Re: [Asrg] SHOULD filtering be done as part of SMTP transaction
Vernon Schryver <vjs@calcite.rhyolite.com> Fri, 23 May 2003 20:10 UTC
Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA23621 for <asrg-archive@odin.ietf.org>; Fri, 23 May 2003 16:10:03 -0400 (EDT)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id h4NK9bM27614 for asrg-archive@odin.ietf.org; Fri, 23 May 2003 16:09:37 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4NK9bB27611 for <asrg-web-archive@optimus.ietf.org>; Fri, 23 May 2003 16:09:37 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA23606; Fri, 23 May 2003 16:09:33 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19JIpk-0001wC-00; Fri, 23 May 2003 16:08:08 -0400
Received: from ietf.org ([132.151.1.19] helo=www1.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19JIpj-0001w9-00; Fri, 23 May 2003 16:08:07 -0400
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4NK38B26434; Fri, 23 May 2003 16:03:08 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4NK23B26408 for <asrg@optimus.ietf.org>; Fri, 23 May 2003 16:02:03 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA23351 for <asrg@ietf.org>; Fri, 23 May 2003 16:01:59 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19JIiQ-0001sI-00 for asrg@ietf.org; Fri, 23 May 2003 16:00:34 -0400
Received: from calcite.rhyolite.com ([192.188.61.3]) by ietf-mx with esmtp (Exim 4.12) id 19JIiP-0001sF-00 for asrg@ietf.org; Fri, 23 May 2003 16:00:33 -0400
Received: (from vjs@localhost) by calcite.rhyolite.com (8.12.9/8.12.9) id h4NK1wSX025822 for asrg@ietf.org env-from <vjs>; Fri, 23 May 2003 14:01:58 -0600 (MDT)
From: Vernon Schryver <vjs@calcite.rhyolite.com>
Message-Id: <200305232001.h4NK1wSX025822@calcite.rhyolite.com>
To: asrg@ietf.org
Subject: Re: [Asrg] SHOULD filtering be done as part of SMTP transaction
References: <E19JCf8-00064G-00@argon.connect.org.uk>
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Fri, 23 May 2003 14:01:58 -0600
> From: "Jon Kyme" <jrk@merseymail.com> > I've made a start on an overview of filtering in SMTP > (regarding anti-spam efforts). > > It's very preliminary. > > It'd be very grateful for any comments and suggestions. > It's here: > http://www.merseymail.com/asrg/Filter-SMTP-0-1.txt Assuming this text is intended for an RFC, I'd recommend avoiding shortcuts and imprecise language. For example, instead of "Rejection in SMTP," I would write "Rejection during the SMTP transaction" no matter how boring it is to repeatedly write "SMTP transaction." Overall, it is a good start, but I think it needs to be far longer. It should be more discoursive, including stating underlying assumptions and commonly shared notions. What are "false positives"? What are examples of the relevant "support and maintenance issues"? What are the types of filtering in section 2? They need to be spelled out. I've few or now cluse about 2.4, 2.5 and 2.6. It would be good to use words defined in other documents, but their definitions should be copied here them here if they are not obvious. The opportunities for decisions in the diagram at the end of section 2 are good, but it should be noted that deferring action can be profitable. For example, it is effective to delay rejecting spam identified by SMTP client IP addresses (e.g. with DNS blacklists) until the message body has been received and sent to a filter such as the DCC or Vipul's Razor or a "Bayesian trainer." Section 3 should mention other alternatives such as rejecting with a 4yz response recipients whose filtering preferences differ from the first recipient. The phrase "boundary MTA" in section 4 is too restrictive. The problems occur whenever there is more than one MX server for a domain. Vernon Schryver vjs@rhyolite.com _______________________________________________ Asrg mailing list Asrg@ietf.org https://www1.ietf.org/mailman/listinfo/asrg