Slashdot Mirror

← Back to Stories (view on slashdot.org)

Yahoo! Develops Anti-Spam Architecture

Posted by CowboyNeal on from the webs-of-trust dept.

prostoalex writes "Yahoo!, the owner of one of the largest e-mail systems in the world, is said to be developing a cryptographic product that will be offered freely to mail servers. 'Domain Keys,' according to the Reuters article, would require the message sender to authenticate in order for message to come across a trusted e-mail network. The idea has been around for ages, however, it required someone from the big league like Yahoo! to step in." While Yahoo! isn't the first name that comes to mind when I think of trusted email, it's still a step in the right direction.

9 of 283 comments (clear)

  1. Re:OS? by swb · · Score: 3, Informative

    $ telnet mx1.mail.yahoo.com 25
    Trying 64.157.4.78...
    Connected to mx1.mail.yahoo.com.
    Escape character is '^]'.
    220 YSmtp mta108.mail.sc5.yahoo.com ESMTP service ready

    It looks like they run YSmtp, just like everyone else I know. In all seriousness, I'd imagine there isn't much of Yahoo's infrastructure that isn't highly optimized for Yahoo's own use. I think that Yahoo did a lot with FreeBSD at one time, but I'd presume whatever they have isn't just an out of the box app.

  2. done already? by Anonymous Coward · · Score: 1, Informative

    tmda

  3. Re:Why? by santiag0 · · Score: 3, Informative
    I've used yahoo e-mail for 4 years now. I have 2 accounts, a "main" one I forward all my other e-mail accounts to, and a "throw-away" account I use for posting on yahoo finance message boards, and also for instances where an e-mail address is required but don't want extra spam (ex. online shopping).
    My experience over-all has been excellent, with on minor exception:
    Yahoo! sneaks in yet more spam
    YAHOO! GRANTED ITSELF PERMISSION to spam by creating a new "marketing preferences" page that lets users pick "yes or no" to specific categories of marketing pitches. The problem is, Yahoo! set every users' option to "yes" -- even if long ago, they indicated they never wanted any Yahoo! spam.
    Yahoo! started e-mailing the privacy policy change to users Thursday. In the notice, the company suggested the marketing policy changes were made for users so they could more easily control the amount of e-mail offers they receive.
    "It is designed to make it easier for you to manage the marketing communications you receive from Yahoo! and ensure you get the latest relevant information to meet your needs," the notice says. It also says that marketing preferences have been "reset," and unless users actively follow a sequence of steps to change these preferences "you may begin receiving marketing messages from Yahoo! about ways to enhance your Yahoo! experience, including special offers and new features."
    But some Yahoo! users don't see the change as an enhancement, but rather a tactic to trick users into accepting more spam -- and a betrayal of their initial registration agreements.
    "I checked and they had changed all my settings!" writes one irate poster to an Internet mailing group devoted to privacy. "This means that you may well be inundated with even more junk mail than you are already receiving. In order to change your settings back to whatever you had them at before, you will need to log in to your account and physically change them," the poster adds.
    A Yahoo! spokesperson said no company officials were available to comment on the change, but offered an e-mail statement explaining the company's position.
    "We have created a new marketing preferences page which allows users to choose how Yahoo! communicates with them about Yahoo! products and services. Yahoo!'s products and services have changed and grown over the years and many were not available when users registered in the past," the e-mail says. "We are notifying users proactively via e-mail of this change, after which they have 60 days after the date of the mailing to edit those marketing preferences, giving users plenty of time to decide how they want Yahoo! to communicate with them."
    This was from a google search on "yahoo marketing preferences", and pretty well sums up what happened. They basically reset user marketing preferences, twice in about 4 years if I remember correctly.
    It was a bad decision IMHO, but easy enough to reset your preferences, here is yahoo's page on privacy, with links to reset your marketing preferences:
    http://privacy.yahoo.com/
    Other than this one issue, I've been very happy with Yahoo. Being able to check all my e-mail on one Web site for free is great. Never have lost any e-mails, no problems at all.
  4. Re:Broken already? by Detritus · · Score: 2, Informative
    He seems to be confused about the difference between the "From:" line and the envelope. You can authenticate the sender's domain (HELO mailserv.bigisp.net) and let the user set the "From:" line to whatever they want.

    Maybe I don't understand the problem. I thought Yahoo's new scheme was designed to authenticate the mail server that originated a transaction with a Yahoo mail server, not to authenticate the domain in the "From:" line.

    --
    Mea navis aericumbens anguillis abundat
  5. Re:Open standards? by dazed-n-confused · · Score: 2, Informative

    RTFA: "Yahoo said its 'Domain Keys' software, which it hopes to launch in 2004, will be made available freely to the developers of the Web's major open-source e-mail software and systems" ... "Yahoo's proposal should be attractive to other e-mail providers because it is free and comes with no special restrictions."

