E-mail Tax As Way Of Preventing Spam

scubacuda writes "This FT article criticizes current attempts to regulate spam. Re: Lessig's bounty-on-spammer proposal: 'This is a terrible idea that will make millionaires of two classes of people: reprobates who illegally maraud through others' hard drives; and those who have built their expertise about spam by peddling it, 'He considers the recent FTC spam conference "barking up the wrong tree," and thinks that the simplest way to regulate spam is through a tax: 'This requires smashing some myths....But, very soon, the Internet should turn into a penny post, with a levy of 1 cent per letter. This would cost the average e-mailer about $10 a year. Small companies would pay bills in the hundreds of dollars; very large ones in the thousands. And spammers would be driven to honest employment. The tax could be made progressive by exempting, say, those who sent fewer than 5,000 letters a year. The proceeds could go to maintain and expand bandwidth.'"

Is taxation best?

[blueidoru]

However, if ISPs are the ones paying for bandwidth... how would a "tax" help, per se? Should ISPs charge for email? And, if so, won't spammers overseas still get away with things? (Actually, with taxes, they do too.)

Re:Is taxation best?

[banzai51]

It wouldn't. But the government could finally cash in on the internet. Its all in our best interests of course.

Re:Is taxation best?

[jezor]

banzai51 wrote:

" It wouldn't. But the government could finally cash in on the internet. Its all in our best interests of course."

Um, which government? As much as I will argue against the notion of the Internet as a lawless environment, the bottom line is that it is without borders, and spammers will easily be able to find an offshore haven from which to send their sexual enhancement ads. To assume that a US or UK law charging a per e-mail tax will somehow eliminate spam is unrealistic and unworkable. It will also significantly reduce the incentive to use e-mail for appropriate means, such as operating an e-mail discussion list.
Professor Jonathan I. Ezor
Director, Touro Institute for Business, Law and Technology
jezor@tourolaw.edu

Re:Is taxation best?

[mdinowitz]

I run a number of mailing lists and on a good day can send out a million messages. This is all for community support with no profit at all on my side. A law like this would kill me and every other community supporter who supplies such a service.

Historical First.

[Chris_Stankowitz]

Urban legend comes to life. Wasn't this a myth passed along (via spam of course) years ago. Except I think it claimed the USPS was responsible for the tax.

Not with false headers

[Billly+Gates]

If spammers cover their tracks then they can't be taxed. Just go after the spammed products that are advertised. This would stop spam at the source.

Re:Not with false headers

[terraformer]

The problem is that the little "feature" of SMTP named forged headers is incredibly useful for people. What needs to happen is a header that can identify the server and user that sent it. But not the From: feild. This would require some combination of digital signatures and SMTP auth.

Re:Not with false headers

[Jens]

"One simple approach would be to have the taxing authority issue 'e-stamps'. The receiving e-mail program would check the e-stamp for validity and non-reuse ..."

We already have this. It's called a PGP signature.

The cost is a couple CPU cycles. Per email. Non-reusable, quick, easy and efficient. If everybody would start using PGP (which IMHO is a hell of a lot more likely than everybody switching to an "email-tax compatible" state-mandated commercial email client), we wouldn't have a spam problem any more.

Spammers just can't afford to sign their mails - with any signature. It's too expensive in CPU cycles. And note that the point here is NOT to validate the sender, it's just to validate that the sender had to burn a couple CPU cycles (which takes maybe a second on a 500MHz computer, for each email) to send it.

I'd go for it

[nother_nix_hacker]

I think this is a good idea. I would gladly pay tax on email to stop me spending all of my money on penis enlargements!

a really bad idea

[danny]

Quite apart from the enforcement problems (international jurisdiction, for one thing), this would kill a lot of mailing lists completely. I run some small lists for distributing my book reviews, for example, sending out maybe 2000 messages a month, and even US$20/month would deter me from doing that. And the big discussion lists I'm on would cost a fortune to run at 1c/message.

Ok, so maybe people signing up to a list would have to pay for the messages they receive... but now we're basically talking micropayments!

Danny.

In the words of George Harrison...

[restive]

If you drive a car-car I'll tax the street
If you try to sit-sit I'll tax your seat
If you get too cold I'll tax the heat
If you take a walk I'll tax your feet
Tax man

Honestly, folks, this is not an original attempt at problem solving here. This is the kind of thing that ordinary ninnies in the U.S. legislature think up.

Chilling effect on public free forums.

