Slashdot Mirror
First Lawsuits Filed under Missouri's No-Spam Law
darksoulz writes "The St. Louis Business Journal is reporting that Jay Nixon, Missouri's attorney general, has filed the first lawsuits under the new no-spam law against two Florida spammers. The law doesn't totally prohibit spam, it just requires that the subject line be tagged to let consumers know that it is an advertisement. One of the lawsuit recipients even managed to spam an address maintained by the attorney general's office."
Sorry, interstate commerce is not controlled by the states. The law cannot and does not apply to spammers who work out of the jurisdiction of Missouri.
This is only gonna stop the dumb spammers who are easy to trace... soon they are gonna be up to their eyeballs in spammers who are a bit harder to trace.... I think also this could cause the vengefull spammer to start to really hit some of these guys....One more thing how do spammers know what boxes are in Missouri some sort of list? if it is I'm sure the spammers just love it
"BSD: Free as in speech. Linux: Free as in beer. Windows 10: Free as in herpes." --Man On Pink Corner in #52607549.
I AGREE WITH THIS POST
certain people in usenet would track down the email addresses of spammers and other unsavory people and post those email addresses in the groups so that spammers would in turn spam them.
fighting fire with fire.
Who will guard the guards?
"God doesn't have lice" or something like that
....so what am I going to eat for my supper now?
In the old days an email address wasnt a disposible commodity.
There wern't people launching the equivelent of dictionary attacks against mail servers to see what does not bounce, and hence keeping an email address private involved sharing only with those who were trusted.
Today if I see such an attack at work I block the ip and fire up nessus. Fight fire with fire.
How do I keep track of people who are fingering
The spam trade is possible because of one thing:
Sending millions of emails is extremely inexpensive and like the old adage "ask a million girls for a date and no matter how ugly you are, you'll probably get a few takers"
If it becomes expensive to spam, then the spam will stop and email advertising will become what it's good for, telling potential customers about products that they ARE interested in.
I can't wait for the California law to take effect. It's way more restrictive. I pity the spammers.
M
One of the lawsuit recipients even managed to spam an address maintained by the attorney general's office.
Maybe they should charge them with stupidity while they're at it.
One of the main arguments against spam is that unlike 'conventional' paper-based junk-mail, the cost of spam is borne by the recipient, not the sender. This consists of the time taken to process the mail (be that reading and/or deleting it) as well as the cost in data transfer to download it.
Legislation mandating (as is the case here) that senders preface spam by adding "ADV: in the first four characters in the subject line or ADV: ADLT if it contains adult material" miss the point. The user has already paid for the download. If you multiply that small figure by the millions of spam emails sent it adds up considerably!
This is no better than allowing thieves to come into your home and steal your valuables as long as they wear a loud coloured shirt advising they are a burglar.
Do you or your partner snore? - Visit www.snoring.com.au
My Johnson is Big enouph.
Much larger than CowboyNeil.
Now the spam I get originating from the US is 99.8% of the total.
Nixon files first suits under state's No Spam law
Missouri Attorney General Jay Nixon has filed the first two lawsuits using the new state anti-spam law against a Florida man and Fundetective.com of Boca Raton, Fla.
Nixon said the defendents violated the state law, which went into effect Aug. 28, by sending spam to Missouri e-mail accounts without the required labeling, and by sending spam to those accounts after being asked to stop. Under the law, spam must be labeled with the phrase ADV: in the first four characters in the subject line or ADV: ADLT if it contains adult material.
The first suit was filed against Phillip Nixon of Palm Beach, Fla., who allegedly sent at least five unsolicited commercial e-mails to an address maintained by the Attorney General's office, nospam@moago.org. The messages were not labeled as required and did not stop even after being directed to stop.
The second suit was filed against Fundetective.com, which sent spam messages advertising payday loans and other services. The messages were not labeled as required.
In the suit, Nixon is asking the St. Louis City Circuit Court to issue injunctions to prevent the defendants from further violating the law, and civil penalties of up to $5,000 for each violation.
Along the same lines I read where a Kansas City man used Kansas's couple year old spam law (SB 467) in court and won. I've been meaning to contact the gentlemen and seek his advice. I want to do the same thing myself soon.
