Slashdot Mirror

← Back to Stories (view on slashdot.org)

California Tries Spam Ban

Posted by michael on from the no-fooling-around dept.

Schlemphfer writes "Spammers have likely received their biggest setback yet, when California governor Gray Davis today signed a bill outlawing all unsolicited email sent to and from the state. Two things about this new law stand out: first, it puts the burden on senders to prove that they are sending solicited email. Second, it bans the entire practice of spamming, with no loopholes at all like allowing messages with ADV: in the subject. Keep in mind California has the world's fifth largest economy, and they are planning to enforce the law with fines amounting to $1000 per each piece of spam. This law could be ruinous to spammers when it takes effect January 1st."

18 of 556 comments (clear)

  1. Can we really enforce this? by soren42 · · Score: 5, Insightful

    The issue here is one of enforcement. What's to stop the dishonest from forging e-mail headers and the rest, to fine a company or individual out of existance?

    There's a huge issue with the volume of spam potentially involved. In the case of "fraudulent spam", who's going to investigate it, since the burden is on the sender?

    Not that I'm defending spammers, I think the law is a good idea, but if the execution is flawed, it could be short-lived.

    --

    "Adventure? Excitement? A Jedi craves not these things."
    1. Re:Can we really enforce this? by the_bahua · · Score: 4, Insightful

      I think a zealous group of vigilantes will emerge, and make a killing on hunting down and exposing spammers, for a while, until the spam actually calms down.

      Good move, CA.

    2. Re:Can we really enforce this? by prichardson · · Score: 3, Insightful

      Ok, here's a scenario for you. Suppose company A competes with company B. Company A sends out spam pretenbding to be company B. Company B gets fined out of existance. Company A has no competitors.

      --
      Help I'm a rock.
    3. Re:Can we really enforce this? by azav · · Score: 3, Insightful

      Good idea.

      We should organize representatives in many countries around the world to help track down these spammers that are out of the US. Then find a way to take them to court in their country by their violation of US law. If they are sending for someone in the US, they should be able to turn over theeir manes and an affadavit stating thay were spamming in proxy for a US company. Then go after the US company and run them up the flagpole. The representative who worked to resolve the problem would get a % of the judgement, say 25 - 50%.

      Any lawyers out there want to shoot me down or refine the idea?

      --
      - Zav - Imagine a Beowulf cluster of insensitive clods...
    4. Re:Can we really enforce this? by miu · · Score: 4, Insightful
      People who have serious spam problems are not very good at dealing with it.

      You are so wrong. My home email which I manage myself is mostly spam free - I see maybe one piece of spam a week. My work email is full of internal communications, mail from marketing, mail from customers, status reports, and so on. I cannot filter that mail aggresively and see 10 to 20 pieces of spam a day.

      I know exactly how to deal with spam, but because of the use and exposure of that email address those options are unavailable.

      --

      [Set Cain on fire and steal his lute.]
    5. Re:Can we really enforce this? by randyest · · Score: 4, Insightful

      Stop the FUD and RTFL (Read The Fine Law):

      The bill would instead prohibit a person or entity located in California from initiating or advertising in unsolicited commercial e-mail advertisements.

      So:

      1. Not commercial. Flame away in private.
      2. The "spoofs" would need to include some commercial message or invitation to buy a product. If that spoof doesn't include a commercial offer, case closed. If it does include a commercial offer, it would be rather easy to show whether or not a business relationship exists between the acutal sender and the commercial entity on whose behalf the email was (allegedly) sent or spoofed (i.e. compensation was exchanged or not). In short: cuo bono (who profits?).
      3. Commerical endeavors have always suffered more restrictions than non-commercial ones. This does not jeapordize that clear line in any way, shape, or form. Witness the anti-telemarketing Do Not Call registries that apply to commercial interests but not non-profits or politicians. There is no slippery slope here, please move along.