[torpor]

I run ampfea.org. We have been an open, free, highly communicative community for the last 6 years, surviving solely on contributions (donations) made by members to keep our services alive. We've done okay with it, but it hasn't been easy at times.

Now, adding *tax* to our e-mail (most of our forums are based on mailing list traffic) would completely cut down on the ability for members to communicate freely. Tax on e-mail is a *BAD* idea.

There are plenty of effective ways to deal with the SPAM problem. Tax is not one of them. Tax is never a solution to any problem.

Enforceable?

[Surak]

First off, how the fsck do they intend to even enforce something like that? I can setup an e-mail server on a *nix box in 5 minutes. (Literally, I know I've done it). How do you account for how many e-mails a user sent?

Secondly, what about businesses? We probably send at least a few hundred (non-spam) e-mails a day out to the public Internet where I work, we'd get hit pretty hard.

And lastly, this is just an other tax, another form of revenue generation. We don't NEED more taxes. I'm sick to death of the government sticking out its greedy little hand. Go AWAY! I already pay tax on everything I buy, every drop of gas I put in my car, every cigarette I smoke, every drop of alcohol I consume, and every dollar I make. I pay property taxes, and I pay a form of tax when I go to the state parks to camp. I pay a tax to license the car I drive, and to just have the privelege of being able to drive.

No, I'm sick of it. Put your greedy little hand back in your pocket and go away!

Relaying & trojan smtps

[selderrr]

this taxation neglects the issues of virii that install smpt servers on John Q. Average's computer trhu which spam gets sent. Kinda hard to tax.

Additionally ,if such a bill passes, I can imagine tons of new virii popping up that use VB to send daisy chaned spam from one client to another.

Whitelists are the way to go for me.

Dumb Idea

[xigxag]

The problem to begin with is that spammers falsify their headers. Therefore under this plan, innocent people would get stuck with a tax bill. If there was a simple automatic process to trace the origin of spam to its source, then we could do that to begin with and simply block the true sender.

In other words, in order to properly implement a tax, we'd have to have already solved the spam problem, which would make the tax superfluous.

Article is lacking Technological Saavy

[DLG]

The idea that one could tax email per letter (not per bandwidth) is inane at best. It means that people will actually stop sending smaller email, the kind that really improves the ability to quickly communicate and respond to communications, and beyond that an effort will be made to economize on a business scale, by getting the most value for your 1 cent (video clips being emailed).

As a second issue, how does the government tax foreign entities for email? And who do you tax, when spam is notoriously made difficult to trace?

And beyond that, I can imagine the dozens, if not thousands, of hackers, just waiting to have this sort of incentive to develop a better SMTP, one that solves many of the problems and loopholes that SMTP currently causes.

Also the article suggests that the federal government should be creating an Federal sales tax on internet purchases. Perhaps I am wrong, but I thought I already paid state tax. Atleast I do with any company that is doing business properly. This doesn't seem different than the old style catalog sales, where you order something out of state to avoid tax. I know Apple charges state tax in NY.

Really for a publication called the financial times, this is not a very financially sensible or reality based article. it seems to be written by someone whose only experience in the internet is reading about it.

Theoretically sound

[seldolivaw]

...but it would never happen.

1. How do free e-mail services work when mail costs money? A large group of the poorest users would decide to stick with the cheap, zero-cost mail, even if that meant they received lots of spam.
   
2. How do you manage the transition? Do people who have penny post refuse e-mail from people who don't? That would put a huge barrier up against upgrading: "hey, buy our e-mail product and you won't be able to receive e-mails from anybody but other people who've bought our product!"
   
3. How do you manage authenticity? Spammers are not the most scrupulous people; they already show no qualms about breaking the laws that exists against spam. Why would they pay attention to this one? Spammers would simply find some technological loophole or a security flaw and exploit it to send mass cheap e-mail anyway.
   

Spam is a natural result of an unregulated network. The reason the Internet is so interesting and creative is because it's unregulated. You have to take the rough with the smooth. Sure, get angry at the spammers, prosecute them even. But don't think about restricting freedoms just because it's convenient to do so: that's what DMCA is about, and the Patriot act, and all the dozens of other stupid "anti-terrorist" laws that countries around the world are implementing right now.

Give me freedom, or give me death. I'll take the spam.

Wait - how the hell do they know who I am?

[Ieshan]

Isn't part of the point of email that it might want to be anonymous? Do you really want the government having records of each and every email you've sent so that they can collect taxes on it?

