Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Case for Rebuilding The Internet From Scratch

Posted by ryuzaki0 on from the armchair-quarterback-pipedream dept.

dotnothing writes "I just caught a column on a security site advocating for a total start from scratch as far as certain internet protocols like SMTP. It's an interesting idea and there are some ideas on how to conduct the transition... if everyone would agree on something like this it would definitely reduce the spam (among other things)."

11 of 443 comments (clear)

  1. HAHA... by deadsaijinx* · · Score: 5, Interesting

    ... sorry, not happening. Hell, we can't even push out v6, let alone start from scratch. Sure, these organic growths (i'm talking bout the internet) may seem inefficient and disorderly, but anyone in theorectical math knows that such systems have an awkard effecientcy. Similar to the buses in Mexico (they don't have a single entity controling them, like the US does), the internet grows from several competing interests, and often seems chaotic and ineffective. Yet, studies show that the buses in mexico are several fold more effecient than the regulated from the start ones here in the states. Just some food for thought.

    (someday, i will make FP)

    --
    YOU SUCK BALLS!
  2. Email != internet by mblase · · Score: 5, Interesting

    A subjective summary of the column:

    - Scrapping the Internet is a good idea because spammers have used email to annoy everyone.

    - Under this new, hypothetical email system, Verisign would require everyone to buy a secure ID to ensure they are who their messages say they are.

    - The columnist is willing to spend more money and lose his privacy in exchange for these conveniences, so we should be, too.

    Please. The problem with spammers isn't because SMTP is so weak. The primary cause of the modern deluge of spam is unsecured email servers around the world, allowing senders to spoof their identity and auto-email anyone they happen to have an address for. And no new system, no matter how rigidly secured, will make up for admins who don't do their job; if it did, it would be prohibitively expensive or complicated and thus be impossible to implement as widely as email is now.

    The writer, Larry Seltzer, complains about spammers abusing his account, and yet his online publisher sticks a link to his email address right at the bottom of everything he writes. I would suggest that if he wants to reduce the flow of junk to his inbox, he start with his own managers.

    1. Re:Email != internet by shadowbearer · · Score: 4, Interesting

      "Please. The problem with spammers isn't because SMTP is so weak. The primary cause of the modern deluge of spam is unsecured email servers around the world, "

      and if I may add, also the number of ISPs who don't Give A Shit. Seems from my reading that most within the US and Europe are at least making a start at implementing some decent spam solutions ( complaint monitoring and the actions taken/not taken is really the biggest problem) but from the steadily growing amount of spam I've seen in the last few months, not enough are doing their jobs.

      I don't think we need legislation to solve this. I think we need more education and public denial solutions (blacklisting till they've cleaned up their act - and possibly some standard rule set as to how to go about this). There are a lot of spam sites, but I haven't seen any yet who have a really comprehensive list of what should be "kosher" in anti-spam activism. Can anyone point me to a link?

      SB

      --
      It's old. The more humans I meet, the more I like my cats. At least they are honest.
  3. Evolution not Revolution by bcollier06 · · Score: 3, Interesting

    I can understand the author's frusteration with the current infrastructure, and it might be nice if we could chuck all of the bad at once.

    BUT, this is completely impractical and would never happen. The current installed base and backwards compatibility always have and always will act as insurmountable intertia to sudden and drastic changes. The innovators will keep on innovating while the rest of user base slowly upgrades their most woefully inadequate equipment/software to the new standards.

    Let's face it: once the internet moved out of the realm of hobbyists and academia and into the commercial sphere it lost the willingness to accept drastic changes. While it continually evolves (the emergence of ipv6, internet2, etc), I don't think we will be seeing a real, identifiable revolution anytime soon.

    --

    -bcollier06

  4. Brilliant! by jdbarillari · · Score: 3, Interesting
    Tonny Yu, founder and CEO of Mailshell, says that any new and better replacement for SMTP would have to have some sort of certification system to guarantee that senders are who they say they are.

    Try SMTP AUTH. Any respectable MTA implements it.

    The other important requirement, according to Yu, is a system for tracking resource usage per sender. Basically this means that profiles should be established for normal amounts of mail sending from different types of users. If you limited normal users to 100 messages per second and major companies to 10,000 messages a second it would be hard for legitimate users to complain, but spamming would be much harder.

    This would take a centralized authority -- without one, enforcement is left to the commons, and we all know what happens then.

    I'm sure we'd have no trouble finding a decent, well-respected, centralized authority to control all of the world's email. After all, no one has any cause to complain about the Internet's existing centralized authorities!

  5. Pipe dreams and wishes by WIAKywbfatw · · Score: 4, Interesting

    Seriously, we could talk about what if's all day long, whether about the internet, global politics, the SARS virus, or even the DH rule (I'm against it) but it won't change a damn thing.

