money people, we are paying for that drain of bandwidth, and time.

I think a DNE list is a great idea, and make the spammers pay for it by charging for them for updates to the list!

Are more laws really going to solve the problem?

[one9nine]

But few cases have been successfully prosecuted under state laws, partly because spammers hide their identities -- by forging e-mail headers and routing information or by relaying spam through an unsuspecting host. That makes it hard to pinpoint the humans responsible for sending out the illegal missives.

Can we really stop spam through policial solutions? Seems like things must be done on a technical level first before laws can become effective.

first post !

first post !

Sorry. Nice Try. Won't work.

Why not just require spammers to register as such under the addresses they use, then you can simply block mail from those addresses?

Answer: Because there is a price to be paid for an open, global, unregulated internet. You will *never* be able to stop spam so long as some guy in Nigeria can make 700 bucks by sending 7,000,000 emails to addresses skimmed off of usenet for virtually nothing.

Most all present spam filters probably due a much better job than government legislation ever will.

The real answer is to implement effective anti-spam technology which is expensive to circumvent and to stop idiots from buying products advertised via spam.

Heck, legislating might even do some good after you run all the little gnats that the government can't swat out of business. Otherwise, you just give them MORE business and consequently get MORE gnats.

Yeah, sure.

[Black+Parrot]

Are they going to send a couple of Highway Patrol officers to Taiwan to arrest people sending spam to Missouri?

ps - Where the heck is 'Colorodo'?

ps #2 - Wherezalla posts? Will I find out when I click 'Submit'?

It's not a working concept though.

[More+Karma+Than+God]

The spammers will just hide thier tracks using servers outside the US in safe havens for shady activities.

Practically speaking I'd like to see international law recognize that those profiting from spam (the people who are actually taking the money for the products) are responsable for the spam even if the spam cannot be traced directly back to them. Fines with teeth would be needed for enforcement.

fp?

[Luke-Jr]

Someone plz post something for me to read. Thx. o.o;;

I have one of those too!

[Openadvocate]

and I invite everybody to visit the page and enter their email adr. if they don't want go get spam in their email.
btw please fill in those field about stuff you like while you are at it.

Ignorance is bliss?

What about the 3% of fine American citizens who cannot read? How many of these citizens become (are?) telemarketers? And how many of them, I wonder, will be enlisted to call the "do-not-call"ers?

Just maybe...

[imadcow1]

Perhaps this could be the next get rich quick scheme?

"Do-not-email" lists *can't* work

[tgeller]

First off, let's assume that DNC lists work for phone and paper direct marketing. (We all know that they don't, but let's pretend.)

DNE lists *can't* work, for several reasons:

* There's not a one-to-one correlation between people and email addresses. Many (most?) people have several addresses: Even AOL members get up to eight. So do those people have to "unsubscribe" eight times? What about those of us who invent new email addresses for different uses? It's not unusual for someone to have dozens or even hundreds of addresses.

* Let's not forget role addresses: root, webmaster, postmaster, etc. Someone would have to put those on the DNE list.

* What about the poor schmuck who gets "fallback", i.e. [anything]@domain.com? That's the default in many systems.

* Some email addresses have several people connected to them -- for example, mailing lists. Who unsubscribes those?

* Some email addresses have *no* people connected to them -- for example, those controlling processes. Would anyone even know to add them to the DNE?

Some proposals have included a provision that allows one to add entire domains to a DNE list. These are somewhat better, but they have several problems with them. For one, it would trump the individual preferences of those using the domain.

But ultimately, the main problem is that *the burden shouldn't be on the recipient*. Unlike phone (a common carrier) or postal mailboxes (government property), email boxes are private property, requiring private funds. Access without permission is trespass.

BTW, see law.spamcon.org for a list of states with current antispam laws. I live in one with an opt-in law: California Business and Professions Code 17538.45.

--Tom Geller
Founder, SpamCon Foundation

Nice Idea, bad practice

[nzkoz]

I'm not from the US. I live in NZ and maybe the spam situation is different there, but at least 1/2 of my spam comes from outside the US. Most of it from african and asian spammers trying to sell me porn sites or give me $42 000 000.

While a law like this may stop a few honest (if they exist) american spammers, the scumbag majority will probably just plunder these lists for addresses.

Is this serious?

[expro]

If spammers were really under the control of a jurisdiction, it does not take a "do not spam" list to stop them.

If I were a spammer, the do-not-spam list sounds like an ideal source for qualified, good email addresses to spam. What a completely stupid concept.

This is just doomed to fall short

[quakeslut]

This won't have any real effect, I'm sorry to say.

First of all (as I understand it), this is done at the local level (not even federal) so the odds that loop holes exist is much greater. I can see this being as effective as the state laws regarding fireworks and/or alcohol. In Utah, for example, they only have 3.2% beer, but you can just hop to Wyoming to get the real thing. Same thing goes for bottle rockets--you get the idea.

Also, the law says that if you win the case you get you court fees back plus $10 per message. This is more or less worthless to Joe User. A $10 pay-off isn't worth the time and risk.

And you also have to consider foreign companies--good luck trying to haul in some German firm and hold them to this law.

Sorry, but state-level regulations aren't going to do a THING.

As a Missouri resident

[muertos]

I have been enormously pleased with how well the No-Call list has worked. But I'm not so sure how well a No-Email list will work, for the simple fact that, although telemarketing firms are generally businesses with valid addresses and contactable management, spammers are slimy invertebrates who've learned to work a mass-mailer on their basement computer. I'm willing to give it a go, though. I wouldn't even mind if the state takes a cut of any settlement I reach. I'd let 'em have a grand out of the $5k, give my lawyer another $3k, and keep a measly thou for myself.

Hrm

Interesting, now we need to see if they will sue the 'list' like they did with the "do not call list."

btw, where do I sign up?

Do Not Post Article?

[miguel_at_menino.com]

Why so much trouble posting comments on this article?

Did somebody apply the "do not post" registry to this article?

RE: Can I propose a better option?

[fshalor]

Like that's gonna work...

I didn't see anything on whether this would be an opt-in, or opt-out...Could make all the difference.

what?

[Quasar1999]

What guarantee do I have that some hacker isn't going to break into that database of "don't email me please" addresses, and not spam the living snot out of them, all while re-writing the original database and claiming that my address was never on the list???

Re:WHAT?

Brilliant, I applaud your ability to make the exact same post twice. You're like a /. editor!

A question about this

[faeryman]

CAUCE argues that junk e-mail should be treated like junk faxes: banned altogether except in cases where the sender and recipient have an established business relationship.

What defines an 'established business relationship'? I can see with faxes that maybe they mean I bought a product from Company X. But with the Internet, couldn't a shady business say that I have an 'established relationship' with them because I visted thier webpage, saw thier banner ad, ordered from an affiliate, etc? The law sounds really good but I'm afraid it could be gotten around with some creativity :/

Fr0st p1st?

qu0i?

Colorado Do Not Call List

[DaveAtFraud]

Works! Now, if I could just get the people who want me to give them money as opposed to those who were trying to sell me something to stop calling me, all would be peaceful.

what's wrong with the posting

Its been 20 minutes and no fp??? wtf!

Why would spammers be against this?

[antistuff]

Think about it. Anybody who would take the time to get on a do not email list isnt gonna buy anything form them anyway, so why would they care about this?

how would it turn out ...

... if you didn't live in one of these states, but registered on their do no email lists?

i would expect that after a trial period, the lists would start to work, and anyone on the lists would stop getting some amount of spam, but how are the states going to enforce state residency, or should they?

obviously you'd have to be in-state to sue, but do you really have to be in-state to enjoy the protection?

Where is the...

[Chris_Stankowitz]

do not send me crappy old jokes list?

Holy Crap

Is /. broken? An hour after posting and no FP?

Will it change anything???

[NamShubCMX]

I mean, most of the spammers won't care about this list, and most of them are already using techniques to make them "anonymous"... ie. that nigerian guy who have some of my money will really care about that law, right?

i refuse

...to believe that i just got a first post.

A solution looking for a problem?

[Captain+Beefheart]

From the article: "But few cases have been successfully prosecuted under state laws, partly because spammers hide their identities -- by forging e-mail headers and routing information or by relaying spam through an unsuspecting host. That makes it hard to pinpoint the humans responsible for sending out the illegal missives."

So, get the database, harvest those real, live addys, and spam away using your layers of obfuscation...

I'd rather keep my addy on the down-low, rather than submitting it to a publicly-accessible database, regardless of the db's purpose. I've learned to be very, very wary of publicizing addys.

Do Not First Post!

[terbo]

Doh.

I dont know...

Not possible. Enforcing this isn't viable. If they can't stop telemarketers correctly, how is this any different? Anyone have real luck with "do not call" opting out?

Ahhh.....the first post

Very satisfying....and I want to sign up for the do-not-mail list too.

ddasdasasdsa

sdasdasdasdas

does it work

does it work or not

jeesh

this thread is going to have 100 first posts.

Could it be?

A post first for me?

yup

mamem todos no meu vergalho seus cabroes.

Wasn't the Resgistries plan delayed?

See here.

This still won't deal with the biggest spam issue

[RosebudLTD]

... which is the availability of easy to create email accounts, like Hotmail or Yahoo. They create an account, mass mail from it once, and abandon it. I'd say that 90% of the crap in my filtered mail folder is from those two providers.

A technical fix instead of a legal one

[Tri0de]

I don't know if this is doing something or giving up, from the legislative point of view... not the dumbest solution I've ever seen.

"At this point, I think the technical approach has more promise than the legal one," said Sorkin. "Filters have done more to block unsolicited e-mail than any piece of legislation."

SLASHdot fucking sucks tonight

dude it teh borken. i cant see any comments. arghghghghhg im typing blind.

yes but....

[crumbz]

until they can ISPs on the liability hook for relaying spam from outside sources, I don't see the teeth. After all, ISPs have the geographic presence that connect with the end user or, in this case, receiver. Suing a spammer in Bulgaria or Korea is a waste of legal resources, as the net reult will be an unenforceable injunction.

No comments?

Eh?

and if the spammer is in china?

[DonaldBeckman817]

are we going to reach the long arm of US govt to get them?

ya, right... :)

unspam.com

[EastDakota]

At unspam.com we're working on a patent pending technology that will help states implement these sort of do-not-email lists. Stay tuned! We'll be making a public announcement with details in the next few weeks.

Wellllll...

[I+Am+The+Owl]

Considering the very illegal nature of a lot of spam already (beastiality, pyramid schemes, stock scams, etc.), what exactly makes people think that some new legislation is going to make it stop this time around? Spam's already hard to trace, what with the ephemeral nature of dial-up accounts and the sometimes difficult-to-trace mail sent through open relays in God-knows-where, Asia.

What if the Spammers aren't in your country?

[FelixCat]

The "do not call" list works pretty well within the United States, since the company calling is almost always in the United States. Hence any complaints can be filed within the United States. But I have to wonder if this will work when the person spamming doesn't even live here, or if the company turning a blind eye to the spam isn't a US company. Although some of the most famous spammers are US citizens.

Just my 2 cents.

Yeah, right...

[gizmonic]

The only way a law would ever stop spam is if it is legally enforceable across the entire globe. That is more offensive than spam, and certainly scarier.

First POST...

...IN Your ASS!!

Frist posteth?

L ala la la boyyah! Fags! hahaha

fp

lameazzez!

Weird

How do we know spammers won't just harvest unique, verified addresses from the list if they live out of state or out of the country?

some solutions

[llZENll]

1) rather than making the sender liable, make the business/person/entity the ad is for liable, this way there is no problem tracking down where the email came from (which seems to be the biggest problem right now with spam). this will also solve the problem of overseas junk mail, since most spam is sent from overseas, but the ad is for US businesses. 2) enforce the words SPAM or JUNK in the subject of the email, then servers, routers, and hubs can filter out these messages if domains don't want them. spam must be enforced by the government at the federal level, if just the states do it, there will some stupid state that doesn't pass it and spam will prevail. it is a huge internet resource hog, and the senders do not largely pay for resources they use, we do everytime we download it through our ISP. one thing i really don't understand is that EVERYONE HATES SPAM, so why the hell is it so hard to pass legislation to make it illegal overnight??????

Piss to the Frost

FUCK YOU NAVEWEISS and GAY LOVER JAWTHESHARK
you shall all fornicate in gay hell

Do this at the SMTP server level

[persaud]

... let entire servers opt-out.

This will:

1. make opt-out lists smaller and manageable
2. cluster users who want spam into a small number of ISPs
3. help opted-out ISPs file lawsuits
4. reduce risk to individual privacy

Server admins are much more irritated by spam than are end-users.

Speaking of which, would mail admins please ensure their outbound HELO is valid and matches reverse DNS on the outbound IP? This is a quick, decentralized improvement.

Rich

Take that

Yeah, sure, I'll bet they will listen right away.

They are smart enough now to not be traced by some of the best, what's to stop them after a registry is created?

It'll be interesting...

[cwsulliv]

to see what use is made of these "opt-out" lists by foreign spammers.

Looks like a good way to get more spam

[origin2k]

I don't think anyone will hire a lawyer for $10 to go against a spammer? I had to spend $300 just to get a lawyer to look over my employment agreement. If you loose the case, then you are out your time and a lot of money.

So in effect this is a nice way to let everyone know your e-mail in my opinion.

my $0.02

I should not have to opt-out

[frovingslosh]

Given the obvious willingness of the e-mail spammer to lie, mis-represent who they are, and falsify their e-mail, I don't consider op-out a viable way to deal with spam. An opt-out list will only serve to provide a list of valid e-mail addresses to those intent on getting their crap through no matter what.

There seems no need for an op-out list. There is already a federal law that prohibits spamming fax machines, and it has been enforced. My state even has an anti-spam e-mail law, but you can't get the lazy government employees in the consumer protection department to enforce it. What we really need is to recognize that spam wastes/(steals) a lot of money in time and resources in many ways and to pass laws against unsloicited spam without making people publish their e-mail addresses that they don't want spammed.

An ISP who passes tens of millions pieces of unwanted messages each day for penis pills and pr0n and "make money fast" and "I need your help to sneak 14 gazillion US dollars out of my country" shouldn't be spared delivery of only the 1% who are willing to sign up on an opt-out list, they should be spared all of this bullshit by the strength of an anti-spam law that is enforced.

Enforcement should be a snap too. Put a nice dead-or-alive bounty on the spammers heads and watch how fast they are tracked down and put out of action. The lazy bastards at the consumer protection department wouldn't have to lift a finger.

A national do-not-e-mail list might be nice icing on the cake; it would be great to have that too, once there was already an enforced law on spamming me, so the someone couldn't claim they had a business ralationship that didn't really exist (like when Microsoft sells them all of the Passport information). But it's not the right answer as a first step against spam. I'm even disgusted that /. would discuss and promote it; this in some ways gives ligitimacy to the lying "click here to opt out" crap common in lots of spam. We need to "opt out" the spammers, not our own private e-mail addresses.

ColorOdo?

[o0o]

Is that anywhere near Colorado?

