Re: [Asrg] VPNs vs consent

Jose-Marcio Martins da Cruz <> Thu, 25 June 2009 13:30 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 593A33A6DAB for <>; Thu, 25 Jun 2009 06:30:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.249
X-Spam-Status: No, score=-2.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_FR=0.35]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id 0uCHBO+HHyix for <>; Thu, 25 Jun 2009 06:30:51 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id 5533C3A6D6B for <>; Thu, 25 Jun 2009 06:30:51 -0700 (PDT)
Received: from localhost.localdomain ( []) (authenticated bits=0) by (8.14.3/8.14.3/JMMC-11/Feb/2009) with ESMTP id n5PCqawJ024557 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <>; Thu, 25 Jun 2009 14:52:36 +0200 (MEST)
Message-ID: <>
Date: Thu, 25 Jun 2009 14:54:43 +0200
From: Jose-Marcio Martins da Cruz <>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv: Gecko/20090507 Fedora/1.1.16-1.fc11 SeaMonkey/1.1.16
MIME-Version: 1.0
To: Anti-Spam Research Group - IRTF <>
References: <> <> <> <> <> <>
In-Reply-To: <>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Miltered: at boipeva with ID 4A437314.000 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)!
X-j-chkmail-Enveloppe: 4A437314.000/<>
Subject: Re: [Asrg] VPNs vs consent
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To:, Anti-Spam Research Group - IRTF <>
List-Id: Anti-Spam Research Group - IRTF <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 25 Jun 2009 13:30:52 -0000

Alessandro Vesely wrote:
> Jose-Marcio Martins da Cruz wrote:

> AFAIK, there is no way SMTP can be configured so that a given sending 
> location can be whitelisted. One can try and detect what MTA sends the 
> message and whitelist specific filters, presumably doing detection by 
> the IP address of each mailout. That's much like VPN: being at a higher 
> level doesn't ease the task. For example, assume someone trusts Gmail's 
> egress filtering and wants to skip content filtering for mail coming 
> from there. What work is required to accomplish (and maintain) that 
> task, on typical MTA software?

Hmmmm.... You're raising a problem which is similar to the problem of management of user 
preferences on a border smtp gateway. This isn't a problem at, say, gmail or mailbox 
providers as most of the time users have only one email address.

But talking about universities, or look alike organisations...

Myself, I have many **non shared** identities : only to cite two, the one you can see in 
this message and my login.

But also I have many **shared** identities. These identities correspond to email addresses 
  (administrative or not) which resolve to many people. I can hardly see some kind of 
management of *shared consent* for these addresses.