Re: [Asrg] Consent Proposal
Walter Dnes <waltdnes@waltdnes.org> Sat, 28 June 2003 07:56 UTC
Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA18281 for <asrg-archive@odin.ietf.org>; Sat, 28 Jun 2003 03:56:45 -0400 (EDT)
Received: (from exim@localhost) by www1.ietf.org (8.11.6/8.11.6) id h5S7uFl27443 for asrg-archive@odin.ietf.org; Sat, 28 Jun 2003 03:56:15 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19WAZD-00078Y-OJ for asrg-web-archive@optimus.ietf.org; Sat, 28 Jun 2003 03:56:15 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA18277; Sat, 28 Jun 2003 03:56:14 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19WAZB-00025j-00; Sat, 28 Jun 2003 03:56:13 -0400
Received: from ietf.org ([132.151.1.19] helo=optimus.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19WAZ5-00025g-00; Sat, 28 Jun 2003 03:56:07 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19WAZ0-000764-8s; Sat, 28 Jun 2003 03:56:02 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19WAYf-00075K-Nq for asrg@optimus.ietf.org; Sat, 28 Jun 2003 03:55:41 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA18274 for <asrg@ietf.org>; Sat, 28 Jun 2003 03:55:25 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19WAYO-00025d-00 for asrg@ietf.org; Sat, 28 Jun 2003 03:55:24 -0400
Received: from dci.doncaster.on.ca ([66.11.168.194] helo=smtp.istop.com) by ietf-mx with esmtp (Exim 4.12) id 19WAYD-00025Q-00 for asrg@ietf.org; Sat, 28 Jun 2003 03:55:13 -0400
Received: from waltdnes.org (ip27-165.tor.istop.com [66.11.165.27]) by smtp.istop.com (Postfix) with SMTP id ADCE73699E for <asrg@ietf.org>; Sat, 28 Jun 2003 03:54:17 -0400 (EDT)
Received: by waltdnes.org (sSMTP sendmail emulation); Sat, 28 Jun 2003 03:54:17 -0400
From: Walter Dnes <waltdnes@waltdnes.org>
To: ASRG list <asrg@ietf.org>
Subject: Re: [Asrg] Consent Proposal
Message-ID: <20030628035417.F2360@m433>
References: <5.2.0.9.2.20030626171332.00bd13e0@pop.pocketmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <5.2.0.9.2.20030626171332.00bd13e0@pop.pocketmail.com>; from research@solidmatrix.com on Thu, Jun 26, 2003 at 05:23:25PM -0400
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Sat, 28 Jun 2003 03:54:17 -0400
On Thu, Jun 26, 2003 at 05:23:25PM -0400, Yakov Shafranovich wrote > I would like to provide a generic proposal for consent-based system as per > charter: I have an account at clss.net. They run a modified Qmail that parses a config file in the user's home directory. The filter rules are applied during the SMTP transaction, just after the RCPT: stage. > 1. Users and/or ISP define rules and filters to filter incoming email. > Rules/filters are decided by end users and ISPs, and are not mandated. Yup. There's a "user friendly" frontend menu. I prefer to manually edit the filter file with vim for maximum flexibility. > 2. For each email user, the MUA or the ISP maintains a whitelist > of trusted senders, blacklist of blocked senders and a graylist > of unknown senders. Whitelisted senders go the inbox, graylisted > senders go to the bulk folder, and blacklisted senders are either > in the spam folder or erased. Because the blocking takes place during the SMTP transaction, the sending MTA gets the big 550. Rejected emails are *NOT* "bounced" to innocent 3rd parties whose email addresses have been forged by spammers. - Whitelisted email goes through with a free pass, regardless of any other rules it may trip. - Blacklisted email gets a 550 message, in most cases containing a pointer to one of my webpages that has a current unfiltered temporary alternate email address. This is a safety net for legitimate senders who get caught as collateral damage by the DNSbls or other blocking rules I use. Spammers don't seem to read reject messages, so that filter bypass hasn't been abused yet. - Greylist... I define to mean that portion of messages that are not in my whitelist, but do not trip any of my blocking rules. Those messages are accepted just like regular email. > 3. Whitelists are not only a list of email addresses of trusted > senders, but to avoid