Author doesn't know what he's talking about

[arvindn]

What he proposes is the best way to kill e-mail. I can think of several problems right away:

• The spam problem currently exists mainly because we can't track down spammers. Until you solve that, implementing an e-mail tax will never get off the ground.
• What about open relays? Of course its stupid and irresponsible to have one, but now you could now find yourself being taxed thousands of dollars for doing so?
• What about an worm/trojan sending out bulk e-mail? Punishing the victim is a great idea.
• How do you deal with mail across national boundaries? I wonder if he has thought about the world about the USA.
• What about mailing lists? How do you propose to tax them? They take up more bandwidth than a single e-mail but less than n individual emails. Defining all these would lead to such a messy overregulated internet that it will lose all trace of what it was like formerly.

This guy has no idea of the technicalities of the internet.

Look at this statement:

The simplest way to regulate spam is through a tax. This requires smashing some myths. A decade ago, Americans were gulled by politicians of both parties into believing that taxing the internet exceeded the government's capability. When that proved to be manifestly untrue, they were told that a tax would be an affront to some mythic libertarian "spirit of the internet".

Mythic, eh? Has this troll heard of usenet? This is just an anti-libertarian rant/flame from some disgruntled control freak. Ignore it and move on.

Er, obvious flaws

[Kraegar]

tax could be made progressive by exempting, say, those who sent fewer than 5,000 letters a year.

Ok, so bigger_penis_now@hotmail.com sends 4999 emails. bigger_peenis_now@hotmail.com sends 4999 emails. get_big_penis_now@spammer.com sends 4999 emails. On the other hand, valid list-serves get billed because they need a consistent address to do their business. Spammers are (obviously) well known for forging the headers on their emails, the from info, etc. So who do you bill? how do you track it down? who are you paying to track it down?

Okay-- so what is "email", then?

[adjuster]

My largest fear from this type of proposal comes from the potentially vague definition of "email" that might be created. What is email, exactly? Are we talking about only SMTP? If so, what about "Instant Messenger" spam? Maybe we should classify instant message protocols as email, too. What about USENET? Should we classify NNTP as email, as well? What about SMS spam? What about the "next big thing", whatever it turns out to be? Perhaps we should have taxes based on IP packets sen1! That would be about as sane... yeesh!

Think I'm making this up? I had one customer who was ranting to me about their LAN-based "email" not working (a year ago, mind you). Upon closer inspection, I found their "email system" to be "WinPopUp" running on each PC that they'd use to send pop-up messages to each other. That was their "email". Think of your own relationships-- you know at least one person who calls instant messenger systems "email" (much like those novices who confuse RAM and hard disk space and call them both "memory").

The Internet works because we all agree to abide by the same standards, and agree that ICANN is the authority for naming / numbering. This spirit of cooperation works because we all benefit-- not because some government legislated it so. If some idiotic "email tax" does get legislated in the U.S., we run the risk of making ourselves into "second class" Internet citizens, and creating the "United States Internet" and the "rest of the world's Internet".

Spam is a social problem being "enabled" by technology. It cannot be legislated away, because it breeds on human nature: the desire to have large returns from little work. Real answers are things like ubiquitous public-key infrastructure, signed email, reputation "credits" (or "karma", if you like), and accountability. The decentralized "web of trust" model of PGP combined with the "reputation credit" model of eBay is what I'm talking about. Imagine an email client program that categorizes incoming mail based on the "cred" accumulated by the sender in a decentralized, non-government controlled "reputation tracking" system.

Taxes and laws aren't going to solve the problem. They're going to stifle the real power the Internet has-- bringing people together and enhancing communication. Worse-- they risk making an "island" of any country who would enact such idiotic legislation.

How retarded

[A+non+moose+cow]

Every problem that we have that revolves around a man-made technology is fixable with a man made technology. We don't need taxes, we need to fix the core of the email system.

"The simplest way to regulate spam is through a tax."

Perhaps this is true, but the simplest way is almost NEVER the best way. How are you going to define the differences between email and every other electronic message passing? Will the tax suddenly apply to IM's? then web pages? then internet phone calls? What happens 20 years from now when the technology is different? Will the tax stop? Hell no! Most likeley there will be a new tax code buried in every little packet so that the government can get even more money for nothing.

Why should the burden of the "fix" for this problem be shouldered mostly by the people that it is trying to "protect"? I don't want to pay my government for the privelage of doing something that was previously free. That does not solve anything! I want the people sending spam to pay ME!

This tax might sound innocent on its surface, but it only takes one little thing like this to make it seem acceptable to throw a tax on every digital transaction.