Combine the two laws

[berzerke]

Maybe it's just me, but I think neither state law (Colorado or Missouri) quite fits the bill. I like the fact Colorado charges for access to registry. Without that, what's to stop overseas spammers from using the registry to generate an active email address list. After all, so what if the spammers get sued (and lose). They're overseas so you'll never collect. Having to pony up $500 just to see the list is at least a little deterrent to that. Also, this could help pay for maintaining the list, keeping registration free (hopefully).

However, getting only $10 in damages (plus lawyer's fees) isn't going to encourage much punishment of those who do break the law (and can be found). Here, Missouri's damages of $5000 are a bit more reasonable. This much will encourage more people to go after those violators. Laws without enforcement are worthless.

Of course, both are still opt-out, and opt-in is much preferred. However, if this opt-out compromise reduces the number of spam messages I have to filter out, then I say it is doing some good. There is no one easy solution to the spam problem. If there were, someone would have found it by now (although just extenting the junk fax ban would go a long way toward that solution).

How weird

[vadim_t]

This has been on the front page for a while and I see no posts.

Just wondering if this is going to get through.

michael is a little bitch

what was that michael? you messed yourself?

Tracking Spammers

[rushiferu]

"In Missouri, companies would have free access to the list, but residents would be able to sue marketers for up to $5,000 for violating it."

Yeah, I'm sure the average AOL user is more than capable of tracking down the actual spammer. Nothing to see here, please move along.

ColorAdo

[protohiro1]

Dammit people, is it that difficult? Spelt like it sounds...

Call service error tones

[Rojo^]

This is a little off topic, but on my mind so fuck it. I'm posting it anyway. On a telephone system, those three successive tones (the ones you get when you dial a wrong number) signal non-completion of a call. The Tele-zapper, sold in Radio Shack and other electronics stores, I believe emit these tones, effectively removing the receiver of the call from the call lists of the automated dialers of call centers. Assuming (weakly) that spammers emailed using a valid return address, wouldn't it be nice to have a similar device bouncing spam mails automatically? Years ago, Albert Yale wrote a program called BSM -- Bounce Spam Mail, for Windows. Seems like it worked like twice out of twenty for me. You can still find it on the net with a Google search and a little digging. Would it be possible to have an automated plugin similar to this? I'm not saying such a program would stop spam, but it would certainly be a nice counterpart to Baysean filtering, SpamNet-like utilities, and progressive and intelligent legislation.

Probably easier...

[neksys]

This would probably be easier to put through than the telephone opt-in system. Most spammers are (slimy) individuals, without the lobbying clout of the Direct Marketing Association behind them - and as everyone knows, laws are made (or not made) because of lobbyists, not out of any sense of whats right. =)

Just wait.

[DoraLives]

The gummint will find a way to bollix this excellent concept all to pieces. That, and the innate cunning of spammers, gives me little hope for substantive positive change.

Here's hoping I'm completely wrong.

How long before spammers get around this.

[loraksus]

I mean - it's not like the people sending me "increase your dick size 8" now" / nigerian king emails are actually selling legit products, and I really doubt they care about any laws or regulations.

The spammers will just claim...

[AntiNorm]

That the customers have opted in, or that they have an existing business relationship with them. It's what they already do...

Common sense and why this won't work.

[Daniel+Quinlan]

Have you ever received a telemarketer call or postal junk mail from a foreign country? Probably not. Why? Because it's expensive.

Have you ever received spam from a foreign country? Probably. Why? Because it's no more expensive than domestic spam.

This idea will not get rid of spam coming from foreign countries. And note, I'm not talking about foreign language spam. I mean spam originating from a source outside your country. The people who are coming up with these dumb ideas about how to combat spam obviously have no practical knowledge actually trying to deal with spam. But, wait! It get's better. Even if this manages to deal with domestic spam, what's to stop someone from (illegally) selling the list to a foreign spammer outside the jurisdiction of the US?

If you're a foreign spammer, I bet this sounds like a great idea... Now, the well-meaning, but let's face it ... stupid ... US government will be collecting valid and up-to-date email addresses for you. Even if they don't publish the entire list, there will have to be some way to check if an address is in the list and spammers could use that to verify that addresses are valid without needing to connect to millions of SMTP servers. Any way you slice it, this idea does not seem workable to me. (e-mail does not equal telephone.)

Re:Common sense and why this won't work.

[AntiNorm]

Have you ever received a telemarketer call or postal junk mail from a foreign country?

Quite possibly. It is becoming more and more common to outsource telephone marketing campaigns to call centers in India.

Cool!

First Post!u

More Spam Lists for Spammers!

[Greyfox]

Spammers are slimier and harder to track down than telemarketers. Somehow I think they'll just treat the "do-not-spam" registry as just another spam list.

First nigger

FIRST NIGGER

Needs to be nation-wide.

And then, it won't stop the bulk of overseas spam. However, most spam I get is from within the US, so it'd be a great benefit to me.

My problem is - I live on the east coast. My mail is served from the west coast. Where do I fit in? Would I have to wait for my home state to do something like this, or would I have to wait for the state my e-mail is in to enact a similar law?

Furthermore, what of states that don't enact these sort of laws? What kind of power is there to stop a company in, say, Alaska, from sending spam to someone in Colorado, if Alaska doesn't have a similar law?

This so needs to be 'nationalized'.

How about a "Yes I want spam" List?

Otherwise the next idea will be:

"Do not rob or beat me up" List

This makes the practice seem legal or something.
Just say No.

Won't work...

[KC7GR]

Universal 'Remove' lists have been tried. They've all failed because there's always going to be some spammer who thinks they can get away with not using it.

Don't even get me started on the fact that spammers, for the most part, go to great lengths to hide their real identities and addresses. Can't serve court papers if you can't find the person (and I use the term loosely in reference to spammers) to be served.

Part of the solution has always been there, staring legislators in the face. It's just that nobody seems to have the cojones to do it; Specifically, expand the existing Junk FAX law (47 USC 227(b)) to cover spam. It might not have an immediate effect, but at least it would be a good start.

Spam's Bad...

[VoidEngineer]

Uh... Ok. Spam's bad. Sorry for being off-topic, but what's up with slashdot? I seriously doubt that I'm the first post on this message, as I've alreadly re-loaded it twice on a friday night... \. isn't acting like it usually does...

Anyhow... anti-spam = good. spam = bad.

Whoo HOOO!

[El_Nofx]

Sign me up please!

But the net doesn't follow political boundaries...

[Tired_Blood]

That'll stop those Korean spammers good.

Maybe it'll help though since, on some accounts I work with, I've noticed that ALL the spam going to them are definitely American in origin.
Consider this: they normally get an average of 40+ spam per day and there were ZERO the friday after Thanksgiving! It seems that even spammers take THAT day off for holiday.


Jeez, what the hell am I doing on /. on a friday night?

I some how doubt this will work...

[Fembot]

The list will have to be readable to spammers, and whats to stop one spammer in the us selling the list to another in korea?

How Would Law Treat Individual Spammers?

[Lutherx]

The article says that the law will allow "consumers to sue marketers who ignore their wishes [not to be spammed]" I'm curious over how the law would treat individual spammers. Would it allow people to sue Hot_Cindy9876@yahoo.com? or would it be the supplier of the product that Cindy was advertising that is held responsible. This might be especially difficult if the product (or website) is foreign, eg CrazyAsianPron.tw

It also seems a bit negative for anti-spam groups to criticise the laws before they are enacted.

I would have thought they would be all for this kind of thing, even if it doesn't work, at least it is a start and shows that some States are trying to do the right thing.

Just because they haven't done it perfectly first time is no reason to complain. Wait and see what happens, it might work out ok, and if it doesn't then start pushing for it to be reworked.

I wish them all the luck in the world...

[Mr.+Firewall]

Quoth the article: "Almost all of the current state laws are completely useless and counterproductive," Sorkin said. "The state laws go after the symptoms of the spam, but don't address the central problem...."

(nodding head knowingly) Yup. Spam cannot be dealt with on a state-by-state basis. First, there's the problem of prosecuting someone who isn't even in the country and secondly, how does a prosecutor prove that the spammer knew that the email recipient lived in this or that state of the U.S.?

Legislators have this huge urge to "do something" about every problem that plagues man, and I admire them for their Good Intentions. But when it comes to something like this, they might as well try to outlaw bad weather during the State Fair.

Spammers

First come first served

Yessiree!

First Stinkin Post.

FP - an hour later

[damiam]

This is strange. Does no one care about this subject?

fp

your mom matt graham is a bastard

At least for now, same as before.

[amberspry]

It's a start in the right direction; however, the burden is still and at least for the foreseeable future, will lie on the end user. There is no perfect answer. Companies sending SPAM are making it hard for anyone to track them down and there are enough people clicking on the advertisements to make it worth their while.

Unfortunately, for those that can't stand SPAM the only solution is to keep an account for junk mail and change it once and while. The burden still lies on the end user but if there are enough people willing to respond to the ads they receive there will always be companies ready to answer those responses.

Frist Post

blah!

I think an opt out list is the way to go.

[Fnagaton]

I think an opt out list is the way to go but it would have to require a lot of international agreements.
I know an opt out list is controversial idea but here is my reasoning. First off it is necessary to look at the alternative. This is that you have to prove that you have no previous business arrangement with the company/person sending you the junk email. This is time consuming and is not guaranteed to work in a lot of cases.
However if you consider that in you sign up to an opt out list that signifies that you DO NOT want any spam email then the case is easier to prove if you ever receive spam from a company/person. In this case you can take the spam, show you are on the list and easily prove you have opted out of any spam.
This same opt out method works well in the UK for advertising phone calls. Basically any company that wants to phone you up to sell you something has to check your number is not on the list. If a company calls you up to sell you something and you are registered then the company gets a fine. This service is free and backed by law.
I know people say that they want to automatically be opted out of all spam however this allows a tenuous point to be stretched for the reason explained above.
From a proof point of view it is much easier to point to something that says you are definitely opted out. With the register to opt out method the onus is on the company to check and not on you to prove.
However the legislation needs to take in to account where the company is based. Not where the email is being sent from. If America agrees to this legislation and requires businesses to check before having spam being sent out then this will stop a lot of the spam email. Importantly the legislation needs to target the company even if they use a third party company to distribute the emails.

Which strategy is better? Colorado or Missouri?

[hillct]

It's great to see legislation of this type appear on the scene, however I'm not sure which state's stategy is going to be most effective. Charging spammers for access to a do-not-email list which could potentially protect them from lawsuits is a good thing, but there has to be an incentive for the consumer, other than to screw over the spammers, for them to sue the offenders. Personally, $10/UBE message for at least two days effort on my part (with a lawyer, and in court), which translates into at least $1200 of my time (at a reasonable rate of $75/hour) doesn't make it worth my while to spend my time sueing a spammer in Colorado.

Payment of $5,000 per violation in Missouri on the other hand, makes it worth while for consumers to sue spammers. FOr this reason, it seems to me that the Colorado law is designed as a state regenue generation mechanism, rather than legislation designed to compensate the victims of spammers.

--CTH

This seems like a good idea.

There seems to be a lot of potential. I'm sure that spammers would never spam those addresses, so at least I'll be able to leave my address on my own web site without having to munge it up.

Excellent

Excellent e-mail list. Pay 500$ to get to the list

What's the betting...

[exp(pi*sqrt(163))]

...that someone leaks the do-not-email registries to spammers? I don't want to receive spam. The last thing I want to do is give my email address to someone I don't know. And that includes people keeping registries.

Get your own domain ($35/year), get someone to forward mail to that domain (eg. these guys) and give everyone who needs your address a different one. If you receive spam you (1) know who sent it to you and (2) can delete it.

Do not spam slashdot

[Genyin]

with failed first posts.

WOW!!!

[qzulla]

15 minutes and I still get first post!!!!!

qz

fp

wtf? Is it cause I'm drunk or what?

Consider the source

[levik]

Given that most of the unwanted mail I get nowadays is the Klez worm and some asshole named "Big Boss", I doubt this legislature will accomplish any meaningful solution to the spam problem. The answer ultimately has to come from the technological front.

Advertising!

[abirdman]

I can't believe they allow ads for Spam on TV!!

FP

FP hoe

Will this even work?

[da_spoon]

I wonder if this will work, as most spammers do not even have a real base of operations, so there is no way to fine them or do anything that the do not call lists can. That for the most part will cause this fail, as most of the respectable (if they can be called that) spammers will stop sending mail if you unsubscribe. The people that this list would be aimed at would not care if you are on a list or not, they just pound out messages and move on.

Colorado and Misouri?

[jc42]

So how do they intend to enforce it on spammers whose machines are in Libya or Togo?

Out of state and foreign spammers

[iamacat]

Will not bother to register in local lists. A poor user will have to add him/her self to the list of every state or country that has the law. S/he will have to trace the spammer to the particular location to sue them. And any states/countries that do not have a law will be spammer heavens.

Is there any established network that only forwards encrypted, signed mail, with sender identity verified by the ISP? I want to switch and encourage my friends to participate.

I'll provide the MD5 hash of my e-mail...

...but not my e-mail itself. Ha this is so smart.

gfsdgf

fgfd

A for the effort...

[overbored]

...but there's just no practical way to enforce these laws.

In the meantime, some solutions that actually work (or at least hold back the tide) are SpamNet, a collaborative spam filtering network, and of course the ever-unpopular PGP.

Easy to circumvent?

[strags]

There are already several companies that run "affiliate programs", whereby they avoid the liabilities associated with spamming by paying any Joe Public willing to do the job to "advertise" for them (this generally means spamming). When someome complains, they say "Oh my! We don't endorse spamming! we'll cancel that affiliate's account immediately!". Of course it's pretty obvious that they do condome spam.

Now, what if your 'affiliates' are overseas, and outside the reach of this legislation? Already over half my spam comes to me courtesy of China.

It would be difficult to hold the company responsible, since they can just claim that their affiliates are running amok, and it's not their fault. You can't prosecute the affiliates because they're not in the USA. So. Back to square one.

Money speaks louder....

[happers]

Congress has failed to pass any of the 19 national antispam bills introduced since 1999, thanks in part to lobbying efforts of the business community.
Yes the fines may be somewhat of a deterant but when politics is involved I agree that a technical solution is still the brightest hope of reducing the spam problem.

No!

NO! Spam is good! *cough* FP *cough*

fristpost

firstpost!!!!!!

FIRST POST

[icemax]

FIRST POST!!! W00T!

Just checking to see how many comments posted...

Since posting a comment in the only way to get a current count... I'm gonna guess... 250.

Hey! Is there a slashcode bug? Where's my comment?

It's vanished!

test

[cscx]

is this thread broken?

Harassment

[Kipper+the+Llama]

Actually, current harassment laws could deal with Spammers effictively. A "No Spam" list would more likely than not create an ineffective set of beauracratic rules that the states would have to spend millions of dollars protecting, because Spam companies would sue under the grounds that their right to free enterprise was being harmed.

That said, there are ways to get around spam. You can have an email that you give out to organizations you know you'll get spam from, and another that you've spider-proofed on your webpage. I began doing this last summer, and I've only recieved two pieces of spam mail in over six months. Also, once you click on the "opt-out" button, keep a copy, if the same company sends mail to you again, you can get them under current laws.

Sue the pricks!

