RE: [Asrg] Is there anything good enough?
Barry Shein <bzs@world.std.com> Wed, 07 May 2003 01:37 UTC
Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id VAA16920 for <asrg-archive@odin.ietf.org>; Tue, 6 May 2003 21:37:28 -0400 (EDT)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id h471kEh17824 for asrg-archive@odin.ietf.org; Tue, 6 May 2003 21:46:14 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h471kE817821 for <asrg-web-archive@optimus.ietf.org>; Tue, 6 May 2003 21:46:14 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id VAA16914; Tue, 6 May 2003 21:36:58 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19DDtg-0004IG-00; Tue, 06 May 2003 21:39:04 -0400
Received: from ietf.org ([132.151.1.19] helo=www1.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19DDtf-0004ID-00; Tue, 06 May 2003 21:39:03 -0400
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h471iK817719; Tue, 6 May 2003 21:44:20 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h471hR817680 for <asrg@optimus.ietf.org>; Tue, 6 May 2003 21:43:27 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id VAA16868 for <asrg@ietf.org>; Tue, 6 May 2003 21:34:11 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19DDqz-0004HS-00 for asrg@ietf.org; Tue, 06 May 2003 21:36:17 -0400
Received: from pcls1.std.com ([199.172.62.103] helo=TheWorld.com) by ietf-mx with esmtp (Exim 4.12) id 19DDqy-0004HP-00 for asrg@ietf.org; Tue, 06 May 2003 21:36:16 -0400
Received: from world.std.com (world-f.std.com [199.172.62.5]) by TheWorld.com (8.12.8p1/8.12.8) with ESMTP id h471b2uq016766; Tue, 6 May 2003 21:37:02 -0400
Received: (from bzs@localhost) by world.std.com (8.9.3/8.9.3) id VAA16983; Tue, 6 May 2003 21:37:03 -0400 (EDT)
From: Barry Shein <bzs@world.std.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-ID: <16056.25406.839834.632109@world.std.com>
To: "Eric D. Williams" <eric@infobro.com>
Cc: 'Barry Shein' <bzs@world.std.com>, Alan DeKok <aland@freeradius.org>, "asrg@ietf.org" <asrg@ietf.org>
Subject: RE: [Asrg] Is there anything good enough?
In-Reply-To: <01C3140D.7C8EA780.eric@infobro.com>
References: <01C3140D.7C8EA780.eric@infobro.com>
X-Mailer: VM 7.07 under Emacs 21.2.2
Content-Transfer-Encoding: 7bit
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Tue, 06 May 2003 21:37:02 -0400
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit
On May 6, 2003 at 20:18 eric@infobro.com (Eric D. Williams) wrote: > > No, the problem is that this spoofing is a minor problem and any > > solution is easily evaded by spammers. > > Please explain how. Ok, first off by just not using an RMX-enabled host. Using zombie hosts or open relays or mail proxies, spam-friendly ISPs, etc, that's what I was thinking of when I said "evaded". I just meant, as I said previously, sticking (e.g.) @aol.com may be attractive to spammers but it's not important, they won't miss a beat. No more than blocking open relays ever slowed them down. They (apparently) have lists of hundreds of thousands if not millions of useful hosts and can switch between them rapid-fire. See, if one doesn't understand their MO's one tends to imagine them only doing stuff that's easy and comfortable to think about. Further, if the spammers want to have that cake and eat it too they'll do what they're doing now and use lookalike domains like @yahooo.com (three 'o's) or A0L.COM (zero), ok that one's owned by AOL but you get my drift. Or aol-mail.com or @eartlink.com or @earhtlink.com, whatever 153,276 other combinations the public is likely to fall for with just about the same exact frequency as they would fall for phony@aol.com. We're not going into a good space here with this RMX stuff. As I said, RMX may solve some other problems, but it won't slow down spammers, not more than a few microseconds anyhow. > > Also, please address (if you are interested) the issue of framework and > architecture in proving a solution set. My thinking is Dave's paper on control > points is a start. I don't think we're ready to go there yet although I think Dave has a good idea trying to lay out the terrain. My message, as someone who has sat on the front-lines of all this for many years, is: a) Spam is more subtle than most people, even those who think they understand it, think. b) It's unlikely a technical solution will ever work. What might be more productive, for example, might be working along with legal experts on technical changes which might help provide evidence in court cases against spammers and similar miscreants. I think sending a "chilling effect" as they call it in law would help a lot with this problem. These are cowards, not heroes, we're dealing with. But I dunno, I'm not even ready to commit to that. But it's going to be some sort of interplay between technical/social/legal/legislative. Unfortunately, each group tends to sit down only with their own because that's the most comfortable environment (they understand each others' language and more's) and proceed to bang out a solution mostly centered on the sphere they are comfortable with (lawyers suggest court action, techies suggest algorithms, legislators suggest new laws, etc.) -- -Barry Shein Software Tool & Die | bzs@TheWorld.com | http://www.TheWorld.com Purveyors to the Trade | Voice: 617-739-0202 | Login: 617-739-WRLD The World | Public Access Internet | Since 1989 *oo* _______________________________________________ Asrg mailing list Asrg@ietf.org https://www1.ietf.org/mailman/listinfo/asrg
- RE: [Asrg] Is there anything good enough? Eric D. Williams
- RE: [Asrg] Is there anything good enough? Barry Shein
- RE: [Asrg] Is there anything good enough? Kee Hinckley
- Re: [Asrg] Is there anything good enough? Alan DeKok