Slashdot Mirror
AMTP as an Alternative to SMTP
SamMichaels writes "AMTP was published as an Internet Draft last week. It suggests using a 'Mail Policy Code' during the transaction to identify what kind of mail is being sent (administrative, personal, commercial, etc). Another plus is the use of TLS using x.509 certificates signed by a CA so you know exactly where the mail came from. Sounds like a solid plan...now to get a certificate signed for a decent price is the challenge."
does it involve the Evil Bit ?
But in general end to end security models like this have had trouble because it has not been possible to get central signing in a way that can be administrated cheaply enough to allow wide deployment. I fear that this will fester in the same acceptance purgatory as DNSSEC, for roughly the same reasons
Try http://www.cacert.org/ as a free Certificate Authority...
-- Shaun "Blessed are the geeks, for they shall Internet the earth"
WHy should everyone pay CA for the certificates, we already pay for the domain name if they want to require certificates, then you should get one for your domain free with the domain! Ah I hear you say its so CA can vet people. No thats not the case, anyone can get a certificate for a domain they own all this does is make sure you know where the mail came from (not a bad thing) and impose a CA tax on all domains.
James
So why is this SO different from using TLS ?
Remember that smtp is still used and you have to be backward compatible....
I truely dont see how this is usefull. It seems like a desperate act against spam. Instead of going after spammers legally and work on a better way to filter junk mail they go for the NUKE? There are also down sides to http/ftp should we change them as well? The answer is no.
Dont just mail it - Maileet
Also spammers could just register themselves and keep spamming. They could just use a different ISP every 48 hours so in this way could never be stopped. A new address for every spam could be used. They could identify themselves as a home user so email filtering software will let it through. After that spammer is banned he/she will have another address and use that.
http://saveie6.com/
Oh yeah, sure. And I've got this really nice bridge to Brooklyn for sale here, too.
Now, viruses browse your contact list and send a message to everyone in the list. If this breaks through, the viruses will browse your contact list, and send a message to everyone in the list using the key, something which Outlook will probably do automatically.
Oh, yes, there is one difference. The CA will get lots of profit for selling certificates.
From the Draft:
This specification addresses the issue of Unsolicited Bulk Email (UBE) by providing coded tokens to identify mailing handling policies. It is possible for a sender to use a trusted MTA to transmit false tokens and thereby subvert an MTA's policies.
So it would be interesting if implemented with legislation rather than without; that way there is a serious disincentive for spammers who manage to subvert the policy.
Never underestimate the predictability of human stupidity...
I reckon we can use this system to help Microsoft and AOL track those unsolicited forwards to maximise their donations to sick infants...
although i have not researched this idea in much depth, it seems to me that charging fractions of pennies for each outgoing email would go a long way to eliminate spam.
I would envisage building an MTA infrastructure around a PKI that works like the clearing banks. e.g I 'pay' to send you an email, you 'receive' the 'money'. You do the same for sending your email. At the end all the servers 'settle' up. Since spammers send so much more then receive they loose $$$$ and go out of business.
A good idea to start with...
However, after having spent the weekend tracking and blocking a flood of SoBig viruses from a couple of large canadian ISP's which has focused my thinking this morning, I think this type of system will again simply cause the spammers to look for alternate delivery systems, i.e. as more ISPs take a tougher line against spam, more and more spammers will start to take extreme measures to propagate their product.
So cable modem users with big bandwidth and vulnerable machines will be used to send the spam. The spammer uses a worm to find vulnerable machines and piggybacks the users connection and sends the spam, it still goes through the ISP's mail server and so will get validated and delivered.
Also, unless I missed something (possible) even though the recipient can specify what type of email he will accept, there's nothing to stop the sender simply specifying whatever they feel like.
An amusing aside, I sent a warning to one of the ISP's (sprint.ca) that was the source of the viruses on friday warning them of their problem, the flood (one every 30 seconds) was still going on during sunday, so I sent the same warning but copied in their 'corporate customer email' and 'noc@' email contact addresses, believe it or not I got a response within an hour telling me that they didn't appreciate me "SPAM"ing their email addresses and I should just email "abuse@"! Oh and the virus flood is still going on. Ho hum.
...I can't run an AMTP server off my DSL unless I pay for a CA? Sounds to me like the IETF are trying to lock the widest used method of internet communication into a more 'corporate' structure. I thought we learned our lesson with telco?
but anonymous communication via e-mail is probably dead with this idea. I wonder if the price is too high.
If the from: field does not correspond with the Cert then the MTA will know this and might block the mail . So al least you knwo WHO you get the virus from.
The Sobig-Z variant will use your own e-mail adress if this is in place.
All spammers will choose code 94RB493-5P4M.
So filtering spam will be extremely easily and the spam problem is finally solved.
Next revolution: making your house secure by attaching a plate "Please don't break in !" to your door.
www.instantssl.com/ is he only Certification Authority providing low-cost, fully-validated and warrantied SSL Certificates.
You forgot to include a decent reference.
Besides, don't you want to hear some poor sod's server scream out its last dying breath early on a Monday morning? Ahh... better than fresh coffee.
Unfortunatly the ISP's of today wont buy it, if 60% of email is spam then lots of ISP's will be making money giving spammers service obviously.
So anything that had potential of stopping Spam or just Making Money in general wont be brought by todays ISP venture companys. Well certianly the larger ones.
arbitrarily selected and
impossible to enforce.
Case in point: "pol The email message was sent on behalf a politician in public office"
Having said that, I suggest the following MPCs: mil, sex, drugs, rocknroll, ???, profit.
You can attach boosters to anything. It just costs more. -
Anonymous Coward on Sunday November 07, @12:26PM
This draft fails to provide any significant advance over SMTP. The use of TLS and authentication between MTAs merely provides a mechanism to identify policy violators. It does not (as the draft recognises) prevent fraud against a CA, it does not address the problem of distributing certificate revocations, it opens the door to a new era of DoS attacks against CA services (which will likely be far less robust than the DNS system), increases the barrier to entry for the ISP market (with costs being passed on to consumers, of course), and the opportunity for politically based service interrupts (like we already see with SPAM black lists) is just plain scary.
Further to the last point: ISPs are generally forced to react to SPAM rather than be proactive (it is generally impossible for an ISP to distinguish between UBE and opt-in lists). This means that spammers will always be one step ahead, and any network with enough bullying power can summarily demand the revocation of another ISP's certificate for policy violations. An entirely new class of disputes will arise, making SPAM black listing arguments seem tame.
The additional responsibilities this draft places on end users is also unacceptable. You will have to remember to flag your message "commercial" or "personal" and whether the distribution is "individual" or "customer". And of course is someone complains about the classification you could end up having your service terminates, so that the ISP can prove it took appropriate action against the "abuse".