[geoffrey+crawford]

I think that's great. And after it's been made an example, it will scare others away from machine-gunned spam.

Now if only it was law in Canada.

Applicable outside the US?

[quantaman]

If you can still be sued for emailing someone on the list if you're outside the US this should be a good thing. However my first thought is that what will end up happening is this list will simply become a convenient repository of addresses for spammers not affected by the law. Does anyone know how this law would apply to spammers outside the US?

Teeth?

[theNote]

It would award consumers $10 for each unwanted message that they receive, assuming they are willing to take the spammer to court. If they win the case, their attorney's fees would be reimbursed.

So the max you could get is $10 after a court case? Please.

Count me in

I'll be First!

first post? :)

Since no one is commenting, I 'll put in a first post then.

Finally...

[ice_236]

It's about time...

Re:Just checking to see how many comments posted..

Oh, I was wrong... 338. Well, 339 with this, but I'll add in a couple more within 2 minutes... say 345.

All this time and no posts?

Bullshit.

FP?

WTF? It's been, like, half an hour. Where are all the posts?!?

is something wrong with slashdot ...

[The+Other+White+Boy]

... or did somebody turn down the internet over here? this story has been up for an hour and a half, and i'm still seeing no comments. i need something to read, i'm bored at work, helllp.

Working Concept?

[dvanduzer]

I fail to see the example of the working concept being implemented. The article itself suggests that it isn't fair to compare do-not-call lists with do-not-email lists.

This STILL wont work...

[Jhon]

This wont stop spam from outside the country. This wont stop the abuse of open relays. It might be a step in the right direction, but it's not going to do much good putting our thumb in the tiny crack in the damn when the water is flooding over the top.

-Jhon

How about letting us read the posts?

That would be swell.

Yeah, that'll work...

[Kozz]

How would this be enforced? When you are telemarketed (phone call from business) but are on a do-not-call list, you can ask the business for their name, etc and they'll generally be honest with you. Then you file a complaint with consumer protection (or pick your state agency) and it can be handled.

But do you really think if someone violates this "do-not-email" registry that they could successfully be tracked down? Forged mail headers, relaying... Even if you do track them down, there's burden of proof. Get the sendmail logs -- oh, but those could be forged or whatever by an "insider" to wipe them clean... I mean, how do you possibly enforce this?

I'd be more than happy to be informed that I'm mistaken, that it'd be no problem. Please, someone speak up. ;)

First Post?

It probably isn't, but I don't see any responses.

frist prost

Due to excessive bad posting from this IP or Subnet, comment posting has temporarily been disabled. If it's you, consider this a chance to sit in the timeout corner. If it's someone else, this is a chance to hunt them down. If you think this is unfair, please email moderation@slashdot.org with your MD5'd IPID and SubnetID, which are "f599d119dcbeb3ec78e03b3c6ea5ecf0" and "ed634f2c54b56a6d96890632fce00d42" and (optionally, but preferably) your IP number "12.233.218.43" and your username

What if

[Gyan]

spammers place themselves on this list ?

Does that mean no one can email them to tell them not to spam ?

Man, so snide!

[SirSlud]

The government is slow because its big. Not because its stupid.

It takes a long time to wait before technologies mature and stabilize before anybody would waste my tax money on enforcing it.

Look at the car .. the telephone! This is a good move, why give it a backhanded compliment?

Proud of Colorado

[rhaskett]

As a network administrator who lives in Colorado and deals with the daily deluge of SPAM that floods my corporate email server I raise my glass in salute to the lawmakers who are diligent enough to carry on the Colorado No Call tradition and carry it to SPAM email.

OK, this is WEIRD.

[sulli]

I posted something but can't see it - yet it appears after posting that there are 244 comments. All attempted FP's? WTF?

Spammers are terrorists, IMO

You are they know, they invade our privacy, and waste our time. Every bowel movement is a fecal feast. Every spam is a terrorist act,in my opinion. Spammers should be automatically enlisted in the U.S. Army after they're caught and their job title should be "Toilet Polisher". They will live the rest of their life learning the fine art of polishing toilets that our fine men and women in uniform have to use. They will shine our toilets until they shine brighter than the sun.

The only way to put an end to spammers is to make them shine toilets and be mocked the remainder of their earthly lives.

fp

f0rst poast
---
PGT Trollregard

Umm....

FP?!

Implimentation would be the key

[tacocat]

If they could impliment this along the lines of a DNS lookup server then it would be trivial for email servers to look up addresses.

Otherwise it sounds really cumbersome.

About time.

[Dystopium]

Oh wait I don't live in either or those states. Oh well, no protection for me. My state can't even get the DNC list working right, so why should I ever expect them to even undertake soemthing like this and have it work.

posting broken?

[imag0]

test (fp?)

This spells the end for spammers...

Due to international jib jab and all that whatnot it would be pretty easy to accidentally email someone you arn't supposed to... this would make spam unprofitable and it would go poof. Yay!

about time

about friggin time... I always wondered why we didn't have this.

1st post

GW Bush, your cock sucking was is unjastified.

Sounds good...

[DredPirateRoberts]

But will it actually do any good? Washington State has an anti-spam law and it hasn't stopped most people... althought I did hear of one guy who successfully sued using it.

"Do-Not-Call" lists really work...

[nucleon]

Prior to signing up for the Missouri "Do Not Call" list about a year ago, we would get 1-2 telemarketing calls each evening, usually during dinner. Now we get none.

I'm not sure if a "Do-Not-Email" list would be as effective, but if they were, I'd be the first person to sign up. I'm now getting close to 75 spam emails each day. Fortunately for tools like Spamassassin and the new Mozilla email client with built in junk email filtering, at least I don't have to look at them!

More laws would still be needed...

[alakazam]

...because there would have to be teeth to make sure that marketers abided by the list. But at least this sounds like a step in the right direction.

fp?

woohoo!!!!

If spam is outlawed...

only outlaws will spam

fp!

We can always hope.

[Shanoyu]

Unfortunately I find that do not call lists generally fail. At the very least telemarketing isn't as bad as e-mail spam because you can take out your personal problems on a telemarketer and ask them why in the name of good, christian decency they've taken up such an ignoble profession.

I doubt that there is really a way to deal with the email spam problem other than passing legislation which allows for the seizure of computer equipment of businesses which use the practice. Until we have some way of actually putting a penalty for doing so, it will continue.

fp

fp

There is already a solution....

[mat+catastrophe]

Two, actually. They're called, "delete" and "filter."

Nice try...

[count3r]

Good idea, but you gotta figure that a lot (most?) spam comes from places and people who are just going to laugh at any kind of list like this.

Opt-out by domain

[rebbie]

I'll be happy with this kind of solution if I can opt out by domain. Otherwise this will be completely impractical for ISPs and those with lots of domains and email addresses.

I bet that if this does get implemented the registries get swamped with requests just like the do-not-call ones.

Well...

[__aafkqj3628]

The problem is that there would be hardly any way to enforce this because millions may put their email addresses on the list just so that hundreds of spammers can get a fresh batch to add to their spam lists.

I'd be too scared to put my email address on any do-not-spam me list as it would probably cause more trouble than it would solve. I prefer my method - email of 10000 forwards.

WTF?

Why are there no comments on this article?

Large pot o' delicious honey

The accumulation of a large list of valid email addresses in one place seems very faintly hazardous, unless it was done as a large registry of do-not-email hashes instead.

Free e-mail lists for spammers?

[greenrom]

...The Colorado Junk E-Mail Law would require companies to pay an annual fee of up to $500 to access the registry.

In Missouri, companies would have free access to the list...

So let me get this straight. For $500 any spammer can get a huge lists of e-mail addresses from Colorado, and Missouri is going to give their list away for free. This might actually be effective if all spam was sent from Missouri and Colorado. But since laws like this can't be applied and enforced globally, the end result will be more spam for people who add their names to the list, not less.

Will most spammers even follow the law??

[altek]

This would probably help cut down on spam from a lot of larger American companies, however, most spammers are shady and try to get around laws and hide their identities as it is. I'm sure the law will dictate that the spam cannot originate from a mail server physically located in the States, so the spammers will just originate (or bounce) messages from a server located outside of U.S. turf. Not to mention the relative ease of forging email headers.

I don't think they could enforce the law on anyone outside of the States, and I'm sure most spammers won't care.

So I kind of doubt it would be all that effective.

-due to inflation this is now only my $0.0006

Its about time

[Biohazardous]

I've always wondered why there wasn't something like this... Of course its only a matter of time before most of the spam moves itself out of the U.S.A. and we're right back where we are now.

Breaking things

[hackwrench]

Why try new ways of breaking things when the old work so well?

Bandaid for decapitation?

[fredistheking]

Does anyone think this will have the slightest impact on the amount of spam they receive?

--

yeah right!

first post? bleh.

damn spam

[ThePeices]

Its a damn pity this wont help the rest of us net users outside of the jurisdiction of this bill. Spam is seriously getting out of control. But i cant see it being dealt with worldwide properly anytime soon.

It would never work

[Arawn]

"Legislation introduced in Colorado and Missouri would create a central database of residents who don't want to receive unsolicited e-mail and would allow consumers to sue marketers who ignore their wishes."

This is a nice idea, but most of the spam I get is forged so knowing who to sue would be hard. Plus, I'd worry that spammers would just use the do not email list as a source of email addresses. With phone calls, at least, you can trace who called if you need to. Trying to trackdown hijacked-account@foreign-isp.com will be much harder.

Sounds great, but

[phobokleon]

What happens if the person generating the spam is located overseas? For telemarketing, international calls carries a large price, but emailing from outside the US can be done without much effort. This would just move all spam offshore. Might help for spam filter purposes!

$10 just isn't worth it

[Black+Copter+Control]

It'd probably take me about 2 hours (if I was lucky) to definitively track down the bastards who actually sent the email -- definitively enough to be sure of collecting the bounty. At that point, the $10 is well below the minimum wage (especially when you add in court time).

About the only real hope would be to turn it into a class-action suit, and go after them for a few million dollars (plus punitive damages).

Re:$10 just isn't worth it

[Black+Copter+Control]

I think that these bouunties would only be able to do any damage to these people if we were able to sue the people who paid for the spam,, not just the spammers themselves. It's usually easy enough to track who paid for the spam (e.g. via credit card transactions). On the other hand, figuring out who hacked somebody's Windows firewall to turn it into a spam-router is a completely different problem.

It works in theory

The problem is, People may use this Do-Not-Spam list as a source for mail addresses that they may not have yet.

We should just make it illegal to even send messages like that.

I'd love to get less spam, but it just won't work.

FP?

FP? or are comments disabled? hmmmmm

FP

frost pist!

Still No Comments?

Its been an hour and a half, and there are still no comments?!?

SECOND POST

[Ricky+M.+Waite]

MOTHERFUCKERS

I for one, hate first posts.

This is the fourth post. Or not.

But anyway, I LOVE SPAM. I only get one a day, FILTERED!

Love,
me.

Perfect spam solution

Here's how it works. Every time you receive a spam email you generate a random number between 1 and 1,000,000. If it comes up 372,898 (or any number of your own choosing), it becomes your mission to hunt down the spammer and...kill him. Yes, kill him, as in murder. Torture may or may not be involved depending on whether you can get away with it.

/. will take care of them

[Cumstien]

After seeing the treatment Alan Ralsky got just throw the spammers to the vultures at /.

No new posts?

Odd

hork

blah

nice idea

[pyr0]

I happen to live in Missouri, so I am hoping this goes through. I have heard rumors in the past about such legislation being proposed. One thing I want to know is what are the exceptions. Missouri currently has a no-call list, but there are certain exceptions to this (like alma maters calling you and hitting you up for money). However, I really can't see the majority of people actually taking up violations in court. Hell, a lot of times the spam just gets bounced through some unsuspecting person's insecure mail server. What happens in this case?

contact info

[wholecake]

Well, due to all slashdotters trustworthyness, i'm posting my personal info, I'm not worried that it will be missused cuz i'm on this new do-not-call list. Heywood Jablowme 208-452-2397 34th ST, Apt B. Chicago, IL 60052 heyblowme@spamme.com SSN 269-32-9979 CC: 3295 3930 3320 6598 Visa-02/05 Mothers Maiden Name: McCrevis Checking Account Number: 5903239 USBank PIN Number: 403990 Best Time to Call: between 8pm and 9pm Favorite Hobby: Buying stuff on tha late night TV show CVS. I've purchased many useful items, Ronco food dehydrator, Handy Stitch (sewing machine), Titanium Knife set (the one you can use to cut up a leather shoe and slice a tomato) etc...

What about outside of the country?

[Blaine+Hilton]

What about email relays in India? What are they doing about THAT?

I don't like spam

I don't like laws either.

1st post PLANE CAMPERS SUCK AAAH

AAAH YEAH THEY DO SUCK

test

[(startx)]

this is a test of the emergency messaging system. This story has been posted for over half an hour, and yet I don't see any comments. If this message is successful, feel free to mod me down, and it is only related to me testing to see if /. is broken or my browser.

On a semi-related to the story note: I'm on the missouri no call list, and it works great. I recieve way fewer telemarketing calls than a did a year ago.

Then there is hope?

[jlrowe]

I've been hoping for something like this, that really works.

I am in Indiana, USA, and Indiana passed and put into action a 'Do Not Call' list a year ago. And the great thing is, this one really works for keeping out the telemarketing calls. I used to be annoyed by them very frequently, and often in the dinner hour. But it has gone completely quiet since I signed up for the list.

One downside is that local businesses that used to be able to call around town locally, can't do that anymore. They need some kind of lead in by the customer before thay can make contact. So, while I think its great, their business is hurt somewhat.

wtf

[wr0ng]

is going on?

A Good Thing?

[s0rbix]

Read this from the CAUCE website:

UCE (Unsolicited Commercial Email)is the leading complaint of Internet users. But junk e-mail is more than just annoying, it costs Internet users and Internet-based businesses millions, even billions, per year. Junk e-mail is "postage due" marketing; it's like a telemarketer calling you collect. The economics of junk e-mail encourages massive abuse and because junk e-mailers can get into the business very cheaply, the volume of junk e-mail is increasing every day.

I just do not agree with this comment. Is there anyone from a business who can testify to billions of dollars lost to spam?
(Personally, I don't mind spam. It only takes a few seconds to delete)

Comments broken?

*taps mic*

This thing on?

1st

[telstar]

I'd be first to sign up for this one.

A longer list...

How about a do-not-give-a-fuck list. Do these spammers care about a do not call list? No. And would the smaller sects of government be able to handle things like ip addresses and email headers? No. They have enough problems with phones.

sfsdfsdf

[Spock+the+Vulcan]

sfsdfsdfsdf sdkj hied aeika fi.

woo

yay

first post?

Slashdot Censorship

What is going on?

The bastion for "free" speech is dropping posts AFTER they appear on the main page.

So much for "Your Rights Online"

Hrm...

[autopr0n]

I wonder how it will handle things like amazon's email marketing and the like. Is everyone who runs a mailing list going to have use these things to look up 'do-not-mail' address?

OTOH, if they allow 'existing bussness relationship' we'll all still get tons of spam from people who think that paying $10,000 for a list of email address is the same as me 'opting-in' for a 'partner' site.

yea right

[tyrnight]

this will never happen

When in California?