sender spoofing also have additional features > such as digital signatures, certificates, passwords, tokens, etc. Since clss.net's system makes the decision before the DATA: stage, this additional stuff is not available. IP address and rDNS can be used, however. > 4. Additional automatic whitelist rules are defined as such email from > trusted senders (e.g. Habeas) is automatically goes to the inbox unless > blacklisted, etc. C/R systems are also integrated and upon receiving a > positive response automatically whitelist the sender. I do it all manually. > 5. Additional automatic blacklist rules are defined such as email coming > from known open relays is blocked. That's what DNSbls are for. They update as new open relays and proxies are discovered. They also automatically de-list with closure. I do have to manually add/delete countries that I block using the zz.countries.nerd.dk superzone. I started off with South Korea, China, Taiwan, and Nigeria. As Nigerian scammers realized Nigeria was blocked to hell and back, they moved to the Netherlands, which I also had to block. France and Isreal have recently popped up on my spam radar. > 6. Whitelists, graylists and blacklists are stored hashed or encrypted > to protect privacy. That may generate a misleading warm fuzzy feeling, but it's useless. A traffic log of your emails will show what you accept/reject. -- Walter Dnes <waltdnes@waltdnes.org> Email users are divided into two classes; 1) Those who have effective spam-blocking 2) Those who wish they did _______________________________________________ Asrg mailing list Asrg@ietf.org https://www1.ietf.org/mailman/listinfo/asrg
- RE: [Asrg] Consent Proposal Peter Kay
- [Asrg] Consent Proposal Mark McCarron
- Re: [Asrg] Consent Proposal Jon Kyme
- [Asrg] Trust, misunderstood? Danny Angus
- [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Jon Kyme
- Re: [Asrg] Consent Proposal Barry Shein
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Peter Kay
- Re: [Asrg] Consent Proposal Selby Hatch
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Vernon Schryver
- RE: [Asrg] Consent Proposal Peter Kay
- RE: [Asrg] Consent Proposal Peter Kay
- RE: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Peter Kay
- [Asrg] Consent Proposal gep2
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Bob Wyman
- Anticipatory whitelisting (was Re: [Asrg] Consent… Bruce Stephens
- Re: [Asrg] Consent Proposal Jon Kyme
- Re: [Asrg] Consent Proposal Jon Kyme
- Re: RE: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Barry Shein
- RE: [Asrg] Consent Proposal Peter Kay
- Re: [Asrg] Consent Proposal Walter Dnes
- Re: RE: [Asrg] Consent Proposal Jon Kyme
- Re: [Asrg] Consent Proposal Jon Kyme
- RE: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- Fwd: Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- Fwd: Re: [Asrg] Consent Proposal Yakov Shafranovich
- Fwd: Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: Fwd: Re: [Asrg] Consent Proposal Craig Cockburn
- Re: Fwd: Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: Anticipatory whitelisting (was Re: [Asrg] Con… Yakov Shafranovich
- Re: Fwd: Re: [Asrg] Consent Proposal Jon Kyme
- Re: [Asrg] Consent Proposal Danny Angus
- RE: Fwd: Re: [Asrg] Consent Proposal Jon Kyme
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Bob Wyman
- RE: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Howard Roth
- Re: RE: [Asrg] Consent Proposal Jon Kyme
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- RE: [Asrg] Consent Proposal Danny Angus
- Re: [Asrg] Consent Proposal Markus Stumpf
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Consent Proposal Danny Angus
- Re: [Asrg] Consent Proposal Markus Stumpf
- Re: [Asrg] Consent Proposal C. Wegrzyn
- Re: [Asrg] Consent Proposal Markus Stumpf
- Re: [Asrg] Consent Proposal C. Wegrzyn
- Re: [Asrg] Consent Proposal Markus Stumpf
- Re: [Asrg] Consent Proposal C. Wegrzyn
- Re: [Asrg] Consent Proposal Yakov Shafranovich
- Re: [Asrg] Trust, misunderstood? Yakov Shafranovich
- Re: [Asrg] Trust, misunderstood? C. Wegrzyn