We have to accept that it is a fact that we cannot get away from SPAM. The postal and Internet mail systems rely on the opportunity to send a message to any recipient. Implementing a client side PKI-based whitelist for mail would be trivial (and many people do this), but destructive to the communication medium. The object is not to get away from SPAM, but to ensure that we, as recipients, do not bear the cost of SPAM.
Any system that filters messages at your mailbox, or your ISP's server, costs you money. Your bandwidth and your ISP's bandwidth are wasted. AMTP may reduce this, but adds other hidden costs like a certified key and probably the ongoing maintenance of good relations with many peer MTAs to avoid accusations of abuse.
Anyone interested in alternatives to the SMTP system should take a look at D. J. Bernstein's Internet Mail 2000 ideas; in brief, the sender holds the message in his/her mailbox and make his/her bandwidth available to allow the mail to be downloaded by the recipient (who can obviously choose not to download it).
i-name =twylite [http://public.xdi.org/=twylite], see idcommons.net
Does that mail policy code sound like an evil bit to you too?
Tagged as commercial, in the bin if goes!
Beep beep.
wait. I don't want to flame or troll - but wait a sec...
Having a centralized hub from which all are certified means that the central junction can log each and every email sent or received (not just the body, as being done now, but also the *true* source of the email).
So? What happened to the freedom of speech?
I think that the real solution will involve some sort of "grouping" of hundred of thousands of people all over the world who trust each other and all have the same signature... that way no one could ever be traced on the one hand and anonymous posts will remain anonymous while the global signature will testify the validity of the sender (mass emailers, spammers and the such will just never be accepted to any of these groups).
It would be like "a guild of emailers".
Any sense in the above? share.
This is yet another technical solution to a social problem. It's one of the better I've seen - no doubt about that - it's just that ... it wont work.
I reckon we can work out technical solutions all that we want, which in turn will give us a brief relief for spam. But then the spammers catch up, and we're back where we started.
As long as there's money in spam, there will be spam. We've already seen that spammers are no good scumbags that doesn't stop at *any* means - including dDos attacks. The only solution to spam is a political approach. First of all, we need good, sound anti-spam laws. A very simple law like "it's illegal to send commercial email to anyone without prior consent" would do. Now we have a useful tool, and when the first dozen spammers has been sued back to the stoneage, I believe the spam load will drop for good.
Besides, why do *I* have to jump through hoops to get rid of something I never asked for in the first place?
For those complaining (who havent read the spec). The MTA is the one who buys the Cert. Not the end user. Can people still spam? Of course. Any system is vulerable. This just lets you know where the spam is coming from. Then the local MTA can block it. If they dont, then the receiving MTA can block the sending MTA. It creates a "conform or be cast out" sort of system. Looks better than our current system.
Just my 2 cents...
Using TLS has a benefit in cutting down forgery and making spammers easier to trace, but asking all mail system administrators to set up X.509 certs is a huge amount of work for that small gain. (eg. I'm sending an email to 10 of my friends to ask for sponsorship for a sponsored bungee jump -- how do I tell my ISP's mail server to use entity "ngo" instead of "per", and what are the chances I haven't a clue I'm supposed to do this?)
The Mail Policy Code is a waste of time. Spammers will lie, and a huge proportion of everyone else will get it wrong through carelessness. It's chief benefit would be to help legitimate bulk commercial email (which is difficult to allow through content-based filtering), but I think the future of that kind of communication is in "pull" protocols where the subscriber rather than the publisher controls the subscription. (I outlined a couple of ideas in an earlier comment).
Email is now Dead for public general use, good for corps, bad for people, Pay for a Cert, nope.
You are going to see SMTP run side by side with AMTP, its not going away, if it does, ur going to see IM take over for public comms. (Its already doing that).
Any form of certificate based authentication is a serious problem for freedom of speech and reliability. Anytime you can use a certificate to turn off a spammer, you can use it to turn off anyone's ability to speak/communicate.
Reliability also becomes critically impaired because there is now an additional requirement for every single piece of mail transfer to check the validity of its certificate with a given certificate authority.
If a certificate authority is unable to handle the load, what happens to e-mail? Is it delayed? Is it let through (opportunity for spammer)?
Who pays for the infrastructure to handle all of these requests?
Additional questions to consider is what happens if you have a rogue certificate authority who hands out certificates to spamming entities and will not revoke them?
Who controls turning off certificates? Is there any oversight on their actions?
Can a certificate authority be influenced by a government or large corporate entity to revoke a certificate?
if this plan is adopted, how can one maintain competition in the certificate market unlike what happened in the Web server certificate market with VeriSign?
my bias is from the sender pays world. A certificate controlled environment is more receiver pays then it is today. The receiver will pay for all of the changes in hardware, bandwidth, network reliability at the ISP and certificate authority. It will not be cheap. On the other hand, sender pays systems such as camram (http://www.camram.org) are decentralized, highly cost-effective and shift costs to the sender.
OK. Can someone please tell me the difference between this and:
- adding a 'X-Header: this is not spam'
- extending trust to specific IP address/address ranges (if someone from 1.2.3.4 says "its not spam" then I trust them)?
If you are going to say that it uses certificates to establish trust relationships and so it is more secure then you can just go and whistle. You can't reliably spoof an IP address on a TCP connection over the Internet (UDP yes, TCP no. LAN yes, Internet No.)
Spam is a problem because it is convenient for us to be able to receive mail from people we don't know.
If we choose to not receive email from people we don't know, then there are many ways to achieve that now, within the existing protocols. They are even easier for home users to use too.
THIS DOESN'T NEED A NEW PROTOCOL-LEVEL COMMAND.
Phew, sorry, but this comes up on slashdot WAY too often. Please stop it.
AMTP seems like a solution in search of a problem. Unless most of the Internet switches, there will still be open relays. Spammers that don't use open relays and operate through existing ISPs will continue to be able to do so.
Also, to accomplish what AMTP apparently wants to accomplish, it's not necessary to involve a central, costly certificate authority--anybody who wants to talk safely to sites they know and trust can exchange keys with them.
AMTP looks like it's mostly going to be a boon to the bottom line of certificate authorities, and an erosion of privacy for "the little guy". I don't believe it will make a big dent in spam.
I'm company A.com, and I buy a certificate (or get one for free from some free-sign authority). I use it completely legitamately. Only for receipts to paying customers, and to deliver "timely updates" for their software or whatever.
Now I fall on hard times. And go broke.
In the liquidation proceedings, a spammer swoops down and buys my certificate. It's a valued commodity to him, and the courts, I don't believe, are not going to care about the nefarious purposes he may have in mind.
But now lots of people are getting spam in my name.
So, would the CA have the power to "ungrant" the certificate, and therefore also be able to hold thousands of companies hostage. (Imagine starting as a 'free' service, and then suddenly 'changing your policy'.)
Or will the clients at the end have to say that certain CA's aren't valid. If so, how is this different form white-list/black-list.