"..One of the lawsuit recipients even managed to spam an address maintained by the attorney general's office."
Nothing like telling the farmer you are gonna sleep with his daughter.
I worked with MO State Rep. Carl Bearden quite a bit to get the original legislation in place which was shot down until they came up with the current revision.
I'm really glad to see that the AGO is attempting to shut them down. This is a HUGE success! I was very worried that they wouldn't have the enforcement power to even attempt to put a stop to this.
The man who trades freedom for security does not deserve nor will he ever receive either. - Benjamin Franklin
"1. You are the recipient of the spam and you are a resident of California.
2. The spam was delivered via servers located in California (sender's, recipient's or intermediary server will suffice).
3. There is some indication that the spammer is operating in California, such as a California telephone number or address for orders. If you can identify the spammer and have information from other sources showing that the spammer is in California, that will also work.
4. The spam fails to comply with the statutory restrictions. To comply, the unsolicited advertising emails' subject line must begin with "ADV:", the first text in the message must offer a toll-free number or functioning email address for removal of the recipient from further unsolicited emails, and that statement must be in a type size as large as most of the other text.
1,2 and 4 are pretty easy. Proving 3 can be a real PITA, and means if I really want to work this hard I have to do a lot of legwork. Granted, the end result may be worth it, but...
ref: http://caag.state.ca.us/spam/index.htm
Sending fraudulent email is hardly "interstate commerce". The principle you're referring to does things like prevent states from charging tarrifs or preventing goods from travelling through their state from one state to another. It doesn't mean states can't, say, require commercial driver's licenses for truck drivers, or prohibit you from stealing bandwidth.
paintball
http://www.moago.org/nospam/nospam.htm
The man who trades freedom for security does not deserve nor will he ever receive either. - Benjamin Franklin
that you don't advocate and support laws just as vile and misshappen as the DMCA.
They could come back to zap you.
A bad law is still bad law, even if it at some time accomplishes something you desire.
Let's be careful and try to get it right.
KFG
I actually think Kobe is guilty and really see no reason for the woman's name to be out there. What pisses me off is that the corp. media can decide something won't be public knowledge and it isn't. They should not have that kind of power.
So.. The State Attorney (Nixon), is sueing this guy in Florida also named Nixon. Should I be confused now? Is this for real? What are the chances if it is? :P
"...Well, there's egg and bacon; egg sausage and bacon; egg and spam; egg bacon and spam; egg bacon sausage and spam..."
Still happens, albeit in a somewhat different fashion. Check out http://aardvark.co.nz/email.htm.
Spammers are liable for $5000 per email, so thats going to cost them...
[pinky to lips] one meeeelllion dollarrs.
for my hotmail inbox this morning. Now all we need is a means to actually track spammers....
Just follow the money.
It won't stop out of state spammers, but anyone in Missouri (my home state) would be a damn fool to not follow the law.
pseudo-mod "+1 Ha Ha Only Serious"
One of the lawsuit recipients even managed to spam an address maintained by the attorney general's office.
This is surprising, why, exactly? Like spammers think: "Oh, this address is a government office, better delete it from my list."
The AG has gotta love this... J. Random Prosecutor thinks: "Now, let's see, so many spammers, which ones should I prioritize most highly for investigation today? Just let me make a quick check of my in box....."
Do you have the original text somewhere?
BOO! TERRO
I had a conversation today about legislative requirements to mark spam as an advertisement. Invariably the subject arose concerning utilization of compromised computers making enforcement of any anti-spam law rather difficult.
I have a thought about that... We are permitted to own vehicles which participate on various public transportation infrastructure facilities such as state roads, the interstate system, etc. We are required to ensure the road-worthiness of the vehicle we own. We are required (more or less in differing states) to ensure our vehicle meets certain emission control requirements as well. Why then is it a leap to imagine that we must ensure (to the best of our ability) that our computers are kept up to date to prevent them from becoming criminal tools. I understand that we can't all be liable for the repercussion of the latest hack. I even understand that some people aren't as tech savvy as others just like I understand I am not a mechanic but it is my responsibility to ensure the tires on my car are securely fastened before using it to participate on a public roadway. If I don't know how to tighten lug nuts there are mechanics who can help me ensure my vehicle is safe. There are technical types who can help the "computer clueless" batten down the hatches a bit.