    Last time I checked, actions speak louder than words.

    I'd love to see some action to seriously combat spam because, frankly, I think it's going to do some serious damage over the next few years if the current situation is allowed to continue unchecked.

    When people stop checking their inboxes because finding genuine messages is like finding a needle in a haystack, and when 25 or even 50 percent of all internet traffic becomes spam, thus slowing down the entire system for everyone and (more importantly) costing infrastructure providers, ISPs and ultimately the end-user serious money, it'll be a bit late to address the problem.

    Better that it's done today - I'd rather deal with the disease now rather than treat the symptoms later.

    --

    "Accept that some days you are the pigeon, and some days you are the statue." - David Brent, Wernham Hogg
  6. Re:This says it all... by Anonymous Coward · · Score: 5, Interesting

    Agree. Ain't gonna happen. The major isp's do a tremendous job keeping most of the spam out of our mailbox. For the few that slip through, there are various filtering programs like SpamAssassin that can help.

    For those interested in higher accuracy and more speed, you can write your own filtering program that analyzes the headers and responds to your unique name and email address.

    I just uploaded my version written in Borland Pascal running in DOS.

    My spam program filters valid messages at up to 3,000 msg/sec, detects spam messages and decodes base64 at 200 to 300 msg/sec, and has no false positives or false negatives.

    The nice thing is it is easy to update when spammers change their tactics. If you are interested in seeing how I do it, download the source file at

    http://www3.sympatico.ca/add.automation/misc/spa2e 921.zip

    Best Regards,

    Mike Monett

    (Who tried to re-register but cannot get SlashDot to remember my name and password:)

  7. Not the *whole* internet... by fm6 · · Score: 3, Interesting
    Really this discussion is about smtp, the design assumptions of which are about 20 years out of date. Perhaps there are other protocols that need to be completely replaced, but none has anything like the problems of smtp.

    I've been arguing for years that the only way to fix the spam problem is with some kind of certified-user infrastructure. And I doubt that I'm the first person to see this. Filtering simply does not work, as the current volume of spam (60% of all mail traffic, I'm told) indicates. The only question is, how do you make everybody switch over?

    Seltzer's idea of SMTP gateways is ridiculous. Its just another filtering solution. Nor does it make sense to wait for Internet2 to roll out -- that technology will probably exist side-by-side with the current Internet for decades.

    Not that I have any better ideas. Perhaps users who go to the new protocol could bounce SMTP email with the appropriate "please change" message. Whatever.

    In any case, I don't think the answer will come from the standards wonks. More likely the major ISPs will get together and invent something.

  8. starting all over from scratch... by ecalkin · · Score: 4, Interesting

    here's my list:

    1) let's clean up ftp. real security options, performance options, etc.
    2) smtp. as in the article, smtp needs work, at the protocol level and implementation of mail programs and their handing of information. i really believe that a little key management at the isp level (if enough isp participated) could really make a difference.
    3) dns. i would drop .com, .org, maybe even .edu and .net. use the ccTLD with other localizations below that.
    4) more ip addresses. ip6 would be nice, but if i'm starting over from scratch, just increasing the ip address from 32 to 48 or to 64 would help.
    5) the ability to do a number of things in a slow, throttled-back fashion to run nicely in the background.
    6) better printing protocols. lpd is a mess and the other printing protocols seem to problematic.
    7) snmp. this seems to be getting better via v3. the real problem seems to be the software, not the protocol.

    just my $0.02

    eric

  9. Already doable with existing stds by blackpaw · · Score: 4, Interesting

    The author isn't very knowledgable. Quota's for email can be implemented without breaking existng email clients. SMTP allows Authentication via certificates to be layered on top or, most email clients allow SMTP send with authentication.

    asked a few people involved in solving the problems of e-mail what would be involved in fixing it. This put them in an awkward position of conflict; after all, spam-filtering vendors and other security companies make their living because these problems exist

    Bollocks - the mail guru's who maintain this stuff are mostly volunteers and are not interested in making money off spam/protection. Thats an insult to them.

  10. Re:unfortunatly by bheerssen · · Score: 4, Interesting

    SPAM can only be slowed via eduacation. People must learn that SPAM is not the way to buy things.

    Unfortunately, you're wrong about this. SPAM works because the vanishingly small amount of money it generates per message is still greater than the cost of the message. The people who get taken by spam are the same people that get taken by psychics that advertise on cardboard signs. These people will always exist - no matter how much effort is made to educate them.

    Two quotes come to mind:

    "There's a sucker born every minute" - P.T. Barnum

    and

    "Knowledge is realizing that the street is one-way, wisdom is looking both directions anyway" - unknown

    --
    (Score: -1, Stupid)