Now, anything that tries to fight spam I am for. However, I believe the number one thing needed is accountability. If someone sends me mail, I need to be able to reach out and touch them, with a phone number or anything else I feel like. And the latest round of email viruses wouldn't work if I couldn't fake the address it was being sent from.
I demand a million helicopters and a DOLLAR!
If mailservers had valid reverse-DNS entries and would send their real name with HELO at the start of SMTP communication a lot of spammers were not able to spread their stuff.
If i enable checking of HELO domains almost all spam is gone, but also a huge number of valid email servers too (sourceforge.net for example) simply because they are setup incorrectly when it comes to HELO and DNS stuff. If DNS and HELO commands were setup correctly (and are checked at the servers) then spammers cannot stay anonymous like now, because they have to use their real domain-name (registered to somebody) have to setup valid reverse lookups (IP adresses normally belong to the ISP - so the ISP has knowledge of who requested which reverse domainname). Now i can log who sends me spam and can identify the person behind it, or blacklist the server. The problem is that correct HELO is not a must in current smtp rfc and people don't give a shit about correct dns setups.
Being more strict on SMTP will not stop spam, but it will make it harder for spammers to stay anonymous and operative (blacklist-servers) plus there's no need to pay a CA to issue SSL certs for all my domains.
The best way to deal with spam is to educate the masses so that spammers get less and less ROI and eventually go belly-up. Problem is, this will probably *NEVER* happen. There are just too many suckers out there waiting to be taken advantage of.
Laws won't help. If you're lucky enough to catch a spammer in a state/country with strict laws on spam, they'll just get some small fine. If spammers can affort their own mansions from their work, the fine won't really work, and I fear the possibility for abuse with yet more laws is significant.
So what remains? Short of ritually butchering spammers, which I think is still illegal in some places, I don't see any viable options.
why not the isp mail provider to start. if you get the isp to issue certificates, make them responsible for their mail users. people that get their own mailservers could still get a cert from their isp.
if the isp riske being bounced, i think they will manage their mail system/users a little more closely.
eric
As gopher was designed for distributed document search and retrieval, I was thinking of it more in terms of http than ftp.
(I'm not kidding)
My favorite client, Telnet, is now too simple for this protocol... how can I hope to use certificates when I have to type them in manually?
Any form of certificate based authentication is a serious problem for freedom of speech and reliability. Anytime you can use a certificate to turn off a spammer, you can use it to turn off anyone's ability to speak/communicate.
Not this old one again. Freedom of speech is not the same as a right to be heard. You can say what you want. And I can choose not to listen. You still have your freedom of speech.
Reliability also becomes critically impaired because there is now an additional requirement for every single piece of mail transfer to check the validity of its certificate with a given certificate authority.
You can validate certificates without needing to contact the CA by (in effect) just verifying the checksum.
If you want to use legislation to stop spam, make it illegal to get buisness from spam. morgage company XYZ gets your name from a broker, who used an agent, who got your name via a reply to their spam.
XYZ should be at fault. There are already laws in countries like this dealing with drug money...
As mentioned above, adding a CA will only make it 'more difficult' for spammers. It will not stop them .
Am I wrong or doesn't Thawte give away free certificates?
[sig]www.masterslate.org[/sig]
First of all, the CA has a business interest in selling as many certificates as possible, so it does not make sense to assume it will exert due diligence to find out whether someone is a spammer.
Second of all, spammers won't go to the CA and make it obvious they are spammers. They will pose as flower delivery agents with a brand new name, and the CA will give them a certificate and that's it. Then the spammer will start spamming, someone will complain to the CA, and they will issue a revocation certificate. In case you don't know TLS very well: revocation certificates do not scale AT ALL, it basically means that the AMTP server needs to have all on disk or we need a protocol to get them (possibly LDAP?). Since spammers will be using throw away identities just like they do now, I am seeing millions of revoked certificates.
So the only thing this approach does is create an artificial bottleneck at the CA, because they will be responsible for revoking the spamming "rights". Spammers will still spam and then in response be denied access, just like now, so even if this CA stuff works perfectly, and we have a high performance revocation certificate request protocol (which by the way entails enormous bandwidth cost for the CA, if all the mail servers in the world send a query for each incoming email, think about it!), we will still have exactly the same amount of spam we have now, because spammers will still spam first and be denied access later.
The next question is: what do we do about non-responsive CAs? Let's say Verisign gets in the email CA business, and they basically run the same fully automated CA business they do now, and they get bribed by the spammers just like ISPs get bribed by them now, and they don't revoke the certificate of a spammer, what are you going to do? Not accept any mail from anyone signed by Verisign ever again? That is basically your only option, and it is even worse than the collateral damage we have these days, when "only" one IP is barred (not counting SPEWS). If you think bribing Verisign is unlikely, consider the stakes! If you successfully bribe Verisign as spammer, you basically have permission to spam everyone, all over the world, and nobody can do anything about it except what we do now, unsuccessfully, i.e. block single IPs. And the spammers are still in business, so it's not enough.
So all in all, I think this is a spectacularly bad idea that will not work on ANY level. The up side is that it may finally bring encrypted email to everyone.
The International Postal Union and the national postal authorities of all the countries of the world should provide free certificates for their citizens. Its a basic authentication document like a passport that should not be left to private concerns for security reasons. Private corporations could be charged some kind of nominal user fee (*really* nominal). I know we don't usually go for government programs but I've never heard anyone suggest that Verisign should be allowed to raise an army, mint coins or issue passports. I think I heard awhile back that the Canadian government is issuing certificates to all its citizens so they can access their confidential government info online. Of course the benefits would be lost if the U.S., for example, subcontracted to Verisign to do the work. That would just be another taxpayer rip-off by a big political contributor. If U.S.P.S. couldn't do the job with internal resources maybe we should find some new people to run it.
DMCA could easily be used here to block e-mails from any domain using USA based CA's.
Just pretend I'm a German citizen living Germany, having a .de domain, and have a few mailinglists. One of the mailinglist is about how to exercise my legal fair use rights in Germany, which sometimes relates to some products from USA based companies.
Now, imagine that my CA is VeriSign. This beeing an US based company, it can be slapped with a DMCA for my mailinglist. Suddenly I got real problems sending e-mail at all.
Freedom of Speech does not require anonymity.
o The Subject of the certificate MUST have a fully-qualified domain name in the Common Name (CN) field that matches the PTR record found by a DNS query of the associated IPv4 address in the IN-ADDR.ARPA zone. Equivalent tests SHALL apply to connections using IPv6 or other non-IPv4 protocols.
I don't know if this happens to everybody but I have my servers in collocation and the IN-ADDR.ARPA records are controlled by the Collocation Company (in this case MCI Worldcom) and I don't have access to that records so my SMTP server doesn't resolve right when doing a reverse query.
Maybe it's only my problem but I think that the certificate should be enough check already, PTR records do not always conform to your mail server name.
May the source be with you!
The certificate authenticates the MTA passing on the message, not the sender. Many people send out mail with a "From:" address quite independent of the network originating the message; I do myself.