For example, I think if there is currently a computer out there that is STILL a nimda or code-red shit pump the owner of the computer should share some level of negligent liability, criminal or civil. If you are going to connect your computer to the internet then you need to take some responsibility for that action. For too long we just let anyone connect to the net any way they like. Let's tighten up the ship a bit...
While I am not a lawyer, this strikes me as an attempt by Missouri to regulate interstate commerce. This was one of the few things that the federal government was initially designed to do. Missouri is not supposed to regulate commerce between residents of Missouri and residents of Florida.
I could live with this law being struck down only to see it replaced with a similar federal law. Spam is a global problem that deserves a global, not local, solution; for now, the best we can get is a national solution. Having one federal law will keep it easy for honest emailers to stay legal while outlawing spam.
Trolling for karma since 2003.
Please excuse me as I franticly search for way to delete the parent post or at least modify it and attach it to the above discussion about interstate commerce.
Sigh.
Trolling for karma since 2003.
I welcome much more mass-media attention on the subject because eventually a critical mass will be achieved.
Only then will spammers be properly assigned (and publicly viewed as) their deserved status in society as being slightly above child-molesters and smokers. Or SCO.
HERE is something to make us all tremble for the future!
Any technology distinguishable from magic is insufficiently advanced.
If dictionary attacks are so common, why hasn't anyone implemented detection into the mail server itself, so when it receives a few emails in alphabetical order, it can stop?
A variant of this worked for Hotmail in the days before their automatic spam filtering. Any email with a few guys' names either side of mine on the recipient list, delete.
Karma: It's all a bunch of tree-huggin' hippy crap!
How about laws that protect anti-spam activities? Laws to protect places like spamcop and spamhaus from lawsuit threats? Eliminate those bogus threats to sue for infringing on a spammers free speech.
A person should have the right not to receive e-mails. A site operator should have the right to block spam and protect their systems or to netblock out whoever they choose (if customers don't like it, they can go to an ISP that doesn't care). An ISP should have the right to TOS a spammer out. A network operator should have the right to shut down spammers without fear of frivilous lawsuits. Murdering spammers should be legalized, as a self-defensive measure.
OK, maybe that last one is a bit over the top! :)
Then there are the various trade practices laws that should be enforced or beefed up. If a spammer is advertising a commercial product, then advertising standards should be set and enforced, including valid identification information and reply address information, as well as scrutiny over claims. There are many (US) laws to control commercial speech, like the Lanham Act. This isn't the same as laws that might infringe on non-commercial speech, anonymous speech, etc. (This won't stop begging spam, but I'll at least not have to worry about ads for Vicodin, Xanax, and Viagra)
Also, have you noticed that even though a few locales spam laws specify a subject must begin with ADV: they often munge that trying to meet the "spirit" of that law but get around filters, like (ADV) or ADV at end of line or A*D*V or A D V -- etc etc... Laws have to be specific with penalties for trying to get around them...
I see so much drivel about SPAM that it is ridiculous. If anyone ever studied the U.S. Constitution they would know that the ONLY right to privacy guaranteed is from GOVERNMENTAL intrusion into private lives. Our founders, albeit out of personal interest, set up many guidelines to prevent government from interfering with commerce (one of the primary reasons for the American Revolution). Entrepreneurs will always use the most cost effective means to market, and that means introducing their product or service to as many people as possible. This has been true throughout history. Due to unconstitutional no-call and no spam laws, marketers are already finding other means to communicate which will be MUCH more prevalent that a few "spams" in your mailbox and circumvent these issues. Just to circumvent any ignorant responses regarding regulating commerce, note that Congress cannot legally perform ANY activites outside of those listed in Article 1 Section 10 of the Constitution, and all State Constitutions are required to stay in the same guidelines.