To all you dopes that think this is a good idea, think about the big picture. This point in time is not static. Technology is changing constantly. Spam will die when the time is right. For now we can just deal with it with the methods available to us. Do not let the government see the Internet as the latest frontier where they can profit by "saving us from ourselves".

Destroy the global village to save it, eh?

[ianscot]

Looks like the spammers are winning their guerrilla war, then. We're suggesting responding with disproportionate force in a way that puts the main burden on noncombatants -- always the sign you're about to lose something like this.

I mean, we'd be throwing a huge burden on a system that basically works in order to go after abusers who've already shown they're not going to give up in an arms race for their survival. Good thinking. It's not like spammers would try to, say, abuse other people's servers to send messages without an attributable (read: taxable) source on them. No way. They wouldn't think of that one, no precedent for that... Or were we creating a big new policing division of the U.S. Postal service to defend e-mail servers?

Seriously, how wrongheaded is this? Extremely. It'd be impossible to administer and track without seriously degrading the flexibility and increasing the cost of e-mail systems we have right now on the cheap. How many times has your address changed? Who's tracking your tax bill across all those? Etc. etc. etc. Classic blindered thinking -- a pet idea we should pat on the head and move past. (Exactly how does this tax get collected across borders? Person hasn't addressed the international nature of the internet. Person suggests a "progressive" version, flying in the face of 20-some years of U.S. taxation trends. And so on.)

Create a new medium, don't try to fix the old on

[Sherloqq]

IMHO, a better idea, compared to imposing taxes on email, would be to create a new infrastructure for exchanging of "email", where things like forged headers, open relays and spammers would be a thing of the past. What I'm thinking of is essentially a new TCP port, a new service, a new daemon, designed from scratch, one that takes all the concerns of today, does some forecasting for the future, and makes us forget about spam for a few years. Something that uses certificates from a few select (trusted) authorities to verify connecting server's identity (kinda like caller-ID, you only answer the calls you want to allow) -- SSL is an accepted way for us to verify the identity of the website we're trying to connect to, why couldn't it be a way to verify the identity of the server trying to connect to us? And throw in some encryption into the mix so that the traffic can't be \easily\ snooped. Rogue servers would quickly get their act together if they started to have mail queue up because their certs were expired / bad etc.

I think that trying to get an old medium to conform to today's demands might be more expensive (taxes or no taxes) than to simply coming up with a new one. A well-designed (and I don't claim to have one) solution would take less time to implement and I think would be easier to manage.

I understand that SSL, encryption and such would not be music to Dept. of Homeland Security's ears, that they would much rather leave the burden and cost on us, but there would be some upsides from their vantage point, too -- there would be less traffic for them to sift through (though it would be more intensive to process it), and I'm sure they'd get their back-door tentacles into the architecture somehow.

I won't even get into arguments like "how do you tax someone who's out of your jurisdiction", or "how do you get thousands of sysadmins try to add SSL to sendmail/qmail/pick-your-MTA without breaking backward-compatibility" etc. Just like gopher and ftp have/are becoming things of the past, I think SMTP should too.

Manifestly untrue.

[rjh]

Spammers just can't afford to sign their mails - with any signature.

Spam is one email being sent out a million times. Identical copies of messages flood a network. (If you don't believe this, I'll show you a spam I recently received which had over a thousand entries in the CC field. The spammer accidentally CCd instead of BCCd.)

If you're sending a million copies of one message, you only need one PGP signature. It becomes a fixed one-time fee per different email you send out, not a per-message CPU tax.

Re:Manifestly untrue.

[rjh]

Great. Now you're advocating changing an IETF RFC away from its original intended purpose (protecting data in transit) and towards a specific purpose (making it a CPU tax) by the introduction of new MUSTs which serve absolutely no useful purpose towards its original task?

Think about it for five minutes. You'll come up with half-a-dozen methods which don't involve subverting an IETF standard.
.
.
.
.
.
.
.
.
.
.
Free hint: require a mailer field, X-SHA1-Hash, which is a 20-byte hash of (a) the message, (b) the timestamp, (c) the sender, (d) the original mailserver, and (e) the receiver. Anything which doesn't have an accurate X-SHA1-Hash gets discarded at the destination MTA. Presto. You achieve your CPU tax, but you don't subvert an IETF standard in order to do it.

I leave finding all the flaws in the above idea as an exercise for the reader.

Tax? No thanks.