- Get a certificate on credit
- Send out an absolute stackload of emails in one go
- Have the certificate revoked
- Don't pay for certificate
- ???
- Profit!
- Goto 1
What we really need is a pay-per-message system. It would work just like mobile phones: you buy "credit" from your ISP, it doesn't get topped up until they've actually seen the money, and it goes down each time you send a message.But it might not be necessary if everyone just configured their SMTP servers properly, checked the HELO/EHLO and refused anything without a valid reverse DNS lookup, and barred anything with Inappropriate Attachments. {I once got sent a
Je fume. Tu fumes. Nous fûmes!
Individuals don't really give a damn about getting CA signature, since if you read the small print for 'personal certs' you'll see the trust bestowed by the signature is worthless anyway. So after a lot of screwing around, you end up with a cert which if you're lucky is free but otherwise costs $10, that carries no trust and expires in a year or six months anyway. Whoopee. That's even assuming you have enough of a clue to figure out how to get a cert in the first place.
OpenPGP is the perfect solution here since people can whip up a key in no time, for free and it effectively implies the same level of trustworthiness as the one from the CA which is to say none whatsoever. Over time however they can build more trust into the key by getting their friends and associates to sign it.
Now for businesses, PGP is fine too. There is nothing to stop a CA signing a PGP key, so if a company wants to buy real trust for their key, it is there to be had in the same way as you get from PKI.
Which begs the question why anyone bothers with PKI at all, or why OpenPGP is not being integrated into the x.509 standard. As it stands no email software integrates PKI seamlessly, it's too complicated, it's too slow (it uses RSA for the entire message unlike PGP), it's too hard to get a key and it offers no more trust that PGP.
It seems to be somewhat of a lame duck really.
As I recall djb had an alternative to SMTP called Internet mail 2000. The interesting thing about that was that the e-mail wasn't stored on the ISP's spool, but the senders spool until requested by the person whom the message was delivered to. It's an interesting concept. I think the combination of AMTP and internet mail 2000 would a good idea. The biggest advantage of this 2 pronged attack would be that the amount of cost shifting that occurs with spam would be greatly reduced and identification of the spammer is easier.
AMTP is a good idea but like any good idea there are a few caveats -
1. SMTP is simple and requires little overhead - that is gone with the X.509 certs and TLS
2. One may setup a web-server or mail-server at a moments notice to deal with traffic or get a project finished pronto. With AMTP that machine will have to get an x.509 cert to be able to send mail (and have it accepted) - thus increasing the amount of time and money that it takes to get these services in place. (Site wide certs would sacrifice the ablity to truly identify an offending machine)
3. There is nothing to stop a spammer from getting thousands of certificates and burning through them as they spam. Many spammers already right off dial up accounts, DSL, T1s and other form of access on an almost daily basis. This will simply be a another small expense that must be endured to send out an advertisement to "21 million confirmed opt in customers".
4. This won't stop spammers from hijacking others valid certs, such as on webservers running formmail.pl or mail servers that allow relaying or proxying through them.
The saddest part of this proposal is that eventually the "altruistic" protocol SMTP will die. Don't get me wrong, SMTP has a lot of flaws, but if you think of it in a more philisophical sense, it's a little sad. The Internet was based on the free exchange of ideas - and more importantly traffic. The spammers have forced us to censor ourselves, reduce or try to eliminate anonomity and move away from the "I trust you" model to the "your bad unless I can prove otherwise" model. The death of an egalitarian idea, that anyone could send e-mail. One more victim of spammers.
In the end if you want to stop UCE you will have to take the costs of such a business out of the cyber world and put them into the real world. This is a step in that direction.
cluge
"Science is about ego as much as it is about discovery and truth " - I said it, so sue me.
to mean something like "this e-mail, or copies substantially similar thereto, has been mailed to fewer than 100 different e-mail addresses, excepting to the e-mail of a person who has affirmatively requested the distribution and has not subsequently withdrawn the request, within the past 7 days."
The proposition is true for virtually all ordinary e-mail, including list services, so that ordinary mail can routinely place the listed message without misrepresentation. However, virtually every piece of spam including the header would affirmatively misrepresent its means of distribution. User clients could filter for or against appropriate X-DISTRIBUTION headings.
Add to this a legal regime making it strongly actionable, not to send lots of unwanted mail, but to send mail misrepresenting the manner by which it has been sent. Because it punishes only false statements, does not require any speech be added to existing e-mail, while still permitting anonymouscommunication, the First Amendment considerations are obviated. Now make the penalties as bad as needed to deter -- make it a crime, provide powerful civil statutory damages and automatic attorney fees and so forth. Make the penalties apply to everyone down the line facilitating the spam, including the persons commissioning the spam and those contributing to its production
True, the process doesn't meaningfully deter truly anonymous spam that doesn't seek any reply or reaction -- but most spam DOES actually try to sell me something or get me to look at a web site, and so forth. Provide a means to sell or obtain information about the receiver to somboedy, and you have provided a honeypot hook.
Reducing the incentive to engage in commercial spam could significantly reduce the commercial interest that drives much of modern spam and, visible prosecution or judgments against contemptible spammers could suffice to dramtiacally impact the problem.
What we really need is a pay-per-message system. It would work just like mobile phones: you buy "credit" from your ISP, it doesn't get topped up until they've actually seen the money, and it goes down each time you send a message.
Lots of people suggest this. It's too expensive to run. Already for domestic landline telephony, the cost of billing is a significant proportion of the total cost even for postpay. Prepay is considerably more expensive to run. (I used to work on telephone billing software).
The system would be awash with fraud, as well.
Is anyone working on a prototype for this already? How soon will it be before M$ tries it's embrace and extend strategy to obfuscate the protocol. Lets see...
Get yourself a free Thawte community cert. This doesn't scale for large organizations, but for a very small org it can work.
"Beware of he who would deny you access to information, for in his heart, he dreams himself your master."
This tried to go through as an article on k5 a while back too but got voted out. AMTPs commercial/personal/spam field can easily just be a header field inside a message, as has been suggested several times - and TLS security and authentication already exist in ESMTP. So what exactly does AMTP do that can't be done with the existing widely deployed protocol?
11*43+456^2
Lots of posters in this thread seem to be assuming this proposal is to force everyone to buy a cert to be able to send mail. The spec requires mail servers, not individuals, to have certs. Therefore, your ISP would have a cert to say "yes I really am someisp.com" when sending your mail.
And the MSA (not MTA) that accepts the message with the forged From: address is broken and should be fixed or blacklisted.
Sorry, the days of trust and friendliness are over.
(I send almost all my mail from a network that has nothing to do with my From: address, but I send it via a MSA that checks my From: address. In a AMTP system the senders *MUST* be authentificated by their MSA. I'm not sure the RFC says this.)
Watch this Heartland Institute video
& then have each domain's key be downloaded from somewhere like domainkey..com
Then you won't have to pay anything for the signature.