[rossz]

I want a do not spam here in California, but not one with a loophole for politicians an charities.

Hell, I don't even like most of the elected talking heads here, anyway.

Great!

[djrogers]

Now Mr Numbatu from Nigeria will have a new list of verified 'trusted associates' to help him get his $50 Million worth of gold out of the country!

--

Seriously though - doesn't the international nature of spam and the 'net preclude this sort of thing from working in real life? And don't compare it to offshore telemarketers - they generally have goods or services that they want to sell you right here in the USA, so whomever would benefit from that transaction can be pursued and found at fault for voilating a DNC list.

Spammers on the other hand could be promoting a Swedish porn site, a Jamaican on-line casino, or a UK based match.com rip-off, all without any fear of reprisal...

no posts yet?

the first post ppl are taking their time...

Why has a backwater state gotten this

[Rooked_One]

but the larger more IT literate states have not? Don't get me wrong, i'm right next door to missouri and would love to see this in my state, but why haven't the cali's and texas's done this yet?

IN FASCIST USA

Patriot 2 is coming folks.

"It authorizes secret arrests. It would give the Attorney General essentially unchecked authority to deport anyone who he thought was a danger to our economic interests. It would strip citizenship from people for lawful political associations"

I Don't Love Big Brother

Comment removed

[account_deleted]

Comment removed based on user account deletion

first post mazzah fackahs

eat it, hahaha

First Post ?

Hahahhahahahahhahahahahahahahahahahahahhahahahahah ahahahahahahahahahahahhahahahahahahahaha !
Christian Bedard Is Gay !!!!

odd slashdot.

somethings not working right tonite.

"Working concept?"

[Jay+L]

Michael, pray tell, what, exactly, about providing a machine-readable, easily-parseable list of valid, active e-mail addresses - in order to STOP spam - is a working concept?

It sounds good, but will it ever exist?

[Nipsy356]

This sounds like the do not call registries which seem always to be postponed to a place just past the horizon?

Now if only it worked as well...

[wmspringer]

I live in Colorado, and I tell you, you would not BELIEVE the effect the no-call lists had here. In the days leading up to the law taking effect we were getting a dozen telemarketing calls a day...now, none :-)

Granted, I'm currently not getting any spam, either, since I just changed email addresses...but that isn't something you want to do every day :-)

yeah, right.

[ignorant_newbie]

"here, this is a list of people who do not want to recieve spam from you".

since most of the spam i've recieved lately has come through open relays in asia, how id the state of colorado going to help?

ima teh poster.

[floamy]

ill post.

First Post

First Post....?

wft

Cat got your tongue? (something important seems to be missing from your comment ... like the body or the subject!)

In Washington....

[marshac]

In Washington state, we have a do-not-email list that Washington residents can sign up on. Does it work? Sorta. I have heard about people using the law to sue spammers, and actually generate a decent income. This wasn't the intent of the law however.... it's supposed to cut down on the crap in my inbox. The main problem is that most of the spam I get these days comes from other countries. For some reason, I doubt the spammers are losing much sleep over our anti-spam laws.

At least they are doing something

[EnlightenedDuck]

So the acknowledge the problem, and hopefully if this fails, they'll be more receptive to something that might work

Sporg

[e144539]

You will be SPAMed, resistance is futile.

Why this won't work...

[gnovos]

It works for phones, because phones cost money, especially if you are from overseas... Email costs nothing, so having a big long list of VALID email addresses is just asking to be abused by off-shore spammers.

Hello? The best possible resource for spammers....

Here's a convenient list of
x million email addresses we'd
like you to spam from our server
in Indonesia

I�m easily confused...

...but who exactly will be held responsible for spamming e-mail addresses on the list? The company using spam services to market its products or the spammers providing those services?

A list of people to spam

[ziegast]

A user in a foreign country does not care if they violate the law and spam a user on a 'do not email' list. In fact, they are very likely to use that list as a source of addresses linked to real people. The proposal is misguided.

The net will eventually be a confederation of people sending mail to people on their whitelists and blocking everything else.

-ez

Comment removed

[account_deleted]

Comment removed based on user account deletion

SPAM

[jhirbour]

I hate SPAM good for the government!!!!

W00t! first post!!!

Circumcision for all

Alan needs his cox trimmed before his foreskin gets caught in his zipper. Linus has the same problem, but a free circumcision by a competent mohel like stallman should do the trick.. Let's all have a charity drive so we can pay for their circ's. Here's a video of the procedure. circ video

Not many replies

[TalonKarrde989]

Odd. Well...At least I don't see any replies.

shit

shit

# Important Stuff: Please try to keep posts on topic.
# Try to reply to other people's comments instead of starting new threads.
# Read other people's messages before posting your own to avoid simply duplicating what has already been said.
# Use a clear subject that describes what your message is about.
# Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page)

Problems regarding accounts or comment posting should be sent to CowboyNeal

Pefect world

[D4Vr4nt]

Ya.. Maybe in a perfect world you could stop spam.. Pffht. While you're at it you better turn off your TV.

fp!!!

fp!!!

a bad method, but a godsend

[dirgotronix]

As a colorado resident that recieves more than 100 unsolicited emails per day, I'd have to say that this is a godsend.

the actual bill link is here.

Although it says we have to hunt down the spammers and take them to court for the $10 per message, for those of us that are willing to go through the trouble, that's like, over a hundred bucks a day!

It's better than having a full time job! I love it!

fp

First Post@!

Is this thing on?

hello, hello?

gogo,fp

FIRST,POST,GO,GO

Do not call lists...

[Justen]

Are a great idea, as is this. DNC lists aren't as effective as we'd love for them to be, but that's all right.

The real benefit here is the possibility to sue for damages. If your email is on a "do not email" list, then, perhaps you could sue...

The unfortunate part is that with so many states, this will end up being a patchwork of different laws that may not end up have that much impact. :(

justen.

About bloody time

[Goldberg's+Pants]

Even though I'm not in the US, I'm gonna be signing up for these!

Sounds Good

[Mathew+Lankard]

But who would enforce it?

fp

fp w00t

resistance

[stonebeat.org]

I thought there was lots of resistance against Do-not-email list.....

Slashdot's Acting Funny...

[VoidEngineer]

It's been nearly an hour, and slashdot's still saying that there aren't any posts to this article...

I'm sure I posted nearly an hour ago on this topic.

Testing... 1, 2, 3...
Testing...

fp

props to billy, jp, and meeee!

woot!

!tsop tsrif

Fantastic!

[darkov]

(1) Consult do-not-email list
(2) find open relay outside of law's juristriction
(3) ...
(4) Profit!

~cheap source of valid addresses to spam, yay.

[\\]

sure, a company in the usa might not want to risk being sued, but im sure Spamhaus Corp in Asia won't mind paying five grand for addresses that surely work.

heh

heh heh heh. :-]

C++ RAWX

This would be a boon to out of country spammers

[Music+To+Eat]

Spammers based in other countries would love this, they'd get a huge list for little ($500) or no cost, and since they're not in this country, face no penalty's. Where do I sign up?

Bad thinking

[Cali+Thalen]

"At this point, I think the technical approach has more promise than the legal one," said Sorkin. "Filters have done more to block unsolicited e-mail than any piece of legislation."

I hate to see conclusions like that. I mean, if we all wore bullet-proof vests, would we need laws against shooting people? It's this kind of thinking that gets us into situations like having to deal with the 2.3 billion spams per day. And, no mention of what that's doing to the world's bandwidth....

never..

I'd never put my address in such a registry. I wouldn't trust spammers to not use the list as another big list of potential targets.

It would leak one way or another, and then the account is sunk. Better to keep beneath the radar!

Yeah right

And how about people from other countries who don't obey our laws? They'll use the list for free email addresses. US spammers will simply move offshore. I prefer Lessig's bounty idea.

Still no reply

I put in a reply almost an hour ago to this story and it didn't show up. What a bunch of crap. Fuck ./ for censoring me. What a bunch of coks.

First Post!

[iLL_L0gic]

Alright, First post.......don't have anything else to say besides that. heh

fp

sdfsdffdsfsdfsdfsdfsdfdsf!

A new spammer list

[COredneck]

I can see this becoming a bonanza for SPAMMER's since they will have a list to then abuse. They have no repect for anyone except themselves.

They dishonor e-mail removal request by send more SPAM instead

They have been very elusive in being tracked down

When they abuse foreign countries, they will end up being beyond the reach of Colorado and Missouri

I have one e-mail address which I don't use except for domain name registrations since the addresses are required. I get deluged with 80 spam messages each day. It is a pain ion the ass having to unload that e-mail box each day. In their arrogance, they mentioned that I opted i to receive their commercial messages. I don't think so. They are well known for being assholes on the Internet and thank to SPAMMER's, they are making e-mail pretty much useless as a communication medium.

PepsiCo 4th quarter profit up

PepsiCo 4th quarter profit up

NEW YORK: Food and soft-drink maker PepsiCo Inc has reported a 21% jump in fourth-quarter profit, led by growing sales of its Frito-Lay snacks.

The company also announced the creation of a new division to focus on salty snacks, headed by former Frito-Lay chief marketing officer John Compton as president.

And, following the lead of many other companies, including soft-drink rival Coca-Cola Co, PepsiCo said it would from now on stop issuing quarterly and yearly forecasts.

Chairman and chief executive Steve Reinemund asserted, however, that the move away from specific guidance was not a signal that PepsiCo was any less confident about its future.

The company, whose other products include Doritos tortilla chips, Quaker cereals and Gatorade drinks, said it believed that in the long run, it could "sustainably" increase volume and net revenue at mid-single digit percentage rates and earnings per share at a low double-digit percentage rate.

For the quarter ended Dec 28, 2002, PepsiCo posted a profit of US$805mil, compared with US$667mil a year earlier. Sales rose 7% to US$7.46bil in the latest quarter. - Reuters

First post?

I managed to read the whole article and still get a first post!?!

The Colorado No Call List works

[finse]

I have been on it since it started. I could only hope that the No Email List passes. That would be so sweeet....

Yeah Right

[Influxx]

Most spam goes through so many remailers and comes from so many different sources it would be impossible to ever enforce this. The people who should be sued are the companies who advertise. If business dries up for the spammers it would no longer be so profitable for them. This is something that needs to be done on the federal level not the state level.

stop the spammers with a central email list

[ses4j]

Legislation introduced in Colorado and Missouri would create a central database of residents who don't want to receive unsolicited e-mail...

Great, we'll stop the spammers by building a huge central repository of working email addresses, and then give access to the lists to spammers worldwide. How could THAT backfire?

scott

HOLY CRAP

ok this stories been up for 2 hours and still no FP yet! ...until now...
this story claimed in the name of the republic.

It's a trap!

[bytesmythe]

This is probably just a sneaky way to collect more email addresses. I can see the new stuff now....

"Tired of spam! Buy SpamFilter Plus!"

It might be a welcome change of pace from the nude webcams, penis enlargers, and instant-Ph.D.s, though.

This doesn't sound like it will work

[saskboy]

$10 per spam, and legal fees covered, still wouldn't be worth my time. It might for someone who gets about 20 spam from just ONE spammer, but finding out if it came from ONE person would be a big 'ol pain.

Unsubscribe from this idea by clicking here.

Finally!

[sethadam1]

Finally, an idea that sounds logical. Of course, with forged packet headers, open relays, and a global internet, can any of it actually be enforced!?

First post!

Posties!

Good and bad idea at the same time...

[DragonPup]

'Legitimate' spammers will actually adhere to this. On the other hand, spammers who do not care for the rules have a nicely prepared list of real email accounts.

FP?

First post?

first post!!!

fp bitch

2 hours later...

...and still no posts? is slashcode screwed up?

Questionable effectiveness against UCE

[ted_the_canuck]

Some problems are that many UCE messages come from unprotected relays/proxies, and dedicated spamhausen are often located offshore, having been booted from local ISPs. There is also the requirement of proving the origin of said messages. I suspect that legislating anti-spam rules won't be as effective at reducing this annoyance as lawmakers hope. When I look at the number of messages our mailserver blocks using rules from DNSBL servers, I am amazed at the amount of junk spammers are trying to send through open relays and directly from spam houses. Blocking helps somewhat reduce the amount of spam, but still there is a lot of junk that gets through.

FRIST POTS!!11

Shut up :|

Nice thought...

[ackthpt]

It's a nice thought that state governments have the backbone that Washington DC lacks. Of course, these state assemblies are likely to have more people from close to where you live, so you can go over to their house and give them a piece of your mind, whereas US Reps. and Sens. usually hide behind a local office. I've raised a stink in DC before, I won't take credit for it by even mentioning it, but after my pointed comments in the house lunch room there was enough silence to hear E. F. Hutton blink. Unfortunately I now live about as far away, in the lower 48 as is possible, from that hive of scum and villainy. That and they probably have a picture of me pinned up somewhere with the word 'troublemaker' in bold letters beneath it.

I'd like nothing less than each spammer must seek my personal permission before being allowed to solicit me. And nothing as much a lie as the disclaimer I see in much spam 'you get this email because you visited one of our sites and asked to be added to our mailing list.'

"heck, I didn't even know there was such a site as Malda's House of rare and exotic used keyboards..."

fr0st psit?

btchz

Is this topic dead or what?

Or is it me? or has NO ONE commented?

Off-shore

[tmark]

What are these plans going to do about all the spammers operating off-shore, or even just in the next state ?

Only post?

Is the comment system broken, or is this story really just that boring?

First Post?

ahahhaa

Go parity!

[rice_web]

Thank God! It took long enough to get telemarketers off our backs (more or less), and maybe (hopefully) we'll finally get an inbox without three hundred SPAM messages sifting through the junk filters. It's good to see an equal view on SPAM, be it telemarketing or inbox.

More stupid opt-out registries to help spammers

More dumb registries to help spammers get lots of valid email addresses. I don't know of the legislators are stupid, or just don't care about the problem (and only want sound bites to pretend they're helping).

A nice example?

A nice example? More like the only example I've heard of in a long time...

Oh, and early post...

Bring on the cans

[PetWolverine]

I wonder how long it'll take this sort of legislation to filter around to the other states and up to the Federal level. Hopefully these laws will pass quickly, be effective and set a precedent that will bring spam down to a tolerable level everywhere.

Meanwhile, back to hitting the delete key...

Colorado: Decent privacy laws for the most part

[forkboy]

Colorado has pretty progressive privacy laws for a mostly Republican state. The do-not-call list for telemarketers here is working famously...I have not received a single telemarketer call since it was implemented, and very few from the "permissible" organizations. (i.e. charities and politicians looking for handouts, which I dont mind as much anyway)

Aside from the Denver Police Department spying on peaceful protestors and sending the information they collect to the FBI as well as keeping their own records, they tend to respect the privacy of their citizens.

I can see an anti-spam law passed here easily...the hard part will be enforcing it, especially with overseas spammers. Aside from a state firewall that null-routes traffic from China (this is sarcasm, laugh) I don't see it being nearly as effective as the telemarketing ban.

Hmm...

First?

Can I use wildcards?

[Ungrounded+Lightning]

Can I register all the user IDs on my domains with a wildcard entry?