      Oh, and kindly bite my minorly-irritated shiny metal ass ;)

      --
      everything in moderation
  2. Hello small claims court! by Broodje · · Score: 3, Insightful

    This bill would authorize the recipient of a commercial e-mail advertisement transmitted in violation of these prohibitions,... to recover liquidated damages of $1,000 per transmitted message up to $1,000,000 per incident..

    I won't get greedy and just take my chances in small claims :)

  3. Burden? by Rkane · · Score: 4, Insightful

    The burden will ALWAYS be on the recipient of unsolicited emails. When I login to my computer and find 90 ads for viagra and mother-son sex sites, it is on MY shoulders to inform authorities of the sender. Also, with all of the masking of addresses and such, how are they going to possibly prove who sent what to whom? A smart spammer will still get away with it.

    On another note, how will the law apply to someone from another state visiting CA and checking their mail? What about a Californian visiting another state checking their mail? What about someone using an out of state ISP to check their mail?

    One state banning spam is just going to create a paperwork nightmare. Call me when you have a real solution.

    --
    Celebrate Steak and a Blowjob Day!
  4. Re:spam is ramping up by stratjakt · · Score: 3, Insightful

    Does that count as solicited or unsolicited?

    Did you ask him to send you an email? Nope? Then its unsolicited.

    But he got the address off your web page, just like the spammers. So if that makes his solicited, then so are theirs.

    The potential for abuse with this loony law is enormous.

    Keep laws off the internet, use technology to fix technology.

    A good admin can eliminate most spam. A lawyer cant.

    --
    I don't need no instructions to know how to rock!!!!
  5. Who can enforce this? The Geeks know... by Schwartzboy · · Score: 3, Insightful
    Good point. Disturbingly so. Since this is a government entity attempting to interact with, nay, regulate, something in cyberspace, I'm very afraid of the possibilities here. If, as I'm frequently told and haven't ever bothered to learn for myself, a good techie-type can dig through the forged headers and faked sender info to discover the true origins of a message, then this entire anti-spam plan would hinge upon hiring enough of the right kind of geeks to investigate every claim.
    "Step 3: Geeks Profit!" would have to be religiously adhered to, because I can think of few jobs more dull than sifting through possibly-faked message info. If I've been misinformed and a really well-faked e-mail is indistinguishable from the genuine article, or if the gov't suits refuse to pay geeks good money to waste time investigating this stuff, I can look into the future and see all kinds of poo-poo hitting the spinning blades.

    The third choice, I guess, is to set up a Beowulf cluster of SCO-kerneled Linux boxen, give each spammer an original sig, and declare that forevermore all unsolicited e-mail shall originate from billgates@microsoft.com. I'd pay $699 to watch that unfold.

    --
    "Linux doesn't exist. Everyone knows Linux is an unlicensed version of Unix"- Kieren O'Shaughnessy
  6. But is it the right jurisdiction? by UninvitedCompany · · Score: 3, Insightful

    I have believed for some time there are only two ways the spam problem can be solved. 1. Ending the convention of accepting e-mail from unknown sources, that is, anyone not on a whitelist; and requiring authentication. 2. Legal means. The trouble with California's law is the jurisdictional issues it raises. Regulation of email traffic crossing state lines is arguably soley in the purview of the FCC, so aside from companies in California seeking to spam other Californians, I can't imagine the law will withstand a court challenge.

  7. OS flaws by $exyNerdie · · Score: 4, Insightful


    So what if someone's computer is hacked (we hear about all kinds of Windows flaws) and used as relaying server for spam (without their knowledge), is the burden on innocent to prove that their computer was hacked or used as mail relay without their knowledge ?

  8. did not the supreme court by Archfeld · · Score: 3, Insightful

    already say that there exists a direct marketer's right to send out notices ? While I applaud this it seems likely to #1 run into huge court challenges, #2 be VERY HARD to enforce, #3 seems to smack of grandstanding....

    Otherwise MORE POWER TO HIM..I HATE SPAM...

    --
    errr....umm...*whooosh* *whoosh* Is this thing on ?
  9. Re:spam is ramping up by ewhac · · Score: 5, Insightful

    Keep laws off the internet, use technology to fix technology.