What then?
Virus hooks into existing outlook instance (usually installed by default)
Sends legitimate spam under that virus infected user.
SPam spam spam...Whats new. All this is doing is shifting them from simply sending emails to ATTACKING computers to get mails sent.
I think this is going to cause more problems that it solves.
One solution is for not everyone to be able to run a mail server.
Have a network of Authorized Servers to start. These can communicate through SSL or any number of encrypted and authenticated systems.
You want to start a mail server into the "club", you have two choices, get a sponser (ie: your ISP) or put real money in an escrow account.
You get a rating in the group as to the the kind and amount of mail you send. If you get too many complaints about your mail, you lose points. If you behave well long enough without problems, you gain points. Operate long enough without problems, and your account is split off to become your own entity seperate from your sponsor.
If you are sponsored, you not only lose points from your mail domain, your sponsor gets points deducted as well. If you are self sponsored, you lose money from your escrow account.
This will have two main benefits. You make it hurt (expensive) for people sending mail that people do not want. You also make this reputation for managed content a bankable commodity. An ISP for instance can have some "four star" (as an example, probably tradmarked scoring would be needed) rating as an enticement to get people to send mail through them.
Corrolary benefit: Takes away the temptation for the ISP that would look the other way for a price and let people send bulk mailings.
Could be expanded to do things like limit amount of mail that you could send until you recieved sufficient ranking. This could build in several levels. X number of points and you could send over 10 mails/ day. More points and your cap goes up to 100. More points and you can operate a listserv. Final level is you are a peer that is unrestricted.
The individual rules could be set by the sponsoring ISP. Don't like their policy, get another provider for mail. Another selling point for the ISP.
The whole point of it is to make it more attractive to be well behaved and to have a way to make it too expensive to send unwanted mail.
I have not focused in on either spam or email viruses. Treat them the same. Poorly managed email is poorly managed email.
At best ... This will just be a way to create a user-pays 'private internet', that will work and be spam-free for a while, make some spotty faced .commie (or worse, a rich multinational corp) a lot of money, and then turn into a messy spam-laden free-for-all within 12 months.
It's a really really crap idea, that will not remotely solve the problem it is attempting to address any better than authorised smtp already doesn't solve it.
I really think that sentence. I know the internet traffic is a problem, but we're paying for it right now, and the internet does not collapses. With good spam filtering, the spammers would eventually stop sending spam, because it would not be profitable. Any thoughts ?
I'm positive, don't belive me look at my karma
good idea, but already, the internet's interconnect costs seem to make access expensive for all of us in the third world, even your pennies might break the backs those who just want send some harmless mail.What you are proposing is to start paying the ISP's. as it is we are tired of the increasing commercialisation of the internet... using CA cert might be the way to whitelist enmasse...
oh well it was fun while it lasted.
I just checked the RFC, because this is important.
RFC2822 just says
As you say, the world is changing, but have you any reference to some document saying it is now expected that the From: header of a message should represent the sender's mailbox on the system the message was sent from? I'm quite willing to adapt if there's a genuine move in this direction.The AMTP RFC says nothing about the sender of the mail at all. It is concerned solely with authenticating the mail server.
My understanding was that the envelope sender should be checked by the MTA, not the header fields
The spec does not require everyone to get a cert. It requires everyone to have a log in with an amtp server which has a cert. This way if one server is shown to allow too many spammers through the whole server can be effectively blocked. Essentially, it will force servers to authenticate all mail transfers. But user to server authentication would still be done using user/pass, kerberos, SRP, CRAM, or whatever the server sets up. Sounds pretty good to me. I haven't read the spec yet, I only hope it still includes SASL authentication to make the move a lot easier.
Occam's razor is the blind faith in the natural selection of least resistance and in universal oversimplification. -- EF
I have no RFC for that, and in fact I think it's not necessary. What's necessary is that the MSA (i.e. the first MTA that gets the message) knows who the sender is, and knows that the From: address is (one of) the address of the sender.
AMTP seems to give a reliable method of tracking a message back to the sender, or back to the first badly behaving MTA. If that MTA won't fix the problem it'll get blacklisted.
I doubt it's the end of the war against spam, but it might be the beginning of the end. Oh my God I've gone bald!
Watch this Heartland Institute video
Why not have the site administrator generate a public/private keypair and embed the private key in the mail server? This allows for the same level of authenticity by cryptographic signature, without resorting to a central certificate authority. --M
Well I am my own small ISP and I move about 10,000 emails a day for me any my clients (much of which is spam). _I_ would still have to pay an outragious sum for a cert...
What I would like to see is a Mail server with some memory of its history with other mail servers. Histogram of SMTP transations, by IP, sender id and domain, and recipient id and doamin. If you are getting hundreds of spams from an IP address, it would be nice to tar pit/block the SOB with a simple interface into the system, with automatic expiry times. It is the automatic expiry times that are key. If you do not have that it makes going back and cleaning up the future collateral dammage/innocent victims impossible to manage.
The SPAM problem would be significantly reduced if there were software to easly manage incoming mail using statistics by a human. The automates systems are ok, up to a point.
I would write something myslef, but I'm too busy combating the problem to have time. *sigh*...
muirhead wrote:
I agree!
www.instantssl.com/ is he only Certification Authority providing low-cost, fully-validated and warrantied SSL Certificates.
Try this:
...
https://www.instantssl.com/
They can't even get the certs right for their own site
RFC1925
In that case I'm happily compliant with your new master plan, since the first MTA that gets the message is exim running on my debian box, and it knows perfectly well that it's me sending the message - in fact it rewrites the From: address from andrew@ to andrew@.
I'm not sure how that helps anyone else, mind, as the next step is my ISP, and it's only going to be aware that my mail is coming from an MTA and not a client if it bothers to look at the Received: headers.
In short, I think you need to think this through more fully, or at least explain yourself better. Maybe you could write a journal entry on the subject? (I do believe you're on the right lines.)
https://www1.ietf.org/mail-archive/working-groups/ asrg/current/msg05876.html
-- Ziggy Sig Sig
Storing the email on the server side as suggested by Internet Mail 2000. Is even worse. So I will have to indicate to the sender WHEN I am readying their mail and from WHERE (which IP address)? You have got to be kidding!
I am STILL getting replies from random people indicating that my address is being hijacked.
I am STILL forwarding requests to get IPs from the original SMTP requests, if available, and then tracing back to the ISP.
email is so hopelessly broken it is beyond compare.
Authenticated email would at least mean that if an email came from my address, it actually came from my computer(s), and I can keep control of my own address. Right now, I have none, and I am completely po'd.
This is my sig.
Close..
The actual requirement is "The MSA knows who the sender is, and provides an audit trail".
There's no reason for the MSA that I use to know all my E-mail addresses. In fact, once it's authenticated me, there's no real reason for it to even look at the RFC822 From: header, because it knows who I am, it's logged who I am, and if I try anything funny, the MSA admin will know where to find me and beat the snot out of me.