This sounds good, but...

[cdf123]

As the article points out, there are a lot of issues that need to be addressed. Not all spamers are in the US. A large amount of spam is forged. And the Colorado law sounds like it will draw in fakes that are just out for money, and thus, waist the courts time. And whats in place to protect those lists? What if they get hacked? Now we have illegal spam from forged addresses comming from outside our jurisdiction causing conjestion in our courts from gready people out to make a buck.

I think they need a new plan... Untill someone gets an international plan set, it will be difficult to crack down on any spam. I'll stick to my filters, thanks.

borked test

This has been on the main page for hours and no posts... I'm posting to see if /. is borked or what, please forgive me, I know this is entirely OT, but it's a test of the /. system.

This is only a test.

A new approch

[l810c]

Let's just all talk at once, then we can read eveyone else's comments.

what the heck?

where the fuck are the posts? is it broken? is slashdot hacked?

strange..

I see no comments in a two hour old thread? what's up?

get 1000000 addresses here!

[vericgar]

and what's going to stop some spammer in Korea (or behind a korean open proxy... that's where most open proxies on my block list are) from using the do not spam list to get addresses? really we dont have enough of a worldwide government to control this to make legislation on this actually work.

It's either this or the dual pain hammers.....

The best way to deal with spammers is too find where they live and kick them in the face with a soldering iron.

echo echo echo

Is this thing on?

Futile

[dubbayu_d_40]

You know, if you sit around waiting for someone to stop the spam for you - you are one dumb mofo. Stop requesting fills using your real address...

jsmith@yahoo.com

This won't work

[dacarr]

And I'll explain my pessimism. There was an outfit in mid 1997 called the IEMMC - something like the International Electronic Mass Mail Coalition - and had offices in Las Vegas (!). Their bent - you unsubscribe with them, you never get spammed by their members.

They failed in one month due to pressure from the antispam community.

The spammers in short are not going to listen to a list.

Who has the time to go to court?

[Vapor8]

It would award consumers $10 for each unwanted message that they receive, assuming they are willing to take the spammer to court. If they win the case, their attorney's fees would be reimbursed.

Once again, the burden is put upon the consumer. How many of us have the time to prepare and actually got to court, just to win about $100 (if you got 10 emails)? My time is more valuable than that.

Why don't State (and the Feds) governements get it? As long as the 'process' is a burden on the consumer, it won't work in the long run...

What we need is for some severe penalties and possibly jailtime as a result of sending unsolicited spam. Get the consumer out of the loop. Heck, in many cases, the consumer is too busy cleaning out their inbox than having to deal with going to court, etc...

Sorkin's solution

[the_truk_stop]

"At this point, I think the technical approach has more promise than the legal one," said Sorkin.

Frankly, I disagree. An entirely technical approach may reduce the amount of spam individual users receive, but where will the filter be implemented? If at the ISP level, it may be badly implemented and cause false positives without the user's knowledge. If at the user level, the user would still have to download x number of messages and have the technical prowess to implement a filter themselves.

Blah

blah blah first post?

hmmm..

no comments visible in this article? slashcode gone awry?

hmm...

[Doppler00]

Okay obvious question. What happens if this 'do not e-mail' registry gets into the hands of spamers? I wouldn't want my e-mail sitting in some giant database waiting to be hacked into. I think better enforcement would be more efficient in dealing with the problem.

Other countrys?

[Sediyama]

And what the government would do with the mails that came from other countrys?

Hmm..

I find it hard to believe that this will work, especially considering the telmarketers dont follow the laws about do-not-call lists...

frist

p0st

Where is everybody?

[damiena]

First post...

2 1/2 hours after the story was shown? I feel strangely alone.

cardinal rule

uh... thou shalt not email without consent?

If the list is avalible....

[manly_15]

...then what will prevent spammers from taking and exporting the list to where they aren't affected by any consequences, like Asia? And if it's not avalible easily, then how will the spammers know not to send email's to a specific address? Seems like a catch-22.

Problems with posting? Or no interest?

I wonder which it is...

broken...

....'replies' broken.....

Just creates a very lucritive database

[Darren.Moffat]

All this does is create a very lucritive database that the spammers will want to get hold of. Sad but probably true.

I'm also really confused how the State of Colorado believes that companies will pay to find out who they can't contact, when they can just ignore the list and contact lots of people. A spammer really isn't likely to fork out money to find out who not to email - because if they accidentally email people on the list it reduces their defence in court.

FP

FP 1/2

great

[unclelib]

Sounds like a great idea. The do not call registry has almost made the unsolicited telemarketing calls a thing of the past at my house.

Do-not-call lists

[the_truk_stop]

There appears to be actual consumer-protective teeth in these bills which mirror the telephone 'do not call' lists.

As previously posted on Slashdot, would such a "Do not email" list prove effective? I remember reading an interview in Maximum PC with a "spam king", who blatantly stated that he refused to obey the laws of the states requiring "ADV" in the subject lines of spam emails. Why? Because he found that it thwarted him from getting spam through to people, since the emails were being blocked at the ISPs.

My point is that it may still be profitable to spammers to email those people on the DNE list anyway, if the percentage of recipients who take legal action is low enough.

This is useless

[Goonie]

This is yet another version of opt-out (which has been discussed ad infinitum as a bad idea), and is is restricted to one state (and is thus completely useless to deal with what is an international spam problem. Try suing Romanians in a Colorado state court).

Next!

But can they really enforce it?

[mrtorrent]

Could they really successfully track down all offenders? Do they have the resources to do so, and are they willing to use them?

fp?

no way

Good Idea.

[irc.goatse.cx+troll]

I should start one...
Greetings, friends. Do you wish to look as unspammed as me? Well, you've
got the power inside you right now. So, use it, and send one dollar to
DontSpamMe Dude, 742 Evergreen Terrace, Springfield. Don't delay, eternal
spamlessness is just a dollar away!

What if...

[Vulturejoe]

...spam companies just use this like their existing opt-out options, in which what your really doing is just verifying that yes, this email address does exist, and essentially just signing up to get more spam?

Seems nice, but...

[goldspider]

...how would you actually track down the source of the e-mails? With telemarketers, they at least identify who they are. With spam, it could be coming from anybody!

Jurisdiction?

[sam_handelman]

Will this cover e-mail sent to any address belonging to a resident of Missouri?

So, if I give a collaborater at Missouri State an account on one of the computers in my lab, and it gets spammed, Missouri has jurisdiction? I'm in New York, by the way.

If not, how can Missouri have jurisdiction over AOL or hotmail?

how to keep track

[mAineAc]

and how do you keep track of where it is coming from? most of the spammers have fake email accounts coming from open relays adn can't be traced. how do you go about sueing noone?

Why no replies?

wtf?!?!?

No posts for 2 hours?!

Is posting broken?!

Or has the great Slashdot BlackOut returned?

*poke poke*

Is this thing on? flibbertigibbet

This is good..

nice effort, hope to see it in action :)

Call me a heretic.

[mr.+methane]

I think the only way to reduce the growth of spam is to make email have an absolute, unavoidable cost to the sender, unless the sender is already known to the recipient.

The postal service would be the likely agency to administer and enforce this rule.

Before you fling rotten fruit, think about it. Would you pay $1 per month to avoid having your mailbox fill up with mortgage refinance offers and porn?

Overseas

[justinkim]

Most of the spam I get originates from overseas relays and point to servers in other countries (usually mainland China). How is are these state laws going to help me?

FIRST POST

A lesson to be learned today... Always keep an ejaculating ASCII penis in your clipboard.

(_)_)===(,,,)===D ~o ~o ~O

1st post

It's lame but BOB 1st post

Add me

[FozzTexx]

I'm going to register
.*@.*

Missouri?

[asparagus]

The day my state becomes the leader of the tech revolution is the day hell freezes over.

(goes to find a coat)

-Brett

Not enough

[Smallest]

I want to be able to track down the fuckers who send me the kiddie porn HTML spam (complete with pictures of 13 year olds with all their stuff on display) and kick their teeth in.

What the hell did I do to opt into that list? (rhetorical question. the answer is nothing)

-c

overseas users

[Brian+Boitano]

will it work for people outside the US?

Why not just...

[josh+crawley]

Own your own domain and sub-let email boxes: dell@domain.com , MS@domain.com and the like.

When "spam" comes, you know who sent it to you.

I can't see how this hare brained scheme can help

[Muggins+the+Mad]

Surely an opt-out list is *exactly* what the spammers want. That way they have a list of sure email addresses that they know people read.

If you don't put yourself on the list, spammers feel justified in harassing you and there'd be no sympathy from the court system. if you *do* put yourself on the list, you're an even better target because you've just verified your mail address for them.

Sure I'm going to take the 30-40 people who spam me daily from other countries to court for a slim chance at a measly $10.

- MugginsM

whats with charging for access???

[simeonbeta2]

$500 to access a db? Shouldn't they at least offer free download of a flat file with the addresses?

Course if they do that, does anyone else see international spammers using the "opt-out" list as a db of known good emails?

sdfg

[Rooked_One]

sdfbd

Futile....

[King_TJ]

As a resident of Missouri myself, I think this law will largely be pointless. Not that I'm at all against getting rid of the spam - but the usual problem is in finding the origin of the email.

Sure, if you put in enough effort, you can usually get it tracked down -- but who has the free time to chase after this stuff, when it takes 1 or 2 seconds to hit "delete" and move on?

At least with the "no call" anti-telemarketing lists, you have such tools as caller ID at your disposal. (Not to mention, anyone trying to sell you a service or goods via phone pretty much has to give out some sort of valid contact info. Otherwise, how would you complete a business transaction with them? With email spam, they don't care if you're able to contact them with an email reply. They just want to get a generic message sent your way, or send you to some largely unrelated destination to buy the product or service they're pushing.)

Even if you do trace the original of a spam mail, these days, there's a good likelihood it came from a foreign country that isn't going to help prosecute the spammer.

first post haha

database down? :(

this is a great idea, but . . .

[randyest]

someone here unequivocally prove it to be a Very Bad Thing(TM).

Where did the comments go?

[FatalTourist]

Um. Hello?

what the hell?

can we not post?

first post

Gives a whole new meaning to suds.

FIRST POST!

Just kidding.

The only solution

[vivian]

The only solution for spamming is that which has been posted previously to this forum - charge the advertisers!

They are the ultimate cause of the spammer's actions, after all, the spammers aren't spamming for the good of their health - they are doing it as a service for their clients.

This should be prosecutable in much the same way that if I try to hire someone to break your legs I am just as responsible for any leg-breaking as the one that actually does it, or if I advertised my product by hiring someone to burn it into the Whitehouse lawn with acid. Since the businesses that are advertised have to be contactable or have some ultimate front that they present to their clients - be it a pr0n page, dodgy surgery or credit enhancing service, there is an enitiy that can be targeted and sued. This has to be easier than trying to chase and prosecute the spam agency that sent spam via some remote server in timbuctoo via a proxy out beyond the black stump.

slashdot sucks

no more messages? what the dilly yo?

maybe michael's idiocy has reached a breaking point with users.

you would

[majestynine]

untz untz untz

Three hours, no comment

Three hours, no comments, what broke in the Slashcode?

FP

First post!

where?

why dont i see any replys???

Very interesting

[majestynine]

what the fuck is up with this shit?

fags

fags

this has potential

[penguinland]

If this begins to go the same way that do-not-call lists do, I doubt it will be very useful. However, I think it would be great if the government could actually implement one of these. I am the webmaster of the college I go to, and I get roughly 30 spam messages a day. However, I don't want to use a spam-filtering program like SpamPal because I can't take the risk of having it delete a false positive. I think this would be wonderful. It might even give spammers the message that we hate what they do (for some reason, they haven't figured this out yet).

Don't give away lists

Two points.

a) if they do this, let's hope they give out a list of MD5 hashed email addresses, not real ones. Or better yet, "scrub" the list first.

b) I see an explosive market for Colorado based ISPs and email accounts

If there's a way to buy the product, there's a way to track down a potential defendent! Next, we need corporations we can "assign" our right to sue to. That way if someone from out of state spams me, I can collect. Maybe it would work like collections agencies.

slashdot problem?

This story's been up for hours and there are no comments... is this a sign of the apocalypse? or just a bug?

First post...?

Well, it seems to be empty.

Good Source of Addresses

[stilij]

I think we all know that these will be great sources of confirmed addresses for offshore operations.

huh?

What?

frist porst!

w00t

editors, something's not right....

Anonymous spam?

[dethl]

Whats to prevent these spammers from spamming you still? Couldn't they bounce the email off a couple proxies and cover up the real email address it was sent from?

Wha Hooo

First Post! Wha Hoo!!!

How come there are no comments?

Pretty much self expanatory.

From the Article

[Coffee+Warlord]

"At this point, I think the technical approach has more promise than the legal one," said Sorkin. "Filters have done more to block unsolicited e-mail than any piece of legislation."

And that's how it'll be till the end of time, or until the entire world comes under 1 rule, which then passes a law carrying ungodly massive penalties for sending spam.

Laws regulating the Internet just don't work. Too much real estate for anyyone to work out of.

A number of reasons why this won't work...

[Dimensio]

Spammers from other states/countries will claim that there is no jurisdiction.

Spammers will claim that their e-mails are not spam. One of the colloraries of the rules of spam (I believe that it's a collary of the rule that spammers always lie) is that spammers try to redefine spamming in such a way that they are not doing it.

Spammers are, without exception, immoral thieving scumbags. They won't care about the law, they just care about hawking their shoddy and questionable goods/services by annoying everyone they can and stealing as many resources as possible.

fp?

test

This won't work as well...

[Shishak]

Do-Not-Call lists work because calls can be traced, people have caller-id and most outbound call centers are reputable. If you are on a DNC list and you get called you can actually find the company that called you and sue.

Spammers are not traceable. Every open relay needs to be closed before we can trace.

Spammers forge From and Recieved headers so we have no 'caller-id'.

Spammers are not reputable, they know what they are doing is wrong and they don't care.

what?

[Hays]

Has nobody posted replies? this must be some sort of error.

Great news,

[YorkshireONE]

but how effective will this be when third party companies contract out their marketing to rouge spam operations hiding behind masked addresses.
Could they just claim ignorance?

I wonder

[KillerHamster]

how many spammers actually operate from within those states?

WA State has this

Washington state has had a law similar to this for quite a while now.

As a WA state resident who has put themselves ont he list, I can say it doesn't work worth a cr*p. How do you enforce it. When was the last time you got a piece of spam with a legitimate sender's address on it? It's just not worth the trouble to track them all down.

Thats nice but....

[Drakonite]

What good does that do to spammers who just go to a different state/country? And how much good does it do to spammers who spam as annonmously as they can? Am I going to get sued because some spammer spoofed my email address?

Frist ptos

[Sabani]

aya me had dar frit pote... maybe

Hit delete and get over it

Just hit delete. SPam won't kill you. Big babies!!!

Yay

Now if only the 745,434,231 companies that email me
every day wiould just read this list.

Where are the comments?

Nobody has commented yet?

And how long

[buss_error]

until those on ROKSO harvests the addresses and spams them from Koria?

