Re: 6. Proposals - Sender Verification (was Re: [Asrg] Simple wayto verify sender, track mail abusers)
Yakov Shafranovich <research@solidmatrix.com> Mon, 29 September 2003 06:03 UTC
Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id CAA18170 for <asrg-archive@odin.ietf.org>; Mon, 29 Sep 2003 02:03:32 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A3r7j-00063c-UW for asrg-archive@odin.ietf.org; Mon, 29 Sep 2003 02:03:09 -0400
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id h8T637xG023277 for asrg-archive@odin.ietf.org; Mon, 29 Sep 2003 02:03:07 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A3r7i-00063J-Vt for asrg-web-archive@optimus.ietf.org; Mon, 29 Sep 2003 02:03:07 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id CAA17592 for <asrg-web-archive@ietf.org>; Mon, 29 Sep 2003 02:02:59 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1A3r7f-0001HM-00 for asrg-web-archive@ietf.org; Mon, 29 Sep 2003 02:03:03 -0400
Received: from ietf.org ([132.151.1.19] helo=optimus.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 1A3r7f-0001HJ-00 for asrg-web-archive@ietf.org; Mon, 29 Sep 2003 02:03:03 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A3r7d-0005zO-Sa; Mon, 29 Sep 2003 02:03:01 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A3r7A-0005yT-Fw for asrg@optimus.ietf.org; Mon, 29 Sep 2003 02:02:32 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id CAA16964 for <asrg@ietf.org>; Mon, 29 Sep 2003 02:02:24 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1A3r76-0001HB-00 for asrg@ietf.org; Mon, 29 Sep 2003 02:02:29 -0400
Received: from smtp.sprintpcs.com ([63.167.114.16] helo=dedicated59-bos.wh.sprintip.net) by ietf-mx with esmtp (Exim 4.12) id 1A3r76-0001Gl-00 for asrg@ietf.org; Mon, 29 Sep 2003 02:02:28 -0400
Received: from solidmatrix.com ([68.27.216.138]) by dedicated59-bos.wh.sprintip.net (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003)) with ESMTPA id <0HLY007KUOR5ZW@dedicated59-bos.wh.sprintip.net> for asrg@ietf.org; Mon, 29 Sep 2003 06:02:00 +0000 (GMT)
From: Yakov Shafranovich <research@solidmatrix.com>
Subject: Re: 6. Proposals - Sender Verification (was Re: [Asrg] Simple wayto verify sender, track mail abusers)
In-reply-to: <000201c38635$1b6e7bc0$0a01a8c0@sohonotebook>
To: Eric Dean <eric@purespeed.com>
Cc: 'david nicol' <whatever@davidnicol.com>, 'Dennis Gearon' <gearond@fireserve.net>, asrg@ietf.org, Brad Knowles <brad.knowles@skynet.be>
Message-id: <3F77CACD.6000403@solidmatrix.com>
Organization: SolidMatrix Technologies, Inc.
MIME-version: 1.0
Content-type: text/plain; charset="us-ascii"; format="flowed"
Content-transfer-encoding: 7bit
X-Accept-Language: en-us, en
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624
References: <000201c38635$1b6e7bc0$0a01a8c0@sohonotebook>
Content-Transfer-Encoding: 7bit
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
Date: Mon, 29 Sep 2003 02:01:49 -0400
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit
For those who do not like the entire idea of C/R, it might be useful if someone volunteers to write up an evaluation of C/R in general. Something on C/R was mentioned in the technical considerations document which can be used in conjunction with the requirements document to do an evaluation. This way we can see a point by point break down of cons and pros of C/R. William Leibzon also has a presentation relevant to this. The documents are available at: http://www.infobro.com/anon-FTP/infoSource/IRTF/ASRG/draft-irtf-asrg-requirements-xx-05.txt http://www.ietf.org/internet-drafts/draft-crocker-spam-techconsider-02.txt http://www.elan.net/~william/asrg-emailpathverification-presentation.pdf There is also some BCPs that can be written up for C/R systems. Some of that work has been done in the CRI proposal and Brad Templenton also has a BCP list. These are available at: http://www.ietf.org/internet-drafts/draft-irtf-asrg-cri-00.txt http://www.templetons.com/brad/spam/challengeresponse.html Eric Dean wrote: > Considering I haven't received but a comment or two, sure, I'll maintain > the draft. > > With regards to body hashing or anything else, no one is preventing such > a method. It's an option available to individual implementers of CR > systems. I am merely proposing a method that they interoperate. > > I am not proposing that CR is a solution for spam. In fact, I have > evidence to the contrary...nevertheless, they exist and are used in many > places throughout the Internet. IMHO it may be an interesting idea if > they automatically interoperate rather than require user interaction. > > >>-----Original Message----- >>From: asrg-admin@ietf.org [mailto:asrg-admin@ietf.org] On Behalf Of > > david > >>nicol >>Sent: Sunday, September 28, 2003 7:08 PM >>To: Dennis Gearon >>Cc: asrg@ietf.org >>Subject: Re: 6. Proposals - Sender Verification (was Re: [Asrg] Simple >>wayto verify sender, track mail abusers) >> >>On Thu, 2003-09-25 at 19:32, Dennis Gearon wrote: >> >>>Yakov Shafranovich wrote: >>> >>> >>>>Fourth, take a look at the CRI proposal: >>>> >>>>http://www.ietf.org/internet-drafts/draft-irtf-asrg-cri-00.txt >>> >>>Actually, my idea, I believe, takes care of most of the problems > > with > >>>the Level 2 CRI system. I will think about it for awhile. >> >>When is CRI 01 due? Who is maintaining it (I nominate Eric Dean)? >>It has been pointed out that body hashing would make CRI level-2 >>work, and this was AIUI generally agreed-to. Yet a revised CRI >>document has not yet appeared. >> >> >>-- >>David Nicol / kernel 2.6.0 is pretty whippy >> >> >> >>_______________________________________________ >>Asrg mailing list >>Asrg@ietf.org >>https://www1.ietf.org/mailman/listinfo/asrg > > > > > _______________________________________________ > Asrg mailing list > Asrg@ietf.org > https://www1.ietf.org/mailman/listinfo/asrg > _______________________________________________ Asrg mailing list Asrg@ietf.org https://www1.ietf.org/mailman/listinfo/asrg
- [Asrg] Simple way to verify sender, track mail ab… Dennis Gearon
- 6. Proposals - Sender Verification (was Re: [Asrg… Yakov Shafranovich
- Re: 6. Proposals - Sender Verification (was Re: [… Dennis Gearon
- Re: 6. Proposals - Sender Verification (was Re: [… david nicol
- RE: 6. Proposals - Sender Verification (was Re: [… Eric Dean
- Re: 6. Proposals - Sender Verification (was Re: [… Dennis Gearon
- Re: 6. Proposals - Sender Verification (was Re: [… Yakov Shafranovich
- Re: 6. Proposals - Sender Verification (was Re: [… Yakov Shafranovich
- Re: 6. Proposals - Sender Verification (was Re: [… Yakov Shafranovich
- RE: 6. Proposals - Sender Verification (was Re: [… Eric Dean