Re: [Asrg] A Vouch By Feedback proposal

"J.D. Falk" <jdfalk-lists@cybernothing.org> Tue, 07 July 2009 20:13 UTC

Return-Path: <jdfalk-lists@cybernothing.org>
X-Original-To: asrg@core3.amsl.com
Delivered-To: asrg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B7B543A6ED6 for <asrg@core3.amsl.com>; Tue, 7 Jul 2009 13:13:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.485
X-Spam-Level:
X-Spam-Status: No, score=-2.485 tagged_above=-999 required=5 tests=[AWL=0.114, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pWe+15LRoqah for <asrg@core3.amsl.com>; Tue, 7 Jul 2009 13:13:54 -0700 (PDT)
Received: from ocelope.disgruntled.net (ocelope.disgruntled.net [97.107.131.76]) by core3.amsl.com (Postfix) with ESMTP id DF1113A6EAE for <asrg@irtf.org>; Tue, 7 Jul 2009 13:13:42 -0700 (PDT)
Received: from rpco-jdmacbook.rpcorp.local (np34.co.returnpath.net [38.109.196.34]) (authenticated bits=0) by ocelope.disgruntled.net (8.14.3/8.14.3/Debian-5) with ESMTP id n67KDED1017522 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT) for <asrg@irtf.org>; Tue, 7 Jul 2009 14:13:16 -0600
X-DKIM: Sendmail DKIM Filter v2.6.0 ocelope.disgruntled.net n67KDED1017522
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=cybernothing.org; s=satori; t=1246997596; bh=JsKPeSqOz2HAwnyWQMyTw93S4GUEHte7xnNL+FOn Rdw=; h=Message-ID:Date:From:MIME-Version:To:Subject:References: In-Reply-To:Content-Type:Content-Transfer-Encoding; b=JlRMjeb9UaMh cQbyQ0i22cDP8/7DbUwQb0ug3G27yZVY+Y81135m8uWZz7WqLTUc/9MJLIFSDqnzYrI TT+CSsrGPzwBAJSLSkCe7BDS6nMX+Z7zZCaI8ykadhZG3GHpUTTHnNxI1o61oO0xFN2 meC0VRgJnzB5/PAfCZePPeMTQ=
Message-ID: <4A53AC55.8030801@cybernothing.org>
Date: Tue, 07 Jul 2009 14:13:09 -0600
From: "J.D. Falk" <jdfalk-lists@cybernothing.org>
User-Agent: Postbox 1.0b12 (Macintosh/2009051120)
MIME-Version: 1.0
To: Anti-Spam Research Group - IRTF <asrg@irtf.org>
References: <20090623213728.1825.qmail@simone.iecc.com> <4A41D773.50508@telmon.org> <4A41E506.2010106@mines-paristech.fr> <20090624160052.B5DC62428A@panix5.panix.com> <4A426B9D.7090901@mines-paristech.fr> <4A43618A.6000205@tana.it> <4A4F7DD0.4040404@billmail.scconsult.com> <4A51D35E.70306@tana.it> <4A52C36D.6040207@billmail.scconsult.com> <4A532344.5010509@tana.it>
In-Reply-To: <4A532344.5010509@tana.it>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [Asrg] A Vouch By Feedback proposal
X-BeenThere: asrg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: Anti-Spam Research Group - IRTF <asrg@irtf.org>
List-Id: Anti-Spam Research Group - IRTF <asrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/asrg>
List-Post: <mailto:asrg@irtf.org>
List-Help: <mailto:asrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Jul 2009 20:13:55 -0000

Alessandro Vesely wrote:

> Vouch By Feedback could be a useful modification of the Vouch By
> Reference standard, if it didn't break its installed base.

What installed base?

> VBF adds a DNS record pointing from the vouched domain to the vouching
> server email address. It could be an RP RR type, where the address is
> meant to receive the message/feedback-report (AFR) complaints. Web
> is-spam buttons direct reports to the ESP, who should forward them to
> any sender's vouching service. Clients who implement FBLs might send
> them to the relevant voucher directly.

Variations of this theme have been discussed dozens of times, always trying 
to piggyback on some other technology: SPF (which doesn't make sense), DKIM 
(which almost makes sense), et cetera.

The problem, unfortunately, is that the use cases are unclear.  I'd 
recommend starting by defining those cases -- not merely "I want to send 
complaints about spam" or "I want to receive complaints so my mail doesn't 
get blocked," but every possible permutation, end-to-end.

It could make for an interesting research project.

 > Vouchers, in turn, shall forward
> reports to the accountable originating ESP. The latter shall ban guilty
> users from sending for an amount of time proportional to the number of
> complaints. If the voucher sees complaints against users who should have
> been banned from sending, it shall suspend its vouching service for the
> relevant sender.

Here you're getting out of the technology, and into dictating behavior.  I 
wouldn't be surprised if the agreements between message sender, voucher, and 
message receiver end up looking something like what you describe, but the 
technology should be agnostic and let those three parties make any agreement 
they feel is appropriate for their individual situations.

-- 
J.D. Falk
Return Path Inc
http://www.returnpath.net/