[mr3038]

The idea to tax all emails is terrible. First, only those who abuse the system (spammers) should suffer from any change we take and second, those of us with legimate needs (opt-in mailing list admins) must not be charged if it's possible to make it work without money (like it's working today). Trust me, I receive many mails from various mailing lists and I don't want to pay for those just so that the admin can cost the taxes to distribute the list contents.

In addition, spammers would try to workaround those taxes, and possibly succeed, just like they forge the headers of spam they send today. As a result, legimate users would pay the tax and spammers would send the spam for free. Adding some heavy-weight bureaucracy to the problem (tax system) isn't the solution.

The idea in A Bounty on Spammers article seems like a one possible way to go. It's not perfect because it doesn't get rid of the wasted bandwidth immediatly as it doesn't outlaw spam, only spam that isn't clearly marked as spam. I'm not entirely sure about the $10000 bounty the article suggests. I think it should be proportional to the number of spams sent -- say, $5 per spam sent. And make that $50 per spam sent if the spammer tried to forge headers! It would really hurt to send one million spams with forged headers unlike today.

Once we have [ADV:] in every spam we get, we can modify SMTP servers to return "555 Advertisements not allowed" if one tries to send a spam and save some wasted bandwidth.

Alternatively, once we get micropayments work, we can allow spammers to send spam that transfers some money to the reader once he reads the spam. Because sending spam doesn't cost anything, the spammer could choose to pay some small amount of money to get the receiver to read the spam.

You have 25 paid advertisements in your inbox. If you read all of those, you'll reveice $2 to your MicroPayments Account. What do you want to do? [Read advertisements] [Remove advertisements]"

Perhaps some poor guy could make a living reading spam?

Good Idea in theory.

[jellomizer]

But in real life it is not going to work.

1. Whos job will it be to monitor all the e-mail traffic. The sender or the reciever.

2. Spammers use Open Relays or fine vulnerabilities in the persons system (thus able to send 1 message to a hundred users) or sending data threw a non smtp protocol. Thus avoiding the tax or minimizing it $.01 for a million messages. and the poor victim besides getting blacklisted has to pay $10,000 in taxes.

3. When being sent threw a foreign site. How do you collect taxes from them?

4. How do you enforce this?

It seems like a good idea in the perfect world but it is not. All this will end up doing is putting extra expense on the honest business man and individual. But most spammers are far from honest and would end up doing what they have been doing.

good article on micropayments

[sootman]

Lots of good points have already been made, so I won't rehash them (and I'm only looking at +5 already!) but here's a good article on why micropayments will never, ever, ever, ever [emphasis mine] work by Clay Shirky.

Taxation

[Orne]

So you know, the original income tax was first instituted to help fund the civil war, at 1/2% tax. It was later repealed, as it was found unconstitutional in the courts for the government to tax income.

But congress tried again in 1913, and was a 1% tax on the top 1% wage earners (in 1913, those that earned $3k to $20k per year).

Fast forward to today, and take a look at how far we've let the government tax our earnings... today, the top 1% wage earners pay 38.6% of their salary in taxes, accounting for ~ 29% of the total (top 5% wage earners paid 50% of all taxes in 1999)

Now we have people saying, "I don't mind paying $0.01 for my emails"... What restraint has the government ever shown that next year it'll be $0.02, then $0.05 (who'll miss a nickle?), a dime... And where the hell will all this money go? into improving the internet infrastructure? Nooo, that's a private business. The money and accountability will disappear, probably into Medicare, Social Security, and all the other social programs that government isn't supposed to be in.

Government control is not a road we want to walk down folks. Yes, control of communications through taxation. I can't understand why the crowd complains when little things are being taken away, and the same people just turn around and hand the big ones over willingly.

Think outside the box.

[uberdave]

I'm going to guess that you're an american. Americans tend to have this blind spot that extends from their borders and works outward. Most of them tend to ignore (and be ignorant of)the rest of the world. For example, in the movie Outbreak a plague is sweeping across the States. There is a scene where they extrapolate the spread of the disease. Curiously, it never crosses the borders.

The idea of taxing email, or having a government sender verification site, contains the assumtion that the internet is somehow contained in a single country. When a Pakistani is sending an email to a Turk, who's government website is the Turk supposed to check? What is the tax to be paid in? What happens with a country that decides that it will not comply, how do you check the key?

Spam is an international problem. It cannot be fixed by a national solution. Legislation will not work, because there will always be countries which do not comply. If there is going to be a solution to spam, it is going to be a technical solution, not a legal one.