IETF Logo Mail Archive

Re: [Asrg] Some data on the validity of MAIL FROM addresses

Yakov Shafranovich <research@solidmatrix.com> Mon, 19 May 2003 00:30 UTC

Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA21405 for <asrg-archive@odin.ietf.org>; Sun, 18 May 2003 20:30:04 -0400 (EDT)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id h4INwlp16520 for asrg-archive@odin.ietf.org; Sun, 18 May 2003 19:58:47 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4INwlB16517 for <asrg-web-archive@optimus.ietf.org>; Sun, 18 May 2003 19:58:47 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA21393; Sun, 18 May 2003 20:29:34 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19HYYm-0006Ck-00; Sun, 18 May 2003 20:31:24 -0400
Received: from ietf.org ([132.151.1.19] helo=www1.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19HYYm-0006Ch-00; Sun, 18 May 2003 20:31:24 -0400
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4INsIB16398; Sun, 18 May 2003 19:54:18 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4INrhB16373 for <asrg@optimus.ietf.org>; Sun, 18 May 2003 19:53:43 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA21345 for <asrg@ietf.org>; Sun, 18 May 2003 20:24:30 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19HYTs-0006Bf-00 for asrg@ietf.org; Sun, 18 May 2003 20:26:20 -0400
Received: from 000-230-497.area5.spcsdns.net ([68.27.139.120] helo=68.27.139.120) by ietf-mx with smtp (Exim 4.12) id 19HYTq-0006Bc-00 for asrg@ietf.org; Sun, 18 May 2003 20:26:19 -0400
Message-Id: <5.2.0.9.2.20030518202253.00bac8d8@std5.imagineis.com>
X-Sender: research@solidmatrix.com
X-Mailer: QUALCOMM Windows Eudora Version 5.2.0.9
To: asrg@ietf.org
From: Yakov Shafranovich <research@solidmatrix.com>
Subject: Re: [Asrg] Some data on the validity of MAIL FROM addresses
In-Reply-To: <200305182317.h4INHBck008689@calcite.rhyolite.com>
References: <5.2.0.9.2.20030518145058.00bdceb0@std5.imagineis.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-MimeHeaders-Plugin-Info: v2.03.00
X-GCMulti: 1
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Sun, 18 May 2003 20:27:15 -0400

At 05:17 PM 5/18/2003 -0600, Vernon Schryver wrote:
>[...]
>Are you expecting not only that distant users will respond to challenges,
>but that their ISPs will modify their MTAs to maintain databases of
>all addresses to which their users have sent mail?  If so, that
>seems...implausible.

I did expect ISPs to maintain such databases for only for a limited time. 
An average challenge/response interaction if done by automated software 
only takes moments or at most minutes. If an ISP is implementing an 
automated C/R system, they might keep track of outgoing addresses just like 
they keep a whitelist and queue for incoming. However, that would be an 
optional part of the draft.

What I do expect is that users will not reply to challenges that come from 
strangers - if spammers start using someone's email address for the "FROM" 
field, it would make sense to assume that the user in question will not 
respond to thousands of incoming messages.

Yakov 

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.30.2 | Report a Bug | By Email | System Status