About 2 seconds? And how will you sue them? Which court? And if you win, how do you get the assets of a company run by some chickenboner that hijacked said insecure proxy and left no logs?

Nope. This bill will be part of the problem. False sense of security and a target for those that oppose The Lumber Cartel (tinlc).

The Internet Has Melted Down

Never thought I'd get a furst post at slashdot.

Must be the end of the world.

oh shit son

first fucking post

Preemptive post...

[jcr]

I'm going to bitch-slap anyone who tries to claim that spamming is a free-speech issue..

-jcr

I doubt it will work

[term0r]

As far as I can see (and forgive me if I am wrong) this means that a resident in Missouri or Colorado can sue a Spammer if they Spam. Now what happens if the Spammers business is not a Missouri or Colorado registered company, can the Spam recipient still sue? If they can, what happens when the Spammer lives in a country where Spam is not illegal?

Considering most of my Spam originates from Korea, China, and other Asian countries, and an increasing amount from South America, is this law (or any future laws) really going to stop this?

We really need, as a start, a consortium of countries, hopefully including some asian and south america countries, to band together and make some global laws. Once these have proved successful there should be increasing pressure on other countries in join this consortium. Until then, I think users and ISPs just need to take more steps in developing Spam blocking techniques and precedures.

Footnote : Is really making spam illegal even going to stop Spam? If Spam was totally outlawed, each time you receive a Spam, are you going to Sue the Spammer? What happens if the spammer is hard to trace? How do you go about Sueing a Chineese Spammer? Maybe changing laws is not the way to stop spam, but what is?

Riight!

[Joey7F]

Hello,

I am a Junk emailer, but I really do not wish to annoy any of you that don't want to see my client's messages. Please add your email address to a very large, very public, and very visible internet database and I will be sure to not send you spam.

Thanks!

test

[kenthorvath]

testing

hmm?

I don't understand french.

would be nice...

[irving47]

But someone's going to figure out how to extract addresses from it, and spam from China.

Futile?

[pdxmac]

This makes me think of the case the RIAA/MPAA have going against Sharman networks (developers of KaZaa) in a CA court. So, if you can win damages (or, the states impose a fine), how do you collect from the spam companies outside of your jurisdiction?

I get 15 spams a day in Chinese. I can't read Chinese. How am I going to buy their product/report them for violating my state's no-spam list? How can I collect?

Good to be a Denverite

[rgraham]

The telemarketer no-call list is a great, I've had almost no phone solicitations since the law went into effect (still get one every now and again from my phone company). If the new anti-spam laws are even a quarter as effective it will be wonderful.

We know where you got the idea...

[telstar]

Do not email registries, huh?
How about do not post stories...

I see those are a raving success on Slashdot.

A little down on the government, are we?

[wirelessbuzzers]

A nice example of a government perpetuating a working concept instead of trying inventing new ways to break things.

Exactly. Mean, stupid old Uncle Sam can occasionally do something right. Occasionally.

First post

[Atlantis69]

FP!

Nothing better to add :P

Baaaddd Idea

[ssyladin]

Does this sound like a bad idea to anyone else? For $500 the illicit "Enlarge your penis" spam we all hate most of all can get a probably large list of valid e-mail addresses - and the companies will still be untraceable as they are now. They'll just have to pay a lot less for a list of e-mail addresses. What about "legal" companies outside Colorado or Missouri? Would the be prosecuted? Where?

This sounds like one of those great, feel-good laws that would be unenforcable and (as much as I hate to say it) just cost legit businesses money to cover their butts.

helping spammer?

[VoidVector]

Wouldn't this make it easier for spammer to get a huge list of email addresses?

do not post registry

for michael. either that or fire the 'tard

WHAT?

[zelphi]

So you give the spammer a huge list of do-not-email addresses? Wouldn't that be exactly what they want? Fresh emails? I'm already trying to keep my email address offline, I don't need it in a nationally readable list. Thanks, but no thanks

Preemptive Dissscusion Summary:

It won't work
Spammers are evil
The real solution to spam is $x
Wow, a state legilature is actully doing something

This story was up for two hours with 0 posts.
FIRST POST!!!

hey slashdot

maybe if you made comments appear instantly you wouldn't have to deal with twenty FP trolls like me every single story

Suck my dick, cowboy

Slow Down Cowboy!

Slashdot requires you to wait 2 minutes between each successful posting of a comment to allow everyone a fair chance at posting a comment.

It's been 1 minute since you last successfully posted a comment

Chances are, you're behind a firewall or proxy, or clicked the Back button to accidentally reuse a form. Please try again. If the problem persists, and all other options have been tried, contact the site administrator.

ass masters

fix the fucking posts you turd burglars.

Not the blessing it seems

[Little+Brother]

This proposal is not the blessing it seems. What it means is that you have to register yourself to get protection that should be yours without such registration. Spammers tie up your computer resources, and those of your ISP. It should not be regaurded as a prank, it should not be regaurded as a buisness practice, it should be regaurded as a crime, and you shouldn't have to register to be protected from criminals.

-LittleBrother

WHAT?

[zelphi]

So you give the spammer a huge list of do-not-email addresses? Wouldn't that be exactly what they want? Fresh emails? I'm already trying to keep my email address offline, I don't need it in a nationally readable list. Thanks, but no thanks

Eh?

WTF?

this is a bad idea

Sure, it sounds good, but you don't realize that a) these kinds of lists are often considered a matter of public record, and b) you will therefore willingly contribute your information to a publicly-obtainable spam list that spammers can access and use. Think I'm making this up? Ask anyone who signed up on the Texas do-not-call list. What used to be a matter of a few random spam phone calls every few weeks or months has turned into as many as 2 or 3 spam calls per day. I have several friends who have directly experienced a massive increase in phone spam that started within days of signing up for the do-not-call list. I don't know the implementation details for this email list (and they may be important), but I'm extremely skeptical that the overall plan is going to be immune from abuse.

LOL

[Fastball]

The Colorado Junk E-Mail Law would require companies to pay an annual fee of up to $500 to access the registry. It would award consumers $10 for each unwanted message that they receive, assuming they are willing to take the spammer to court. If they win the case, their attorney's fees would be reimbursed.

So to summarize. Win your court case: ten spot. Lose: pay out the DMA attorney's $300/hr. fees. Gee, where do I sign up?

It might work, it might not.

[bakawally]

Spammers want to stay in buisness. They'll think of something. Be it going overseas or doing something else to hide their identity they'll find a way to send crap to you. It's a good way to cut down on the smaller spamming companies but the hardcore guys want to keep the cash rolling in. On the otherhand, companies that advertise through spammers might not want to get fined to hell so it may be effective.

Sign me up.

Anything that can reduce or eliminate the spam I get every damned day. Do these people not realize that there are several cases where spam actually costs the RECEIVER money?? STOP SPAMMING ME! I DO NOT BUY FROM PLACES I HAVE NEVER HEARD OF!!!!!!

*deep breath*...........

there......oh....btw......first post? (is that what I'm supposed to say here?...hehe)

test

is it me or can't anyone post messages here?

This is

a good idea, anything that hurts the spammers is grand, so how can I get on this list?

What's up with /.?

The latest two stories have been front page for a while, but no comments. What up with this, negroes?

does this wurk

weird man, it think slashdot has done borke itself. NO, no i'm not drunk either, just a little fuzzy in the head thats all.

yeah ok

[Mabidex]

More government?

www.brainclone.com

has a cheese idea... but you need to sign a damn NDA to see deatils.

Why?

Last man alive?

[skoda]

Three hours and no replies? Did I miss a memo?

first..

post?

FP troll

Add me to the list. Oh wait - I'm an anonymous coward. But can I be "First List!"?

Teeth?

Yeah, we have a law in WA state that provides for a penalty of $500 for UCE (within certain guidelines, like they have to be using a misleading subject line). It's a step in the right direction, but it certainly doesn't stop the spam from coming in. Think about it, a typical spammer has a DB of 5M addresses, is he going to try to find out which ones are in a particular state to filter out?

But without spam

how will I know where to purchase natural male enhancements?

wtf?

ees borken....

teeth? sure, but...

[Maditude]

There appears to be actual consumer-protective teeth in these bills which mirror the telephone 'do not call' lists.

I dunno, as the article states:

"It's not easy for consumers to sue spammers in small claims court," said Catlett. "The burden's on the recipient to show harm, and the economic hardship on single individuals tends to be small."

wow, is it true

[deadsaijinx*]

FIRST POST!!!!!

Test.

This story has been up for hour, and I'm not seeing any posts. Wonder if this one will show up. :)

Hmm..

[Surye]

Let me get this strait, The gov. is making a list for the spam companies? I'm confused...

Gasp

[Oracle+of+Bandwidth]

When did I slip through the rift? What strange world am I in where the government of the USA does great things like this? More power to them, I hope they succeede.

sounds good

[jmorse]

wow...government actually did something in consumers' interest? That's odd.

This is a good step

[jlleblanc]

Although I know a lot of people will claim that this is a gross restriction of freedom of speech and that it won't prevent other countries from spamming us, this could set a precedent for a nationwide ban on spam, much like the EU currently has. As more countries pass bans like this, it will place pressure on other countries to do the same.

The main problem I see

[Omkar]

is tracking and catching violaters. How is the state govt going to find enough people to trace each spammer through his various overseas links?

Hell, I'll sign up

[Daniel+Dvorkin]

As a Coloradoan, I can say that the state Do Not Call list has been quite successful, and I'll happily put my address on a Do Not Spam list as well. Yes, it probably won't be that effective, because spamming is a lot easier and cheaper than telemarketing, but every little bit helps. Most of the objections seem to fall into two categories:

"This won't solve the problem." Well, by itself, of course not. Speed limits don't keep people from speeding, either, but it's a start. You have to be willing to try multiple approaches, I think. Better spam filtering, opt-out lists, whatever ... add enough of these things that make life at least a little inconvenient for spammers, and sooner or later we'll reach a "critical mass" where taken altogether, spamming just won't be worth it for a lot of them.

"It's not my responsibility to tell people not to spam me." In a perfect world, this would be true. (Actually, in a perfect world, no one would ever have sent one spam, ever.) But since we live in the real world -- well, what the hell. You do what you can. Sometimes you shouldn't have to do anything, but if you do, go ahead and do it.

not really that great an idea

[tempestdata]

wouldn't those lists be the best place for off-shore spam companies (say in korea or china) to look for email addresses to spam to?

Our laws mean nothing in those countries, and to top it off, they are getting a list of email addresses of people who have gone through the trouble of putting their email addys on 'do not spam lists' .. Which means those addresses are probably in use and valid.. I wouldn't want my email address on that list.

Last two stories

[pdog182]

Why is nobody posting?

Something wrong here?

[Russellkhan]

This and the next story are both showing zero comments and they've been up for awhile. This post is partly just to test whether a post can even be made.

the hell?

hours, and no commands?

Where do I sign up?

[XxtraLarGe]

I usually don't like the government getting involved in things like this, but in the case of SPAM, I just might make an exception...

lameness, it's all lameness

what's up, lameness filter broken or something? no comments for a while now

wtf

wtf is this?

Is it true?

Damn, I'm a gas passer.

Why are

[justinstreufert]

there no comments on these articles?

Wow Quiet in here

Hazaa!

How is this any different?

[stwrtpj]

How is this any different from other legislation against spam? It states that I can sue spammers for infringement. Big fucking deal. Give me a law where the police or other law enforcement agency will handle it for me. If someone lifts my wallet or robs my house, I don't have to prosecute the case myself. The police do it for me. All I may have to do is testify against the perp.

Give me a law that allows me to simply report the infringement and let the proper agency deal with it, and then I'll agree that we have a law "with teeth".

Oh, and while you're at it, get rid of those stipulations in other anti-spam/anti-telemarketer legislation that exempts political campaigns and charities. I will decide when I want to know more about a candidate for election or which charities I give my money to.

slow day?

I've never seen an article last so long without being commented on...

wtf?

are comments not working?

first poop?

I guess nobody posts on slashdot anymore. Nobody has posted in a couple hours. Blah, that sucks. Burp! hm... monkey

Out of state companies?

[fobside]

How does this work, when there seems to be no physical boundaries for Internet companies? That would mean that all the companies that deliver bulk e-mail would move out of the state. When a new state creates laws that are expensive, it's time to move out. It's like any other company. Once it's too expensive to do in the states, they'll move it overseas.

Plus, isn't most of the spam received forged anyway? How is a state going to stop people from sending through open relays?

SPAM Sucks

Why not make the Spammer register instead? We can then use the database as a filter.

Wow...

Is there some reason that nobody has posted in this yet?

GOod Idea..

[sickboy_macosX]

But how is it going to work? I mean people change ISP's and some people change them as often as underwear. So how are you going to keep people from emailing the residents of your states? if they keep changing ISP's your gonna have to have a nice big database where people can sign in and change their information....and are you going to charge money?? I just wish SPAM would stop..

wtf?

[Ponty]

Three hours later and no posts?

Spam sucks. Woot.

fp?

[smoondog]

I don't know. Phone numbers are much easier to trace. Enforcement would be nearly impossible.

-Sean

hello!

posting anyone? :)

fp

Wtf? First post?

test

testing to see if slashdot is broken.. no one has posted anything for several hours on this story it seems

Great idea..

[Trevalyx]

Bad execution. This is a great idea in theory, but you look at reality and it falls through. Look at where the Do- Not- Call lists are now: In court. Besides, how many spammers are really worried about the legality of their spam, so long as it GETS to you. Many of them have virtual immunity, as they may send the command to mail from their base here in the US, but the actual e-mail is sent from servers outside the United States.
When it comes down to it, there's only one way to defeat spammers: Not buying into their advertising. Unfortunately, far too many people don't understand what a bad idea it is to actually pay attention to Spam.
What does this mean? We, my friends, need to find an alternative method to fight Spam. My guess? We do it by being just as annoying to the spammers as they are to us. There are any number of ways to do this, but what it comes down to is, use good spam intercepting software, and junk mail accounts. MS can afford the space, why not make them use it?

MO no-call list rocks!

They get bucks from people who comply and buy the list and more bucks from those stupid enough not to follow the law. I can only hope the spam version is a quarter as effective!

let me get this straight...

[lordsid]

they want to collect together the email addresses of lots of people so spammers know who "not" to email? why didn't they just outlaw unsolicited email outright?

Something is odd here....

hours later and STILL no first post?!

it's tricky, tricky, tricky, tricky.

I dedicate this FP to Mac OS X 10.2.3!

Long live the Mac!

HOW BOUT IT?

[badboy_tw2002]

FP?

um...

[Mike+Schiraldi]

where is everybody?

Heart is in the right place BUT

[Rathian]

I like the intent, it's noble and all but one big downside: enforcement.

I live in Colorado, this last year I was Joe-Jobbed by a spammer for reporting him. What legal recourse and resources did I have from the state of Colorado to tracking him down so I could financially sodomize him with a laywer? *None* *Zilch* *Zero* *Nada* The attorney general couldn't offer any help whatsoever.

So what makes them think they'll be able to track any of the spammers down? It takes a LOT of work and a LOT of research to bust these asswipes.