The *real* problem with this proposal is that there's the underlying assumption that a CA can't go rogue because it will hurt business. There's only one problem with that:
There's several *large* providers that are spammer-friendly, and aren't being blocked by the rest of the world mostly because they also have enough *legitimate* customers that it's not feasible to block them.
If you're an ISP, you can't block another ISP because they're a spam haven if the other ISP also happens to be the home of CNN, or Amazon, or (fill in the blank).
Similarly, you can say "We'll just piss on any CA that goes rogue". It's a lot harder to actually DO if you suddenly discover that the same rogue CA also signed the cert for AOL....
The amount of work that an ISP has to do to handle abuse complaints can be quite staggering. This whole concept scares me because I could see it creating a significant amount of abuse mail to ISP's. The worst situation to create is where you have opposing views on the nature of an email. I send an email to someone who's selling something on a personal buy and sell page. The email includes my signature which is very "corporate". They person receiving the message sees the signature, concludes its commercial though I sent it as personal and complains that it violates the policy. I'm not convinced that you could educate the users of the Internet enough to not have this situation exist.
With so many automated complaints coming in in poorly designed formats, from systems with incredibly out of sync clocks, and for the most frivolous issues (My favorite still is someone complaining that our DNS server was attacking them when they received answers to queries they were sending to it.) I think its completely understandable that abuse gets a relatively low response rate. As with everything else, the signal to noise rate gets so bad that the real valid and important complaints get buried.
I do have plans to improve abuse response at my place of work. We plan on automating most of it. Known good automated complaints would get automatically parsed and we would be presented with all relevant information so we can quickly respond (spamcop complaints are a good example of good reports). Anything else will trigger an incident ticket to be generated and require the complaint source to provide information to a website.
So, if I have a problem, I know who your ISP is (I got his cert), he knows who your MTA is (he got its cert, or otherwise identified you), and you know who you are. (you do, don't you?)
:-)
Your ISP shouldn't accept mail from you (or your system) if he doesn't know who you are.
So you spam me. I complain to you, if you don't fix it I can complain to your MTA, if he doesn't fix it I can blacklist him.
The system might work if certs are not cheap
Watch this Heartland Institute video
This is the key point. If no-one can explain why this guy's wrong, why don't they mod him up?
Maybe you are looking for greylists?
Yup, and who is the biggest CA?
Verisign.
Very trustworthy.
Watch this Heartland Institute video
Do you think a spammer is going to label their spam as commercial? They don't even include a real reply-to address today. They fake their identity to attempt to get you to read the email and include subject lines like "Re: about that proposal".
How is this system or any system going to fix the problems we've got now where people LIE all the time?
Should have done it the right way the first time. Now it will be nearly impossible to fix.
This seems to be effectively like the whitelist approach to spam blocking, with the CAs becoming the whitelist maintainers (for a fee).
But right now we already have the choice of using blacklists or whitelists, mostly provided free on an open-source kind of philosophy. Basing it on a certificate means that there is less traffic going to DNS blocking list servers, so they don't become a bottleneck, but this doesn't seem to be a problem at the moment anyway.
The proposal drags domain names into the picture, rather than just IP addresses, but what is the point of that? Each server along the path of an email can currently include a received line to identify the IP address that it received the message from, and IP addresses are already identified against their owners by the allocation authorities, so I don't see what the certification adds.
The identification of message types does add something, but either it will be hard to maintain because of all the nuances of types, or else all mail will have to be pigeon-holed into often ill-fitting categories.
We already see the problems caused by (over?)zealous use of blocking when those of us with our own, uncompromised and quite secure web servers are blocked by AOL just because we are on supposedly "dynamic" cable or DSL lines (even though our IP address never changes for years at a time).
We have a system currently whereby an MTA is just that: a Mail Transport Agent, and SMTP only deals with the transport of mail. The standard for mail transport should not be complicated by additional filtering, classification and blocking functions.
EXACTLY.
And you can't pull Verisign out of your 'trusted root CA' list because you'll cut yourself off from too many places you want to talk to. As Randy Bush often says on the NANOG mailing list, "I encourage my competitors to design their networks this way".
If we are to go through all the trouble of rolling out a new protocol, why would we roll one out that only kinda fixes the problem?
The IM2000 protocol fixes the problem at its source. Isn't that the kind of solution we should be looking for?
-Tom
-Tom
now to get a certificate signed for a decent price is the challenge,
check out www.cacert.org
they offer free certificates, and has a reassurance program, that trys to give some validity to the certificate holders...
I'm suprised noone has brought up Hash Cash yet as a technical means to stop spam:
"Hash cash is payment in burnt CPU cycles by calculating n-bit partial hash collisions on chosen texts.
The idea of using partial hashes is that they can be made arbitrarily expensive to compute (by choosing the desired number of bits of collision), and yet can be verified instantly. This can be used as the basis for an ecash system measured in burnt CPU cycles. Such cash systems can be used to throttle systematic abuses of un-metered internet resources."
Now we just need a decent RFC for mail transfer!
Thawte offers free e-mail certificates.
- Can't those be used?
- Isn't that a good enough price?
I am just looking but I activly use at least 10 different emails plus some I only use occasionally, if I have to buy certificates for ALL of them I am going to go broke.
IF I need certificates than at least make them by domain, otherwise this is going to be expensive (though who knows, maybe it get's rid of things like hotmail for good).
If you want to e-mail me, use my PGP Key.
This idea is way too much work and won't even solve the spam problem. A better approach would be widespread deployment of something like HashCash that makes sending large amounts of unexpected E-mail prohibitively expensive, but doesn't do the same to mailing lists or to individual unexpected messages.
SMTP - Simple Mail Transport Protocol
AMTP?
Asshole's Mail Transport Protocol?
Antipasto Mail Transport Protocol?
Anaheim Mail Transport Protocol?
Asimple Mail Transport Protocol?
Advertising Mail Transport Protocol?
--
"Outlook not so good." That magic 8-ball knows everything! I'll ask about Exchange Server next.
Mine stood for "Audited Mail Transfer Protocol". I've got a little information on it in THIS POST
The CB App. What's your 20?
Would it be possible to build a community CA? One where people sign up to receive a certificate, and then trusted members of the CA vote on whether or not to grant it. You could use the site to establish a huge web of trust. If someone started abusing their cert by sending spam, people could file complaints with the site and the trusted members could revoke their cert. It wouldn't even have to be a website type community, it could be a p2p app to eliminate hosting costs, and it would run continuously on one's mailserver. This way, it would receive notifications of revoked certificates immediately.
This solution obviously would not be perfect, but, it would definitely make it harder for the spammers to stay ahead of the game like they are now.
Need Free Juniper/NetScreen Support? JuniperForum
I guess this signing idea is good, but I still don't think it'd be an end-all solution to the spam problem.