The approach most anti-spam laws take is that you receive spam you don't want, you contact the spammer saying you don't want it anymore, the spammer sends it again and you can sue. Given all the spam people get, that places a big burden on individuals in terms of time/money (money for legal costs) since a spammer may or may not comply and you have to keep track of who is complying and who isn't which would take a lot of your time.
The Missouri law has an interesting twist. They force spammers to label the spam in the subject with a standard prefix. If a spammer spams you without the prefix, you can sue. You don't need to contact the spammer before you can sue them. And the spammer has given you conclusive proof of his crime. So the time factor drops out of the equation and you can proceed with the lawsuit right away. If you get an unlabeled email, bam, you can sue. Now think about this, what if every state adopted such a law but with different prefixes for every state.
For Missouri:
MOADV:
MOADLT:
For Ohio:
OHADV:
OHADLT:
etc...
People getting spammed would get instant evidence for a lawsuit ($$$) and it would make it almost impossible for spammers to send non-complying spam without opening themselves up to lawsuits. You could pay your way through college with the money collected! And if you don't want to bother, just setup a nice filter on your inbox to block subject containing (**ADV:, **ADLT:).
I could see spammers using offshore resources to spam which could give them a nice way to skate out of liability. In those cases, I would have the FTC put regulations on spam advertising such that if you receive a spam advertising a company's product or service that isn't labeled as required, the company can be held liable.
More regulations like the above sometimes makes things worse or has unforseen consequences, but one can dream.
The Apache James mail server contacts known-spam services and bounces spam. My spam problems have nearly gone away since I began using it. It is quite effective, and much cleaner than a client-side filter.
Add Onto the No Call List - No Spam too !
Wouldn't it be nice to actually use your computer, your email, and telephone without being interrupted ?!
NO CALLS = NO SPAM
The law has to be made to maintain the useful nature of this technology,
otherwise the world ends up in a glut of automated messages from noone - to everyone!
Geographically-specific domain names are a separate issue - it's reasonable to expect someone to guess that someuser@example-isp.sf.ca.us has an email mailbox in San Francisco, California, USA, though that may not be where their body hangs out or where they read their email from. Some people like that sort of address. But otherwise, it's not reasonable to expect that even if a given ISP has an office in City X, that that's where their servers are.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
But you REALLY want this to be UnConstitutional, because otherwise, you'd be subject to every law in every state that your email goes to, and possibly every state where people can read your web pages or Usenet postings. You'd possibly even be subject to laws in other countries where your email/web/Usenet goes.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
The balance is different for niche email providers, because they're only handling email, not web traffic, so the fact that 60-80% of email is spam does double or triple their bandwidth and storage needs, as well as increasing their support costs cleaning the garbage up, fixing overloaded servers, emptying full bit buckets, and constantly updating and maintaining spam-prevention scripts. For them it's a big deal. But for ISPs that are primarily providing connectivity, or providing hosting, it's simply not a large fraction of the bits, so it's not a large fraction of the money.
The value of my time that the spammers waste is a lot higher than the incremental cost of shipping the bits - that's what they're really stealing. If you waste an hour or two a month cleaning up spam, that's worth more than the cost you're paying for your ISP's email service. The value of lost emails that got trapped by anti-spam techniques may also be higher.
Also, think about amortizing your development efforts over the long run - the amount of time you're wasting managing spam is time that you could be spending improving your ability to use appropriate anti-spam tools, like a good sniper rifle or a GPS-guided cruise missile.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
Likewise SpamAssassin, when set up on the server. Only you run a fat Perl process on your server instead of a fat Java process.
Karma: It's all a bunch of tree-huggin' hippy crap!
There are ways to improve the process - instead of a list of raw email addresses, store the list as a set of hashes of email addresses, so you can check whether someuser@example.com is on the list, but the only way to extract lots of names from it is by dictionary-search. That's still not perfect, because it tends to break the username+tag@domain.com syntax, and doesn't easily allow wildcarding, and especially doesn't provide a good mechanism for mixing wildcarding with user validation - the people who manage the list really *do* have to verify that a user wants to be on it, because otherwise there'll be too much spoofing going on and some clever person will find a way to cause trouble by signing people up to it.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks