IETF Logo Mail Archive

Re: [Asrg] Spam, why is it still a problem?

Craig Cockburn <craig@siliconglen.com> Tue, 17 January 2006 22:32 UTC

Received: from localhost.cnri.reston.va.us ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EyzNV-0005fi-DA; Tue, 17 Jan 2006 17:32:37 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EyzNT-0005fK-LW for asrg@megatron.ietf.org; Tue, 17 Jan 2006 17:32:35 -0500
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA00820 for <asrg@ietf.org>; Tue, 17 Jan 2006 17:31:11 -0500 (EST)
Received: from yankee.rb.xcalibre.co.uk ([217.8.240.35]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1EyzVf-0003Xo-MA for asrg@ietf.org; Tue, 17 Jan 2006 17:41:05 -0500
Received: from scot.demon.co.uk ([83.104.38.222] helo=siliconglen.com) by yankee.rb.xcalibre.co.uk with esmtpa (Exim 4.53) id 1EyzMw-000678-0N for asrg@ietf.org; Tue, 17 Jan 2006 22:32:02 +0000
Message-ID: <WoIm06J$$WzDFwuZ@siliconglen.com>
Date: Tue, 17 Jan 2006 22:30:23 +0000
To: asrg@ietf.org
From: Craig Cockburn <craig@siliconglen.com>
Subject: Re: [Asrg] Spam, why is it still a problem?
References: <9qBEYaDyZ2yDFwj7@siliconglen.com> <200601161903.k0GJ38G23149@panix5.panix.com>
In-Reply-To: <200601161903.k0GJ38G23149@panix5.panix.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
User-Agent: Turnpike/6.05-U (<FvBwmKBJLMJYZvXHFSQ58xcB4D>)
X-SMTP-Authenticated-User: siliconglen
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 7aafa0432175920a4b3e118e16c5cb64
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/asrg>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
Sender: asrg-bounces@ietf.org
Errors-To: asrg-bounces@ietf.org

In message <200601161903.k0GJ38G23149@panix5.panix.com>, Seth Breidbart 
<sethb@panix.com> writes
>
>Craig Cockburn <craig@siliconglen.com> wrote:
>
>> Or more to the point why are we letting it still be a problem?
>
>Why are "we" "letting" burglary, rape, murder, etc. still be problems?
>They've been going on for a lot longer than spamming.
>
Because you cannot control human action. Therefore you cannot control 
the above. However the spammers use computers to carry out their job and 
certainly with the various solutions being discussed it should be fairly 
straightforward to reject email from problem domains outright (DNS RBL) 
or downgrade the trustworthiness of said machines if they do not meet 
certain criteria. As a first step, this would allow spam filters to have 
a threshold set to block such mail. On the flipside if the owner of a 
machine is prepared to go the extra mile and install extra software to 
ensure the mail server cannot send spam and this can be independently 
verified then the said server can be whitleisted to minimise the 
possibility of misclassification. (e.g. with a surname like mine, or of 
course doctors working on organ enhancing drugs)

Using your analogy we might not be able to control people but if we can 
control the tools they need to commit a crime its the next best thing.

>> Given that spam is still a problem, comprising about 90% of email
>> and costing about $40 billion a year, why is it that there is so
>> little visible progress on this list and generally regards
>> implementing a solution that actually works
>
>Which is?  (See FUSSP if you think you can answer that question.)
>
The point your missing is implementation of what has already been 
discussed

There are a number of proposals moving forward (slowly). Each of these 
will help. However I don't see much in the way of actual project 
management of this. Who is driving these proposals - what is their 
marketing plan to ensure wide take up? Where is a discussion of the 
problems bringing them to market? What is the expected timescale for 
having these proposals widely available? Where is the business element 
in the proposals ? Who argues the case for these proposals versus vendor 
specific ones? Where is the viral campaign ala Firefox to get 100 
million people using them in a year (even 10 million might be a start).

Great ideas are nothing if people don't hear about them.


-- 
Craig Cockburn ("coburn"). http://www.SiliconGlen.com/
Please sign the Spam Petition: http://www.siliconglen.com/spampetition/
Home to the first online guide to Scotland, founded 1994.
Scottish FAQ, weddings, website design, stop spam and more!

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.23.0 | Report a Bug | By Email