Lately I've thought about this: I didn't start using Instant Messaging until six months ago. What I found interesting was that not only did I have to add my friends to my address book, but they had to accept my doing so, before any communication could take place at all.
If a technique like this had been implemented as a standard in mail transfer protocols, a lot of the spam problem would go away.
Of course, you'd have to sacrifice the option that strangers could send you mail, and corporation or private person who don't mind getting mail from strangers, should be able to say that "my inbox is open for all".
Would this be doable, or is the idea idiotic?
- Signup at new ISP
- spam like hell
- eventually, get kicked by ISP
- Repeat
I fail to see how AMTP will solve this issue. If the ISP is reacting to your complaints, you don't want to block his mail server, do you? PS: No, I'm not a spammerYeah, and then microsoft could buy it
1) Get certificate
2) Accept cash from spammer, conviently fail to update next Windows patch
3) Laugh as spammer uses the certificate to blast away
4) Announce you were hacked, demand FBI investigate, and revoke certificate and get another
5) Back to step 2
The problem is that certificates just validate that the person who sent the email had access to a certain secret. That secret is just as secret as they want it to be.
What this will devolve to is a black market in valid, un-blocked (yet) certificates, and if you succeed then the price of an un-blocked certificate will go higher than the price of getting a new one, and you will fail.
Essentially, you will constantly be updating a revokation list and a certificate block list instead of list of IP addresses. You are still just updating a list of bad numbers which is never complete and always has false positives in it.
The false positives will come from the fact that larger ISPs will experiment with what allowable fraction of spam can get through without their certificate being blocked. You will always be faced with the choice, do refuse 10 innocent people's emails because their ISP has one occasional spammer who is trying to see if he can increase volume ? 100 ? 1,000 ?
Just because the numbers in your block list are certificates instead of IP addresses doesn't mean anything.
Because I use Road Runner residential class network access, your scheme will always block me as well, because I don't have access to the reverse DNS.
On the other hand if I use their smtp server I can't send mail for days at a time. I don't see why I should have to use their server anyway. Methods exist to distinguish spam from non-spam (according to whatever your definition of spam is) that have a lower false positive AND false negative rate -- look at the various "Bayesian" (most aren't technically Bayesian) filters. The HELO / reverse DNS technique is one that is known to be less accurate than other techniques; the only reason why people like it is because they don't pay in bandwidth for the spam attempts they never see.
Does SMOC have a hidden sid, mailing list, irc channel, yahoo groups, or newsletter to which I might subscribe ?
Labeling mail as "commercial," etc should decrease the amount of spam, yes? I'm assuming AMTP wouldn't have open relays
suggests using a 'Mail Policy Code' during the transaction to identify what kind of mail is being sent (administrative, personal, commercial, etc).
And we all know that spammers never lie!
Unless there is an enforcement mechanisms that involves cattle prods, this is a joke.
I read the Draft, and I see no provision for the user to specify what type of message he's sending. Surely the mail server cannot make a determination itself.
... Know who can afford to get "Level 1" certs by the dozens? Spammers. Know who can't afford to get a cert of any kind? The homeless guy at the library computer emailing to his buddies from hotmail about how the cops beat him up (yeah I'm pulling out emotional rhetoric, bad me).
How about those background checks for certs? I bet the aforementioned homeless guy would have alittle problem with that. Not to mention anyone with an interest in privacy. I'm *sure* the chinese government and the ashcroft regime would love a scheme that required that level of certification and registration in order to communicate online...
I've finally had it: until slashdot gets article moderation, I am not coming back.
Sounds like a solid plan...now to get a certificate signed for a decent price is the challenge.
Anybody here ever notice that Bind9 comes with support for DNSSEC?
It's much like a certificate, only issued by the name server, rather than some random third party.
The name server is responsible for telling the world how to get there - shouldn't it also be responsible for ensuring that you did?
I have no problem with your religion until you decide it's reason to deprive others of the truth.
A major problem with the current system is that domain names and (misused, temporary or stolen) IP address are nearly free. Thus spammers can collect zillions, and the blacklists become unstable (where collateral damage effects some people worse than the spam). The way to avoid this with mail transport certificates is to make them costly enough that spammers can't collect them by the busload, and that also cost enough to pay for determining that the applicant is a real person with a verified contact address (where, say, papers could get served for forgery and violating UCE laws, etc.).
People (and spammers) who can't afford an account on a server with a proper certificate can still use SMTP. But, unless I'm a police/medical/whistleblowers tipline, or have family in Nigeria, I don't have to accept such email.
The optout/optin flag will be abused because every spammer says it operates an "opt-in" list because your email address came from a "partner" or "affiliate".
Similarly, you can say "We'll just piss on any CA that goes rogue". It's a lot harder to actually DO if you suddenly discover that the same rogue CA also signed the cert for AOL....
You mean you'd actually want to receive email from AOL?
There are only 10 kinds of people in this world... those who understand binary and those who don't
Maybe this has been suggested before, maybe not. How about a key that is only known to the MTA? Any legitimate email sent out will have a header added which includes the hash for the key and the actual email. This hash is added to a list of submitted messages with an expiration time. Once the email is sent out, the receiving end takes that hash, and submits it to the MTA which supposedly originated the message, to be verified or rejected. If a hash is verified the originating MTA will take it off its list.
This should be a simple process which has at least two major uses... First, email viruses which are bypassing the legitimate domain MTA will not have a valid hash in the header. Second, any email where the origination is forged will also not contain a valid hash.
The list of sent hashes that the MTA maintains could further be enhanced by including the hash of the destination address where the email was sent to.
In essence, a header would be added to each outgoing mail as such:
X-Authenticate:
With an ever-changing table of valid hashes, it would be nearly impossible for someone to forge a legitimate hash. Even on the off-change that a hash WAS forged, a spammer would only be able to send a single message with that hash, then the MTA would expire it.
Of course there are some cons against this plan as well... There would be a small increase in traffic required to send a single email (negligable, maybe a few hundred bytes at most). Each MTA would have to reserve space for a hash table, the size of which would be based on the number of unreceived messages at any given moment, and how fast hashes were expired from the table (do you give up on sending a message after 5 minutes or 5 days).
The best thing about this method is that it provides a means of authenticating the sender of a message which is backwards-compatible with existing MTA's.
I'm sure the spammers would have their own community in no time.
And they actually have decent customer service - perhaps implying that they would like their customers to return for future purchases...?
Boycott Verisign!
- passion
Oh please? Please can't we have the whole world blacklist AOL? :-)
This may save you a few bucks for your small operations. What about the LARGE ISPs that now have to hire an additional department to block hundreds of proxies used by a single spammer? They're now spending more money, and in turn passing the cost to their customers (i.e. YOU). So what? You're still ahead. Everyone else is behind.
No, I'm speaking as the hypothetical person in charge of an ISP. I may not want to receive mail from AOL, but I can't afford to piss off my users who want to get mail from their Aunt Tillie.
