From owner-freebsd-security Tue Apr 25 16:55:39 2000 Delivered-To: freebsd-security@freebsd.org Received: from as.tksoft.com (gyw.com [209.55.67.177]) by hub.freebsd.org (Postfix) with ESMTP id 2F36E37B56A for ; Tue, 25 Apr 2000 16:55:36 -0700 (PDT) (envelope-from tjk@tksoft.com) Received: (from tjk@tksoft.com) by uno.tksoft.com (8.8.8/8.8.8) id QAA12838; Tue, 25 Apr 2000 16:58:36 -0700 From: "tjk@tksoft.com" Message-Id: <200004252358.QAA12838@uno.tksoft.com> Subject: Re: SPAM Problem!! To: darren@nighttide.net (Darren Henderson) Date: Tue, 25 Apr 2000 16:58:36 -0700 (PDT) Cc: freebsd-security@FreeBSD.ORG In-Reply-To: from "Darren Henderson" at Apr 25, 0 03:17:12 pm Content-Type: text Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Unfortunately complicated systems have a very poor record of success on the Internet. I think good old fashioned prison sentences and fines would work the best. I am not saying imprison every spammer; just the ones who engage in fraud. In my books, using somebody else's email address, or a non-existent email address, for sending millions of emails is definitely fraud. There are laws to book these people. Too bad nobody cares to enforce the law when it involves some actual hard work. (It takes more effort per offender to arrest and convict these people, than passing out speeding tickets. Therefore, the cities, states, etc. get less revenue from these kinds of cases. And nobody wants to pay more taxes.) More than 90% of spam which I see, and nearly 100% of the spam I feel strongly about, has a fraudulent sender's email address. Troy > > On Tue, 25 Apr 2000, tjk@tksoft.com wrote: > > > Email has certainly become lot less reliable than what it used > > to be. At least if you need to communicate with AOL customers, > > it seems. > > Probably its being done somewhere already, if so I would like to see > pointers to it... perhaps its time to start looking at a replacement for > smtp. SMTP-NG or some snazzier acronym for secure messaging. > > Something that is designed for the environment that now exists. > > What features would we want to see, what features would be reasonable? > > - secure transmission > - verifiable transmission path, every system that touches it is > verifiable and authenticated > - each system encapsulates the entire message, think nested pgp signed > messages > - make the forging of headers very difficult > - etc etc etc > > What would a secure, difficult to forge, auditable messaging system look > like? > > ______________________________________________________________________ > Darren Henderson darren@nighttide.net > > Help fight junk e-mail, visit http://www.cauce.org/ > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message