    Ordinarily, I'd agree with you; the fewer poorly drafted laws, the better. However, in this case, the problem (mostly) isn't technological, it's sociological.

    There are a surprising number of very broken people out there who live their day-to-day lives with the maxim, "If it's not expressly illegal, it's perfectly okay." This idea is, of course, hogwash, since it completely ignores unwritten social custom, which often varies regionally.

    On the local region known as The Internet, it is the custom that it is impermissible to send unsolicited bulk email, particularly when it is commercial in nature. However, it is not, per se, illegal. So these sociopaths clog the network because, hey, it must be perfectly okay.

    Normally, the counterbalancing force to such aberrant behavior is social ostracism or, in extreme cases, pillorying (or equivalent). Spammers are aware of this, and go to great lengths to conceal their identities and escape accountability.

    While technical measures can thwart these people, such as widespread deployment of SMTP AUTH, it does nothing to fix the underlying sociopathy. Spammers are already deploying viruses and worms to create a network of open SMTP relays. Who here honestly believes they won't escalate into stealing SMTP AUTH passwords? Hence, spam is mostly a social problem, needing a mostly social solution.

    Schwab

    --
    Editor, A1-AAA AmeriCaptions
  10. Novel new approach to politics by interstellar_donkey · · Score: 5, Insightful

    Simply amazing. The citizens want you gone, so you use your power to help pass laws that the citizen actually wants!

    What's next?

    Amnisty for p2p traders?
    Caps on insurance hikes?
    Regulation of energy to keep costs down?
    Actually following the letter and intent of the weed decrimilization law?

    As a Californian who isn't too fond of Davis, I have to snicker a bit. So the threat of being kicked out actually does make law makers push to enact laws that the average person wants, instead of pandering to corperations.

    Gosh, the next thing you know, Davis will be the champion of providing a quality education.

    --
    The Internet is generally stupid
  11. Re:spam is ramping up by scovetta · · Score: 4, Insightful

    I'd use the 80/20 rule here. If 80% of the spam is sent by 20% of the people, and we kill--err- i mean, sue, those 20%, then the problem is much reduced. I'd be fine with getting a *few* spam messages a week, but not 100+ a day. I say let the lawyers deal with the spammers, technology can handle the rest.

    --
    Wer mit Ungeheuern kämpft, mag zusehn, dass er nicht dabei zum Ungeheuer wird. --Nietzsche
  12. Meaningless by rudy_wayne · · Score: 4, Insightful

    I hate spammers, but this law is meaningless, as are ALL anti-spam laws:

    1. Spammers will ignore the law. Which leads to the next point:

    2. Laws are meaningless unless enforced. How will it be enforced? When I get hit with spam that violates this law, who do I complain to? Who will investigate my complaint and then pursue and punish the spammers?

    3. Where will all the money and resources come from to enforce this law (see point #2 above) -- to actually enforce this law will take FAR more money and resources than anyone realizes or will admit.

    And even if significant money and resources are allocated to enforce the law:

    4. What about all the spam originating from servers outside the U.S.

  13. How innovative by mabu · · Score: 3, Insightful
    Virtually every state in the country already has anti-spam laws in effect, as well as most of Europe. Has anyone noticed any reduction in Spam? Has anyone heard of any spammers being intimidated by the hundreds of existing laws on the books?

    We already have a number of laws on the books that can be used to take action against spammers:
    • Child Pornography Statute 18 U.S.C. 2252
    • Electronic Communications Privacy Act 18 U.S.C. 2701-2711
    • Economic Espionage and Protection of Trade Secrets Law Pub. L. No. 104-294
    • Computer Fraud and Abuse Act 18 U.S.C. 1030
    • Foreign Intelligence Surveillance Act 50 U.S.C. 1801-1811
    • No Electronic Theft Act
    • Transportation of Obscene Matter for Sale or Distribution 18 U.S.C. 1465
    • Federal Wire Fraud Act 18 U.S.C. 1343


    How about we get the government to enforce some of the laws listed above instead of passing more? How's that for an innovative idea?