RE: Unplugging spamming PCs

Larry_Pingree · June 23, 2004, 11:40pm

Hi Peter,
I agree with you it's a hard problem to solve. But unless there is
mandatory cooperation within mail server software (which can be
monitored) to interface with a registry of acceptable/registered sites,
then this model could work. Is it perfect, no. And so far, I've not seen
any technology that will solve this problem. So I default and say it's a
problem that must be solved with agreements between countries that can
provide registries that all (valid) mail servers must register. Then at
least our spammer enforcement is dwindled down to those who go through
some sort of process, that can be validated physically, i.e. Address,
Company name, etc, etc... And then enforcement can be done only to those
who misbehave that are validated and authenticated.

Can you suggest another method that would have more accuracy? I think
it's ridiculous that every service on the internet is provided without
any authentication and integrity services, if we allowed anyone to call
from anywhere within the telephone network, you'd have rampant
falsification, which is what we have today.

LP

Best Regards,

Larry

Larry Pingree

"Visionary people, are visionary, partly because of the great many
things they never get to see." - Larry Pingree

Joe_Hamelin2 · June 24, 2004, 12:26am

I can telnet to a mailserver and send mail to that host without much
thought. What good will a registry do? What will solve spam is
getting some of these virus writers to actually write some code that
will trash disks of poorly patched (if a at all) hosts. Let Darwin
take over.

-Joe

Peter_Galbavy1 · June 24, 2004, 7:51am

Larry Pingree wrote:

Can you suggest another method that would have more accuracy? I think
it's ridiculous that every service on the internet is provided without
any authentication and integrity services, if we allowed anyone to
call from anywhere within the telephone network, you'd have rampant
falsification, which is what we have today.

It is these characteristics that has made the Internet work and grow the way
it has.

You comment about the telephone network; Erm, that's just the way it works
today - the AAA is in the SS7/C7/etc. layer, similar to BGP in IP.

The problem being raised in this thread is too old to solve this way. If
e-mail was regulated from early on, then it may have worked. Now there are
too many ways to get around any regulations proposed.

Anyhow, I don't want my e-mail correspondants vetted and approved by a
(never neutral) third party.

Peter