IETF Logo Mail Archive

[Asrg] Re: Consent protocols - was E-postage

David Maxwell <david@vex.net> Sun, 02 May 2004 02:07 UTC

Received: from optimus.ietf.org (www.iesg.org [132.151.1.19]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id WAA06714 for <asrg-archive@odin.ietf.org>; Sat, 1 May 2004 22:07:46 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1BK6Er-0004lJ-2M for asrg-archive@odin.ietf.org; Sat, 01 May 2004 21:57:53 -0400
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id i421vrZL018306 for asrg-archive@odin.ietf.org; Sat, 1 May 2004 21:57:53 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1BK6CX-0003rg-8i for asrg-web-archive@optimus.ietf.org; Sat, 01 May 2004 21:55:29 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id VAA06398 for <asrg-web-archive@ietf.org>; Sat, 1 May 2004 21:55:26 -0400 (EDT)
Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BK6CU-0002nW-Eq for asrg-web-archive@ietf.org; Sat, 01 May 2004 21:55:26 -0400
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BK6BZ-0002bB-00 for asrg-web-archive@ietf.org; Sat, 01 May 2004 21:54:30 -0400
Received: from optimus.ietf.org ([132.151.1.19]) by ietf-mx with esmtp (Exim 4.12) id 1BK6BB-0002Ou-00 for asrg-web-archive@ietf.org; Sat, 01 May 2004 21:54:05 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1BK5zU-0007C1-R3; Sat, 01 May 2004 21:42:00 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1BJelA-0004rG-O3 for asrg@optimus.ietf.org; Fri, 30 Apr 2004 16:37:24 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA29641 for <asrg@ietf.org>; Fri, 30 Apr 2004 16:37:21 -0400 (EDT)
Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BJel8-0004AW-GW for asrg@ietf.org; Fri, 30 Apr 2004 16:37:22 -0400
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BJejs-0003su-00 for asrg@ietf.org; Fri, 30 Apr 2004 16:36:05 -0400
Received: from h210.c136.b246.tor.eicat.ca ([66.246.136.210] helo=shell.vex.net) by ietf-mx with esmtp (Exim 4.12) id 1BJeio-0003fu-00 for asrg@ietf.org; Fri, 30 Apr 2004 16:34:58 -0400
Received: from smaug.vex.net (smaug.vex.net [66.246.136.211]) by shell.vex.net (Postfix) with ESMTP id 24332EC1A; Fri, 30 Apr 2004 16:34:58 -0400 (EDT)
Received: from mail.crlf.net (mail.crlf.net [216.126.92.195]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by smaug.vex.net (Postfix) with ESMTP id EB50735AD6; Fri, 30 Apr 2004 16:34:54 -0400 (EDT)
From: David Maxwell <david@vex.net>
To: John Levine <asrg@johnlevine.com>
Cc: asrg@ietf.org
Message-ID: <20040430203457.GP22336@mail>
References: <20040430152420.GN22336@mail> <20040430165518.4460.qmail@xuxa.iecc.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20040430165518.4460.qmail@xuxa.iecc.com>
User-Agent: Mutt/1.4.2i
Subject: [Asrg] Re: Consent protocols - was E-postage
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
Date: Fri, 30 Apr 2004 16:34:57 -0400
X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org
X-Spam-Status: No, hits=0.0 required=5.0 tests=none autolearn=no version=2.60

On Fri, 30 Apr 2004, John Levine wrote:
> >> f. Sender pretends to be 300 other people and sends you buckets of spam.
> Sorry, that was supposed to be:
> f. Sender pretends to be 30,000 other people and sends you buckets of spam.

Sure. You seem to be saying "Does this scale?". I suggest that it scales
better than having to do content inspection, or manual filtering of
spam from X hosts.

> >Now, if you like, add greylisting for unknown senders, so that those
> >300 msgs won't be accepted on the first try. Then, add a distributed
> >blacklist which you check your mailqueue against before delivery to
> >users' inboxes. Application of the blacklist can be part of whatever
> >other content spam filters the user has.
> 
> DCC already does that.  It works reasonably well, with no need to
> invent new consent protocols.

DCC today, is used as a first line of defence. Your MTA needs to accept
all X messages, and check a DCC for them.

With the scheme I described, you make DCC the second line of defense,
and save a lot of work in two out of three cases.

Case one: For Sender IPs that you develop Trust for, you may choose not
to bother checking the DCC. In my case, this would account for roughly
half my mail (the non-spam half).

Case two: For Sender IPs that you develop Distrust for, you may choose
not to accept connections at all. 

Case three: For new Sender IPs, you do all the filtering you do now,
_and_ you offer a chance for them to self-identify as spammers, by
exceeding your specified rate limit.


I realize that the argument about whether to give negative feedback to
spammers is not a closed issue by any means, but I like that in Case
two, you reduce bandwidth demands across the backbone by not letting the
spam flow to you in the first place.

-- 
David Maxwell, david@vex.net|david@maxwell.net --> Although some of you out
there might find a microwave oven controlled by a Unix system an attractive
idea, controlling a microwave oven is easily accomplished with the smallest
of microcontrollers. - Russ Hersch - (Microcontroller primer and FAQ)


_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.23.0 | Report a Bug | By Email