That list has one other big negative - what's to stop a spammer from using it for the opposite of what it should be? If/when they do, what do they propose to do about it?

IMHO we definitely need some sort of legal tools we can use but this isn't it.

Are we really losing?

[epicstruggle]

"In the losing battle against spam..."

I did not think that we were losing anything. There have been software add-ons/pluggins that limit what spam we see. Legislators have taken an active role to limit/penalize spammers. ISPs have taken spam seriously as it costs them both directly and indirectly. I dont see spam as being as much of a problem in the next 2 or 3 years.

We can conquer spam quicker by emailing our representatives our feelings toward spam.

later,
epicstruggle

I count ~90 "First Post"s

[Omkar]

'nuff said.

Government in Action

[Voivod]

A nice example of a government perpetuating a working concept instead of trying inventing new ways to break things.

HAHAHAHA! Okay, I couldn't have put this better myself. This IS indeed classic government in action. They can always be trusted to wade in too late, and then do exactly the least useful thing. Who here thinks that publishing their e-mail address to spammers is the best way not to get spammed? This is a bill written by people who have no idea how spam works.

Spam is THEFT. Is is theft at the SMTP server which is relay raped, theft of the bandwidth required by the victim to send out the millions of e-mails, theft of the bandwidth and disk space of the ISP storing this junk, and theft of my bandwidth and storage space to receive it. These are measurable expenses which are costing people billions a year, making a few hundred spammers enough to finally move out of the trailer park.

Spam is exactly like junk faxing, burning through other people's ink, paper, and telephone time to send them junk ads. This has been illegal forever. Commercial speach (advertising) is NOT free speach and is NOT a 1st amendment issue. Even the DMA has dropped their previous support for regulation free spam. What's the big deal here?

BTW

[Mustang+Matt]

Here's the link to the Missouri House Bill 228

See my journal for more information.

Nope.

[Mustang+Matt]

I proposed a complete system to the state of Missouri that would allow spammers to upload their list and receive a list in return of all the addresses that weren't registered.

Finally, but...

[sethadam1]

Sounds like a great idea...but....

with a forged packet headers, open relays, and a global internet not subject to any one state or country's laws..is this in any way enforceable?

Re:Finally, but...

[Sycraft-fu]

It may simply end up that countries that are unwilling or unable to stop SPAM find themselves banned form the internet at large. I work for a university and we find that a particular country (that I will not name) and a particuar ISP in another country are a large problem for little script kiddies. They refuse to respond to our requests for action so we are slowly banning all the IP blocks that belong to them. At some point, they will no long have any access to our network.

This is not something that will happen overnight but I do believe that some day there will be a sort of Internet law that you will have to obey and if you don't, you'll find yourself banned from most of it.

Also most of the SPAM I recieve on my various addresses is form US companies. After all, it's not real useful to SPAM someone for a product or service that they can't buy since you are from a different country. The spammers may use foriegn relays, but they are working for US companies, and those companies can be held accountable.

Re:Finally, but...

[Macgyver7017]

exactly. the onyl way this will work is if this is an "i want spam" list... and something tells me that list wont be very big, so companies will just keep doing what they're doing...

Re:Finally, but...

[Vaughn+Anderson]

Sure, every person online has the perfect anti-spam tool, it's that strange cable plugged into the back of your modem... all those nasty spams get into your computer with it, just pull it out *presto* no more spam...

Re:Finally, but...

[Xtifr]

is this in any way enforceable?

"In any way?" Yes. Will it be perfect? No. Will it stop all spam? No. Will it cause some reduction in the amount of spam that clogs our ISPs servers, and drives the prices of our internet accounts up? Very likely. Will it cause a major reduction? Who knows?

I've been watching spam since the infamous green-card spam hit the nets. I've seen people advocating technical solutions all along, and I've seen spam continue to grow steadily. I think at this point, we owe it to ourselves to at least try a legal solution.

Note that many spammers steadfastly refuse to admit that there's anything wrong with spamming. If it were to start becoming illegal, then the argument, "I'm not doing anything wrong!" becomes a lot harder to support! :)

Re:Finally, but...

[hetta]

Your comment that it's not real useful to spam somebody from another country is not relevant. I'm in Finland.

My spamcop spam count is currently at 10510, of which three (3) were from Finnish companies. (All three were promptly shut down by their ISPs.)

99.9 % of my spam is
1. 'mercan
2. korean and chinese
3. the nigerian scam
Not that I see much more than subject lines in the spamcop quick reporting thingy...

Cut spammers and scammers off the net now, says I. Start with Korea, China and Nigeria.

Nope

[Mustang+Matt]

See this post

What about overseas spam?

[Kelerain]

The do-not-call lists work well because overseas calls are prohibitvely expensive for telemarketers. Not so for spammers. This will require some over seas assistance. But perhaps the fees will outweigh the payoffs, and it will all work out in the end? I can only hope. It should cut down on domestic spam however. Now to get it implemeted in my state (Oregon).

Re:There are people AGAINST this, and not spammers

[cpt+kangarooski]

Well, I'm against it, but not because I feel that a different type of legislation would be appropriate, as CAUCE does. Rather, I think that banning or mandating labels on spam violates the First Amendment for a trivial reason and would fail to actually accomplish anything in any event. That said, I hate all advertising everywhere, I just don't see that it's appropriate to actually ban speech.

Not a good idea...

[Mustang+Matt]

Junk snail mail subsidizes the cost of postage for everyone.

Mod this guy up!

[Mustang+Matt]

He's 100% right.

How do you write the law to block unsolicited bulk email but not valid business to business email?

Re:Mod this guy up!

[Skapare]

How do you write the law to block unsolicited bulk email but not valid business to business email?

Since unsolicited bulk email is not valid business to business email, the law only needs to say that it is not legal to send mail that is unsolicited and/or bulk (I favor using just "or").

Re:There are people AGAINST this, and not spammers

[Skapare]

... (which is free, and easy to get into)

I have yet to see one that is easy to get into. Do consider the fact that I have nearly an infinite number of email addresses, including several domains where any username part always gets the mail to me.

And what about email addresses that don't even have an existing mailbox? There are a few hundred email addresses in a few domains I have which have no mailbox or user, yet spammers are sending them mail (which gets rejected for no such user). This still costs money because it uses up the capacity of my mail server. Opt-out registries won't work if they require verifying the email address exists.

Re:There are people AGAINST this, and not spammers

[Skapare]

I would agree that banning particular content would be a violation of the US First Amendment. But I would disagree about being truthful in labeling, and the requirement being connected with behaviour (specifically, that the mailing is unsolicited, which has nothing to do with First Amendment). As for the "do not mail me" registry, I see no Constitutional issue with it, but I don't think it will actually work.

Re:There are people AGAINST this, and not spammers

[cpt+kangarooski]

Labeling is serving as a proxy for content. I for one am objecting to ads not because of any specific product that they're trying to sell me, but because they bear advertising content of any kind. There is a common message to buy goods or services, and that's your content. You may be thinking of the slightly different matter of viewpoint discrimination.

Since the intended effect of the labeling is to get rid of spam altogether by means of everyone filtering the spam, the true intent of labeling provisions is to silence both a wide class of speakers (commercial speakers) and content (commercial messages), such that they will no longer even be sent.

And of course, the means are so crudely tailored to the intent that I think there's even a question per a rational basis analysis, much less the no-brainer against regulation under a strict scrutiny test.

The registry is pretty similar... it might be equated to a 'no tresspassing' sign on one's door (which is allowed), but OTOH mailboxes are IIRC held to be inherently somewhat open to the public regardless of the recipient's wishes, because it's so trivial a matter to get rid of mail that is unwanted, and the burdens to speech would be so high.

As for the unsolicited nature of the communication, I would regard it as being insufficient to hang one's hat on. All discussions HAVE to begin with an unsolicited comment.

Throughout the latter half of the 20th century, commerical free speech has grown to be nearly the equal of private free speech. Labeling requirements, truth requirements, and TPM restrictions are about all that's left of note. False headers, content, or addresses might be something you could try to ban, but again it's almost entirely unenforcible.

Private filters are the way to go -- it may be a little bit more burdensome, but it's better than the relatively short trip junk mail takes from mailbox to trash can.

Do Not Mail versus Do Not Call (extensions)

[Skapare]

With a Do Not Call list, one single entry covers all my phone extensions. Since the teleslimers will be comparing only the basic phone number, and not the number with its extension, against the list, by simply having my number without any extension in the list, a proper lookup will match and they can skip that number. None of my extensions will be called.

The issue is how to do this for email addresses. Many mail servers allow for "extensions" by having a certain special character such as "-" or "+" or "." followed by an "extension". By simply having the email account of the part before the separator, you automatically have every possible extension. Some people call this tagged email. And example would be jsmith-foobar@example.net where only jsmith@example.net would be in the list.

Many people even have their own vanity domain names, and regardless of what username is used before the @-sign character, they get the mail like the whole username were the extension.

For a registry to work, for at least those who are required to use it, it must meet at least these two requirements:

• Supports all user email addresses, including extensions
• Easy for the bulk mailers to compare their lists against
• The raw list itself must not be distributed

I looked at the registry run by the Washington Association of Internet Service Providers and found that the verification process only works one at a time. This makes their registry virtually useless. Of course, distributing the addresses in the raw will be worse, as it will get in the hands of spammers out of the country, and everyone will just get more spam because now spammers will have a list of address that are even more likely to have someone reading. And some will be mass mailing to such a list just to destroy the effectiveness of registering.

One option is to distribute an SHA1 checksum of each address. Then all that needs to be done on the mailer's end is to test each address by generating the checksum and looking that up in the database.

But even that has a risk, and I'm wondering if even that should be allowed. That risk is that spammers will run all their millions of email addresses through the process, and produce a subset of those who are registered, and then from out of the country ... they will spam the hell out of just those.

In the end I think the only real solution is for a law that establishes two distinct networks (same address assignment base, but disjoint routing), one where spamming is allowed, and one where it is entirely prohibited under threat of jail time (for the executives in the case of corporations, LLCs, etc). Each ISP can then choose to service one or the other or set up dual but separate facilities to serve both. Wanna bet which network most will choose?

Problem: Me

[Lucas+Membrane]

I've got a legitimate business. There are only about 80,000 organizations on earth that might want my firm's software. Many of those 80,000 would not mind getting an email, because they need some solution and wouldn't mind comparing what they have with what my company offers. The email addresses are hard to dredge up, and I have not tried to market by email at all so far. I get about one email per week from competitors who somehow have me on their email lists. No big deal. And, I might consider it not nearly as bad as sending unsolicited ads for porn for me to send a couple of dozen, or a couple of hundred, or even one polite and informative email trying to attract a sale. But now, because of all the smut and scams, it might make me a criminal to try to promote my business. Jeez.

Re:There are people AGAINST this, and not spammers

[Skapare]

This is not silencing the speakers. As long as people have the right to not filter out the messages, and thus read them, then those that care will, and those that don't, won't.

Compare this to how free speech was done in the days the Constitution was written. Most speech was in the form of coffee/tea house discussion, public speeches at the center of town, debates in Congress or the legislatures of the states, and printing up your comments in a newspaper. If someone who had an important message (their opinion) for you were to barge into your home to deliver it, and the constable came and dragged them back out and threw them into the middle of the street, would this be called silencing? No. They could speak their mind from the street. In fact there are laws limiting even when that could be done (e.g. disturbing the peace). Most towns did have a central podium just for things like people making their speeches.

The issue is not what is said (that is protected) but rather, how they impose on us to deliver it (that is not protected).

Comparing a snailmail box to an email box is a bit more complex. As long as I do not have to pay to receive the mail, that is, the sender pays all costs, then I can just as easily throw it away. Of course I do have a minor cost in doing that, but the major cost is on the sender, and that is a limiting factor. But email is quite different. This is not a case of a single entity handling all the delivery. Instead, email is a peering setup with a sender agent and a receiver agent (e.g. the ISPs). Email can be scaled up high on the sending end with extremely small cost, while the recipient has higher costs for each message received (even if it is refused). The issue is not about what is being sent, but rather, the costs that are imposed upon me (and in particular, that my costs are higher than the sender's costs).

Unless I say otherwise, this very Slashdot posting can be considered a solicitation to email me privately, but only for something related to it, basically a reply. So it would not be unsolicited for you to email me privately for that purpose. The implication is that it would not be for other purposes initially. Of course there is a content tie-in with that, but it's no longer public speech when addressed to a single person. It's certainly not bulk to reply to me privately once.

But I do agree that private filters are (still) the best way to go. Different people have different preferences on how agressive that can be. A business might not want to filter very much for fear of not receiving mail from a prospective customer. And if their mail volume is high, the spam might be a drop in the bucket in comparison. An individual, however, may find it best to be especially aggressive and filtering, including filtering whole ISPs that harbor spammers (and yes, that means "collateral damage"). It should be the choice of the recipient.

unsolicited

As soon as they've sent me email they've solicited my response.

If there's an email address I can respond to I'll go find an open relay host and forward through that email to them consisting of a nice letter saying that I was glad to get their mail and that they may have goofed a bit. Along with it I'll usually send a large (say 2000 by 2000) tiff (or xcf) file with a picture of a can of spam and a text message "Go Away" written on it. If they've really pissed me off I'll send a dozen or so.

More often they give no usable email, but do give http urls. Since they've solicited my response, I respond to these with a couple thousand curl url fetches. I make sure that there are reasonable delays in between so it is not a DOS attack - though if they really manage to get me pissed off I'll shorten the delay and up the count. In these I always encode my feelings (my favorite is "spam spam spam..." repeated ten thousand or so times) in the UA, in the referrer and in the url itself - more or less randomly mixed up on each fetch.

Does this do anything? Probably not, but if their webmaster is responsible they'll at least see the message and with a bit of luck it will also drive their bandwidth costs up. Yah, I know, they'll probably report this back to the spam purchaser as a "hit".

They did ask me to visit their web pages after all. So I do. I don't look at the response, but so what.

Re:There are people AGAINST this, and not spammers

[jcr]

Rather, I think that banning or mandating labels on spam violates the First Amendment for a trivial reason and would fail to actually accomplish anything in any event

God DAMN IT, not that same old fucking canard about free speech AGAIN!

A spammer's right to speak does not confer a license to use MY property to do so. Spamming is a property-rights issue, not a free speech issue.

A spammer can say whatever the hell he wants at his OWN expense, not at MINE.

-jcr

Acted weird for me too.

[billstewart]

Happened to me as well - the front page of Slashdot was showing it with no comments under it (wow, FP when I've actually got something to say :-), and when it accepted my posting the page said ~192, but then the front page and the item page both showed nothing there. I guess it was one of those Bad Slashdot Days, but stuff's here now.

That's what the "remove me" addresses are for

[billstewart]

Sure, no problem, just send mail to all those "unsubscribe" addresses and "remove me" web pages and you'll be all set.

Not always traceably commercial

[billstewart]

Aside from the spammers who are too incompetent to provide a useful return address if you _want_ their products (you'd be surprised), there are lots who are good at adding deniability. The "Great tip on this stock" is always popular, and the encouragements to check out web pages that can easily be on non-US servers, or the ones that pretend they're telling somebody else about this hot new web site they saw or whatever.