  6. Re:One solution by hattig · · Score: 2, Informative

    1) The domain owner/administrator (or their mail server administrator) I imagine. I expect that some tools will be available to generate the keypair. The public half will be configured on the DNS (would this require a new revision of BIND to handle a "DK" type or will a TXT field be abused for this?) and the private half will be installed into the mail server.

    When a mail from that domain goes via the mail server, the mail server will calculate the hash of the message and encrypt with the private key and add that as a header to the e-mail before sending it to the recipient.

    There will have to be some transitional period though, because it will take time for all mail providers to support domain keys, and any spammer can send spam via an undomainkeyed domain, yet you won't want to block undomainkeyed domains until all your contacts are using it. Maybe there would be a "Trusted Inbox" and "Untrusted Inbox" ...

    Bayesian filters suck because they only handles spam at the end point, in the mail client. The best place will be on the mailserver, before you have to download it.

  7. Re:OS? by VZ · · Score: 2, Informative

    They run, or at least used to run a few months ago, a (possibly patched) version of qmail:

    http://www.qmail.org/top.html

    and search for "Yahoo". I also know it from an independent source because I discovered a bug in qmail:

    http://www.washington.edu/imap/IMAP-FAQs/index.h tm l#7.47

    while tracking a bug report cocerning my MUA.

  8. Why does no one seem to get it? by mlilback · · Score: 2, Informative

    The proposal is very simple and most of the posts are just plain wrong about what it means.

    All mail servers will have a public/private key of some type. The public key will be stored in the DNS system as extra data.

    When an SMTP server connects to another SMTP server, the sending server will encrypt something (likely a checksum) with the private key for the domain the mail is from (likley the envelope from, not the From: header) and place it in a header.

    The receiving server will then grab the public key for the domain in the envelope and verify the message is being sent by a server that is authoritative for that domain name.

    Very simple. Now spammers can't send spam and make it look like it came from my domain. I'm currently getting flooded with bounces from a spammer doing this, so I really want this proposal adopted.

    The implementation can be phased in, too. The mail server could add a header saying if the domain was verified and spamassassin could then adjust the spam rating of the message appropriately. Eventually servers would be configured to refuse mail from unverified domains.

    So if you own a domain name, you just have to generate a key pair, add the public key to DNS, and add the private key to any SMTP server you send through.

    Once this is required, you theoretically will always be able to contact a person responsible for the sending of the spam (whoever is listed in the whois database for the domain). Contacting them (or abuse@) would solve the problem with any major email provider, and you can just ban email from any small provider that doesn't give an adequate response.

    Aside from the possible computational requirements for all the crypto work, I don't see any downsides to this. If by some chance a spammer broke/acquired your private key, you'd just generate a new one and update your DNS entry.

  9. Public key spam control - technical implications by Animats · · Score: 2, Informative
    This looks like a variation on the scheme to use DNS to distribute public keys for encrypted mail. It could even use the same key.

    The basic idea, as I understand it, is that the DNS for a domain holds a public key, and mail sent with a "from" address in that domain must be signed with that public key. That's an old idea, and not all that bad. You create your own public/private key pair; you don't have to buy a "certificate" from somebody. (I think.) If you control a domain's DNS info, you can send mail from anywhere with that domain listed as the sender, as long as you know the private key.

    For the free-mail services, it's fine. All their mail is authored via web applications and sent from their own servers. Only the service has the private key. Only the outgoing SMTP servers need to know the private key. That's the Yahoo Mail case.

    If you own a domain, you should have full control over your own public and private keys. But adding additional info to a DNS record is not well supported by most hosting services. If you're not running DNS yourself, you may have problems setting your public key. Hosting services have to support this.

    Signing can occur either in the original user agent (the SMTP sender) or in a mail forwarder. It's easier to implement this in mail forwarders, but if you want to send using a return address other than the one of the mail forwarder you're using, your user agent has to know how to sign mail.

    If you're downstream from an ISP and don't control a domain, the ISP owns the key for the domain and can control what they sign. That has implications. They might force you to use web mail, for example. Or run their client software on your machine.

    Spammers can still register domains, run their own DNS, sign their mail, and spam. It doesn't really stop spam.

    Your public key is now valuable, and a target for spyware and viruses. Expect to see viruses that steal public keys from (inevitably) Outlook and send them to spammers. Or just send spam from the attacked machine.

    What this really does is provide a clear way to identify joe-jobs using addresses from major mail services like Yahoo Mail. That helps Yahoo more than anybody else.