Explain to them that they can't get mail from AOL because some other company called CA-something sold a wazziz to somebody in Zimbabwe who misused it? And AOL wasn't even involved in the slightest? But you can't get mail from there anymore?
Yeah. Right. Dream on. And pass me that pipe, I'm trying to forget the last time I had to explain this sort of thing to users, and it *WAS* AOL's screw-up. Maybe if I take enough hits from that pipe, I won't hear that sucking sound of subscribers leaving for an ISP that actually delivers the mail....
The only legitimate reason for faking a From: address is so that replies go back to the correct mailbox while submitting them through a different mail server. It seems to me that the first step has to be to pressure all mail client and mail server programs to support using the MSA protocol/port. Sendmail has this enabled by default, I believe, and many mail clients can use it as well. If it was made pretty much universal and supported, the necessity of submitting to a local SMTP only (or using hideous kludges like SMTP-after-POP) would be eliminated.
Use all the different e-mail addresses you want, as long as you send them via a mail server that is authorized by the domain specified in the "From:" (or at least "Sender:") field. AMTP or something like it could be used to validate that. People who want to run their own mail servers can still do so. If something like AMTP becomes the standard, and you don't want to get your own certificate, you could still make arrangements with your ISP to deliver mail through their server, authenticating your server using their own certificates, knowledge of your IP address, or whatever.
The CFAA actually does deter a fair amount of hacking, as do laws governing murder. As a civil lawyer who does quite a bit of litigation in this arena, I can tell you that CFAA litigation is a tremendously powerful tool. Of course, murder is criminal, and wrongful death and assault are civily actionable, yet murder persists. Does this mean these laws are useless? probably not.
Everybody's spam mix is different, but the spam I see tends to come from folks trying to make quick bucks by collecting money with "legitimate" but stupid businesses, rather than by various means of fraud. The criminals are likely to persist no matter what, I agree -- but it would be nice to deter those who are not, and thereby reduce the noise and volume of spam, and with it, much of the harm.
Nothing will "suddenly fix everything," but the proposal suggested above would be both constitutional and fairly effective in improving the situation. I commend it to your attention.
Because spamming slime have no problem at all with forging anything they want. Without accountabillity, nothing changes.
.
You seem to think I am concerned about trailing people by means of forensic analysis of the e-mail. I am not.
Ultimately, some commercial interest is involved, and someone is receiving the money -- there is an account into which funds are transferred, and therein arises the accountability. By making civilly responsible those folks in the money chain, we obtain leverage to find those they support and pay -- and by making criminals of all of them, we either deter them or turn the less bad ones on the worse ones. As with all crime and bad acting . . .
Nothing is a panacea. But nothing at all is nothing at all. I'd rather do something that might work somewhat better than the status quo, without invading meaningful civil liberties in the process.
> Well I am my own small ISP and I move about 10,000 emails a day for me
> any my clients (much of which is spam). _I_ would still have to pay an
> outragious sum for a cert...
Which is the entire point. Your ISP and my ~3000 system are supposed to get the hell off the net and leave it to AOL, MSN, Earthlink and few other large players. This is just another attempt at that and hopefully it will fail. It won't do a damned thing to stop spam, that is for sure. Anyone believe any of the DSL/Cable providers will do one damned thing extra to stop their users from canning the pink meat like substance? Now does anyone think their will be a single cert revocation on one the big players for allowing spam to continue? Didn't think so. Nothing to see here, move along.
Democrat delenda est
Get your certificate here for free:
http://www.SwissSign.com/
go to the MySwissSign section, open a new profile ("john_a.doe") and get any number of certificates ("Bronze" type).
enjoy!
This is just blahblahblahblahblahblahblahblah.
I play a very small ISP. Paying $100 for a certificate is a significant investment. (which I HAVE to have even if I just need to recieve Email on my server!)
;-)
My clients generally don't send Email through MY server. So they will be connecting to their dial-in or broadband provider and Emailing (for example) "From: slashdottroll@bitwizard.nl". (will the spammers pick this up? Let you know in 12 months...
I can see the small ISPs here accept that. Phone them, have the guy on the phone hack the asendmail config file, done! I can see the larger ISPs accept it as long as you host your domain with them. They can automate the config file generation. But as a small ISP without dial-in services, I'll be forced out of business: none of my clients get to send Email from their own domain anymore....
Silly as this all seems, spamming is big bucks. Remove the money, remove the problem.
This is precisely my point.
But you can't do that by suing all over the globe. You will do that when you stop lying, stealing scum suckers from being able to contact anyone in the first place.
If you say so, but really, all you have done here is say so. Being able to sue people has a remarkably palliative effect on the extent to which they are willing to stick their necks out -- particularly if they have money. My view is that I don't need to get the "scum suckers," per se, to stop them, just the more traditional people with the money who are funding them.
Spam as a percentage of email traffic is certainly high (40% seems low, actually :-), but I use more bandwidth just reading Slashdot most days than I use receiving all my home email, which is about 80% spam. (Work email doesn't count - it's full of Microsoft attachments, but doesnt get much spam.)
On a typical day, I probably get about 200 emails, and they're under about 5KB each for text or html, and most virus emails are also under about 10KB. Some of the spam has JPEGs, and I'm not sure how big those are, but most of it doesn't. So that's maybe 1MB of spam - not small, but the slashdot front page is about 60KB, and the page for this article is about 393KB (plus some cacheable images), so my day's spam is like reading 2-3 Slashdot articles, or 8 sites like the Google News front page (60kb text, 60kb small GIFs), or a total of 20-50 non-small GIFs, or downloading one minute of music.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
I meant to add this - is there any way to set spam-bounce mail to a lower priority, so it only soaks up bandwidth that's not otherwise busy? The trick is how to do it without interfering with real bouncemail, which is relatively high priority.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
You have described how many current RBLs work, which is also why spammers now use a network of millions of hijacked desktops. It's a moving target.
AMTP associates certificates with reverse-DNS so that histographic ideas like your suggestion can be effective.
--Bill (author of AMTP)
home
gimme back my
I like the idea and generally agree with you. If we can get everyone to do it... I guess you could get an automatic reduction in your spam score coming from an authenticated IP address. I think that is what we can hope for to start with.
It is nice to see someone attacking the problem in a nice and novel way to. Kudos to you!
Because I use Road Runner residential class network access, your scheme will always block me as well, because I don't have access to the reverse DNS.
Well, all providers i know here in europe at least have setup domainnames for all the IPs they own. So what your mailserver needs to do is send a HELO with that domainname. Or another option is to send out a HELO [123.123.123.123] (your IP in brackets) which is valid too. This way i can check if your HELO domainname/IP matches the name/IP of the connecting machine, nobody forces you to use a domain-name.
filters are all nice and good, and i use them but as you correctly mentioned - identifying spam at smtp level lowers bandwidth usage a lot. This may not be a problem for US citizens but not everybody has access to unlimited traffic connections...