And then of course there are the Nigerian spammers.

This Will Not Work

[esme]

This won't work -- many people have already mentioned the jurisdiction problems of overseas spammers, and the forged headers and open relays that make it very hard to track people down anyway.

Other techniques such as filtering are doomed as well -- it might change the ratio a little bit, so they need to send out 10 million emails for it to be profitable. But it's still going to be profitable. It's a fundamental facet of email that it's cheap to send, so even if only one in a million reads the spam and buys the product (or whatever), it still makes them money.

IMHO, the only way to get rid of spam is to change the economics of email -- to end the receiver-pays system as we know it. One way would be for SMTP to require payment before accepting an email for relay or delivery.

Normal users wouldn't be effected much by this b/c they don't send a whole lot of email, and the fees ISPs would collect for receiving email would offset the fees they incurred in sending the user's normal-load email. But it would drastically alter the landscape for all commercial email -- shifting the burden back to the advertisers like it should be.

-Esme

Not novel at all!

[KjetilK]

This approach is not novel at all, on the contrary, it has been tried and it has failed miserably.

Look, this is how it has worked:

1. Spammers get opt-out-list from agency
2. Spammers send spam to the opt-out-list, because the addresses on the opt-out-list are confirmed living.

Oh, so that failed. New approach: The agency keeps the opt-out list, spammers never see it. Here's how it works.

1. Spammers send their e-mail lists to agency.
2. Agency washes spammers list, removing the addresses on the opt-out-list.
3. Agency sends washed list back to spammers.
4. Spammers compare washed lists with original non-washed lists, to identify the confirmed living addresses on the opt-out-list.
5. Spammers send spam to whoever it wants, possibly giving priority to confirmed living addresses.

Uh, so that failed too! Wow. OK, next thing, we have laws. If spammers do this after having had their lists washed we will throw them in jail! Yep, sure. OK, here's how it works:

1. Spammers send their lists for washing like above, gets washed lists back.
2. Spammers sell the confirmed living address obtained by the above procedure to another spammer,
3. who moves off-shore, or to another state, whatever.
4. Spammers send spam to addresses on the opt-out-list.

Now, you can't touch them, and even if you could, you would still have to prove that the transaction took place, and even if you could do that, the spammer sending e-mail could say "uh, I didn't know, I was defrauded" and the spammer selling the addresses could say "hey, I didn't spam, did I?"

Entering your address on a spam-opt-out-list is going to get you more spam, not less.

Anybody remember Murkowski? Nice try.

Unsolicited Business email

[Mustang+Matt]

I personally think business to business unsolicited non-bulk email is a Good Thing(TM).

I don't mind receiving email when people take the time to write me. Often, I am able to turn those solicitations around and actually gain clients either directly or indirectly.

Plus, then you get into nasty situations such as what's considered unsolicited? If I put my email address on my company web page and another company wants to email me, is that unsolicted?

Press 5 if you think technology serves you...

[SourceHammer]

So everytime I give out my email address to someone that I am willing to receive email from, I have to get their email address and enter it into my address book before I can receive their email. And if I have someone who I exchange email with and they change email addresses, we can no longer communicate via email.

Press 5 if you think that technology is improving the quality of your life.

I will do what I always do, change my email address when I start getting too much spam (through the filters.)

Only dead spammers are good spammers...

[mousse-man]

This would be cool if every spam received by a person on this list would lead to the destruction of the spammer and his property by the USAF. It would be more useful to have the USAF bomb spammers into oblivion, or use them as training targets with live ammo. Without the risk that a guy spamming someone on this list gets killed, the list is more a "do-spam-me" list.

Civilized nations have laws that ban spam

How do you write the law to block unsolicited bulk email but not valid business to business email?

This is how: Article 13, Directive 2002/58/EC.
When it was adopted, a /. report and its links made it crystal clear that this is the only workable approach.

slashdot is a buggy piece of bug

just testing...

Good technical solution

One of the good technical solutions is at
www.spamgourmet.com - I hope this idea takes off with several more sites supporting it.

I hope the moderators check the site before mderating this post. I am just a happy customer.

Been there done that

[broothal]

Global opt out lists has been done before, and they've all failed.

Now, don't get me wrong, a law against spam is very much needed, only it has to do a little bit better than this one.

The common denominator for all the useless spam laws is, that they put too much work on the shoulders of the end user. In a perfect world, the end user wouldn't have to worry about spam if they didn't request it.

If you'll allow me for a moment to blow my own horn, let me introduce you to a law that actually works. It's nation wide, and prohibits spam. Yes - the anti-spam law in Denmark is quite precise, and the ombudsman goes right in the throat of those who violates it. Basically, the law says: Do not send commercial email to people without their consent. Of course there's more to it that that, but the bare bones of the law is, that the only valid way of sending commercial email is by opt-in. Since the burden of proof is on the sender, confirmed opt-in goes without saying.

/Christian

I think your right, maybe there's a better way.

[BadlandZ]

I think your right, as long as the user has to keep track of the spammer, things will never change.

If they are going to try to legislate an answer, why not a simple one? Like, all unsolicited email with the intent to sell or create traffic (insert some definition of spam here) has to contain a header that states it's unsolicited, sales meterial, etc...

Then filtering it out is simple. Then it's easier to bring spammers to court also (if that's the intent) because you gather people that recieved email without the proper header... Clearer case.

Easy way to help rid the planet of spam....

...Flood all the spammers databases with false data...of course you must be bored to do this...If I have time and get spam, I go to the website (with all their tracking info stripped off) and fill out their forms with false data. I sometimes try to use government agencies as the addresses or phone numbers so they spam them.....maybe that way the government will be more apt to attack spammers back..lol

Targetted Advertising

[TheRaven64]

This all leads back to a particular favourite of mine: Targetted advertising.
Advertisers in general do not care how many people see their advert, but rather how many potential clients see their advert. Sending 50000 spams is no good if no-one buys anything from them, while sending 100 which generate 20 sales is a huge return (at the moment only about 1 spam / month gets past spamassassin, so I don't see the majority of them). While it doesn't cost much to send an email, it does cost something. I would like there to be a central registry of items individuals are interested in, so I can register and gt targetted adverts. I have no interest in penis enlargement, breast enhancement, sanitary towels, buying a new car (at the moment) so anyone who advertises these things at me irritates me, and receives no return. Any company that wastes my time prejudices me against them if I ever do want to buy a product they offer. Right now, I'm thinking of buyng a new dual-head graphics card, so anyone advertising a low cost Radeon 8500 would be providing me with information I want, outcome: I don't have to hunt for prices as much, companies can spend less on advertising but generate more sales, I can watch an hour of TV without having 15 minutes of adverts. I'm happy, commercial enterprise is happy. People who send untargeted advertising are laughed at for being so crude. The solution to spam is not to block it, not to legislate against it, simply to show that it doesn't work. Let commercial Darwinism will take care of the problem

Re:Problem: Me

[ediron2]

Problem: Me (Score:1)

by Lucas Membrane (524640)... I've got a legitimate business... 80,000 ... might want my firm's software. ...polite and informative email trying to attract a sale. But now, because of all the smut and scams, it might make me a criminal to try to promote my business. Jeez.

Man, talk about unimaginative.

• Take a course on marketing. Buy a book. Hire a *good* marketing firm (most are wannabees (or even grifters) unable to document success or failure).
• Advertise in trade journals and other places where chunks of your estimated 80k hang out.
• Attend, Sponsor, etc. trade shows. Get your name out there.
• Create brochures, white papers, etc.
• Create a marketing presence via a well-done website, with substance.
• Buy access to a relevant, well-established list that has a good chance of carpet-bombing your intended market. I don't mean spammers. I mean the 'daily update' opt-on list run by your trade magazines. In my case, that's eweek, computerworld, etc.
• ...etc. In short, conventional marketing.
• DO NOT COMPLAIN THAT THESE COST MONEY. Spam is a something-for-nothing proposition ONLY from your perspective and we're tired of carrying your lazy ass.
• Entice sign-ups on an email list at your website, your brochures, trade journal ads, trade shows, local chamber activity, trade association meetings, or whatever fits. This is a critical step in building your own free mailing list for future contacts of opt-in email recipients.
• Use the email list wisely. Send something periodically that is both newsworthy and interesting and valuable to your recipients (oh, and relevant to the offer they signed up for, obviously). In every one of those mailings, spend a few seconds top and bottom selling your product.
• It is critical that you make the news/gift part of your emails useful enough to generate what is called viral marketing. Let your customers find you and stick with you until they need your product.
• Presto, you're not spamming. What's more, if you do the above steps well, you'll have 40k of your known customers and another 20k of complete strangers and undiscovered markets, clammering for your advice, and remembering you when they need your product/services.
• DO NOT COMPLAIN THAT THESE TAKE A LOT OF EFFORT. That's why a good marketing firm costs a lot... marketing is time/labor/talent expensive.

Now, go away and leave me alone. This is kindergarten level net marketing stuff. I'm not even getting into the other obvious ideas like becoming a known expert on usenet or web discussions, etc. No, you don't get to send me email unsolicitedly. If I care about your topic, I sign up 9 out of 10 times. I sign up for work-relevant newsletters I see friends/colleagues getting. I'll make it easy for you in that regard... but if you don't get my consent first, I'll never forgive you for it.

Registry, Eh?

[Col.+Panic]

Navigate to ...

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Cu rr entVersion\Internet Settings\

create: StringValue=DieSpammersDie

Alternatively: StringValue=FsckOffYouFsckingFscks

or: StringValue=SpamMeAndDie

oughta do the trick

Re:Problem: Me

[Steve+B]

Problem: Me

[standard spammer excuses]

Wow, your post title is a textbook example of truth in advertising.

Why White Lists Don't Work

[DaveAtFraud]

I dabble at kernel development. This generally means trying to get the the things I need to work in say the development kernel to work for me. Sometimes this comes down to me firing off an e-mail to the maintainer or others mentioned as contributors to see if a patch is available, report an oops, results from applying a patch, etc. This slows to a crawl if everybody involved has to go through some protocol for making sure that I didn't somehow harvest these e-mail addresses from the source files so I could spam the recipients. Likewise, I either have to pre-add all of the people who might reply to me or put them through the same hassle to send a response to me.

I don't think so.

I live in Colorado. We got on the "do not call" list as soon as we could. We haven't had a commercial telemarketing call since (we still get them from charities and politicians so I guess the phone still works). The local newspapers run a regular article listing the companies that have gotten a friendly reminder from the attorney general reminding them not to call people on the do not call list and a much smaller subset that the AG is going after because they didn't take the hint.

All spammer cares about is the number of hits.

[moogla]

Not the ratio. That is, it doesn't matter if half my emails get sent into a big black hole. I only care about the .01% of them that reply to my website saying they're interested in getting more infromation, who are interested in getting out of debt free fast.

So the solution isn't to verify, but to keep adding more and more potential addersses until the number of hits goes up.

It's easy to send, and let them positively verify. Every once in a while you might audit your list, which usually means just throw out the old ones that didn't give you a positive reply.

BTW, it is easy to set up your own mail server, and use bandwidth limiting so that you don't trip your ISPs upstream alarm. Naughty people sell $100 packages for Windows that do exactly that.

Finally, spammers aren't intelligent enough to realize when they aren't making any progress because they are wasting their own bandwidth needlessly. Because once they stop doing it, some other poor disillusioned sap dreaming of "Putting his computer to work and making $40,000 a year" will pick up the email list right where the last one left off. But if there was a penalty for being WRONG, wouldn't that next person think twice about his strategy?

Remember Newton's First Law (inertia)

[alanafalcon]

Nuf said.

WRONG ANSWER

*OPT-OUT* is the *WRONG* solution, and it will have very little effect on spammers, if any.

Anyone wanting to send ads should assume every possible address as being on the 'opt out' list, without needing there to be such an actual list, unless they have a *confirmed* request from the address owner otherwise.

Are there really people who *want* to get advertisements in their email box? Is there anyone who cant find products they need with a simple google search, or who is so desperate for email that they want to use it for advertisements?

Is it legitimate to assume that anyone who doesnt go to the trouble (and risk) of listing their address on some 'opt out' thing wants to?

Like it or not, the only way to stop spam is to make it so that no ISP anywhere will allow spammers to use their service. Filters which prevent you from seeing it dont stop it from using bandwidth and storage space at your ISP, and 'universal' opt-out lists will be 'universally' ignored by most spammers.

Stopping it from being received is not good enough - ISP's must be forced to stop it from being sent, by shutting down spammers as soon as they receive complaints. Unfortunately, some ISPs like the money they get from spammers for 'bulletproof' service, and it takes things like SPEWS to convince them to stop. (Or to convince the other customers of that ISP to switch, and then the rogue ISP can be nullrouted by everyone else on the net once it only has spammers as customers)

Thanks a ton

[Mustang+Matt]

I will read over that document tonight.

Looks very promising.

Laws need several things to work

[herbierobinson]

1. The per message fine has to be enough to make it worth pursuing. MO has the right idea: $5000 per message.

2. It has to allow for individual enforcement (i.e., small claims court). Law enforcement, frankly, should be frying bigger fish.

3. It should be a felony to promote anything with SPAM without permission of the entity being promoted.

4. In addition to the spammer, the fine should apply any entity being promoted by SPAM unless they are willing to file a criminal complaint against the spammer (for violating rule number 3). Note that filing a false criminal complaint is also very illegal; so, this would not be likely t be misused.

Tax Spam

[Felinoid]

Easy solution for spam and taxing the net.
Put a tax on spam.
As it's relitivly hard to track spam tax it on the 2,000 rule. Assume each spammer is sending out 2,000 spams a day and tax acordingly.
Then spammers prepay for the days weeks or months they plan to spam.
Then they must include a valid spammers tax code in every spam and we can look it up and see who they are etc.
To misuse, reliccens, abuse or forge a spam liccens results in a stiff fine or jail time.

The taxes go to the state the spammer is operating from.
Spam liccenses are like sales permits if you present simbody elses expect some jail time.

Spammer Security Testing

[BigBlockMopar]

As soon as they've sent me email they've solicited my response.

What I want is a legal opinion.

I have a webserver and a mail server. The webserver clearly states in public form that none of the e-mail addresses on this server wish to be contacted for advertising purposes.

I would like to create a page offering to do instant security audits. To have your machine tested, simply send an e-mail to the address offered on the page. My script will then find the sending IP address, ping it to make sure it's live, then test it with every known network attack against a Windows machine. Afterwards, send it a ping, and report back whether or not the machine is still working.

Of course, spammers won't send e-mail to it, since the e-mail address is very specifically something like "your_computer_will_crash_if_you_send_mail_to_this _address@domain.com", and therefore will have no reason to complain about such a philanthropically-offered security testing system.

Legal counsel please?

Last Post!

[alpg]

Joshu: What is the true Way?
Nansen: Every way is the true Way.
J: Can I study it?
N: The more you study, the further from the Way.
J: If I don't study it, how can I know it?
N: The Way does not belong to things seen: nor to things unseen.
It does not belong to things known: nor to things unknown. Do
not seek it, study it, or name it. To find yourself on it, open
yourself as wide as the sky.

- this post brought to you by the Automated Last Post Generator...