ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Asrg] As requested

2003-07-02 13:04:11
from [Hondin de Goot] [Permanent Link] 
Mark Carron wrote:


Why not actually join the debate on 'GIEIS' instead of posting
subject matters that have nothing to do with this group?



OK:

The only reason why "spam" is a TECHNICAL NETWORKING
problem is because it is almost cost-free to the SENDER.

(1) In the short to medium term

Devise a method of reasonably reliably identifying bulk spam,
UCE or UBE and levying a charge on the senders (via any of their
upstream carriers, financial pain having the properties that it
does) which approaches that of any other method of commercial
or non-private bulk message delivery and most of the TECHNICAL
NETWORKING problems associated with spam - which are almost
entirely due intractable volumes of traffic - would rapidly
disappear.

Furthermore, the relatively small community subsumed under the
identity "upstream carriers" and its heavy dependence on an even
smaller number of common interconnects and transit agreements
essential to maintaining the quality/marketability of its product
(not excluding the attractiveness of its product to spammers)
would greatly reduce the difficulty of reaching, the task of
implementing and the central cost of policing any agreement:
most dispute resolution would tend to move towards end users and
"leaf AS"s on the one hand, less towards established *IX or their
fora on the other.  The politically difficult part - arriving at
basic definitions and a workable system of collections - which
would be simplified by being largely effected at industry rather
than governmental level, though some arm twisting by legislators
might well be required, would best be progressed through those
fora or some especially constituted offshoots of them, while
the technically difficult part, appropriate for discussion here,
would lie in the automation of identification and settlements.

(2) In the longer term

Reformulate the basics of the mail transport protocol.  That,
however, is a MUCH longer term project than is evident to any
but a few of those who do not have to wrestle daily with keeping
even reasonably loaded current systems financed and running, let
alone implementing and installing major upgrades, or those who
have little idea of the vast amount of installed infrastructure
that would have to be replaced or accommodated.  Furthermore, it
is an extremely rigorous field only peripherally amenable to inputs
from here.  SMTP may be unequal to the UNRESTRAINED stresses of
a primarily commercial Internet, but it is by no means a simple
minded mail transport protocol and it is not at all obvious that
it would so urgently need significant overhaul in an environment
where some reasonable degree of financial regulation replaced
the original institutional regulation.  In fact, like many of
the basic Internet services, not excluding post-CIDR IPv4, it
has scaled extraordinarily well.

That's it.

ANY concern with content or personal identification of the
senders of email that is not, outside of the envelope, a
TECHNICAL problem is no part of an appropriate TECHNICAL
solution to the NETWORKING problems of bulk spam/UCE/UBE.

With a sheet of paper, a pen, a postage stamp, an envelope
and a public mail box it is possible to send an anonymous
letter, lawful or otherwise, on any subject, to any person,
institution or business behind a physical mail box.  Any
solution to the TECHNICAL NETWORKING problems of spam, etc,
which renders Internet email - already inherently much more
traceable than most postal mail - even less able to handle
securely the communications of whistle blowers, or political
or social dissidents in Western or other jurisdictions, or
criminals, or little old grannies sending unattributed uplift
to psychiatric outpatients, whatever, as well as the mundane,
everyday drivel of normal communication, is a solution which
injects political and social considerations to the relative
detriment of electronic mail vis-a-vis the traditional mail
it is rapidly supplanting.  And is therefore unacceptable.

And any solution which involves analysis of message headers
or bodies beyond that required by legislation enacted in the
specific originating, transit or destination jurisdictions
involved represents a gross invasion of personal privacy or
commercial confidence (and I'm doubtful of granting authority
to mere transit jurisdictions).  The proper place to impose
political, social or commercial control on the contents of
either postal mail or electronic mail is not from within
some demented center of globalized electronic surveillance.

It is not worth addressing any even more bizarrely ignorant
proposals which put forward tecnhical abuse of the network,
from port scanning on up, as some kind valid control system.

Although Usenet is now largely (but, even yet, by any means
entirely) transported via NNTP, it is no part of the remit
of a TECHNICAL NETWORKING group, only loosely associated with
only one of its transmission protocols, to attempt to control
its content in any way other than from within Usenet's own
already well-established and effective control structures.
It is not encumbent on any ISP/IAP to provide a full (or any)
net news feed to its subscribers, and UDP is readily available
to any subset of news administrators who wish to apply it as
an ultimate remedy for the perceived transgressions of others.

The only politically mandated form of legal tender is currency
and while numerous commercial enterprises, each with their own
private, non-social agendas, offer alternatives - often, and
probably not without some foundation in fact, rumoured to have
significant to massive internal problems with security, fraud
and identity theft - in view of their fundamental opacity in
those regards they comprise no valid basis of any sort for any
mandatory access system within the public Internet at any level.

I am not a fully-combined brain surgeon+architect, accountant
registered in the British Isles (sic) + renowned egyptologist,
theoretical physicist, etc, and, although I have forgotten more
about networking than - I am sorry to say - it is obvious that
some of those poncing^h^h^h^htificating about in this list have
yet learned, or probably ever will learn, neither do I have,
anymore, the energy to input the sort of technical diligence
and effort that most technical networking problems, not least
this one, require.  However, that is no great loss as many
absolutely better technical brains that could, hopefully will,
find viable TECHNICAL solutions to the TECHNICAL components of
the problem at hand, without imposing spurious limitations or
introducing intrusive socio-political constraints, also subscribe
here and in other equally competent mileau.  Which is why I have
left it to them both until now and from now on.

As an aside, some of the more mouthily ignorant reading here
undoubtedly already knew, in an a priori kind of way associated
with a prescient understanding of all technologies unto all
(wo)men, that an SMTP server is that process in an SMTP
transaction which receives mail and an SMTP client is that
process which sends it.  And that POP3/IMAP mail queues are,
for the most part, fed with messages received by SMTP servers
acting in their usual role of MTAs.  They just briefly forgot it.

Finally, although I'm not a polymathic genius, even of the
psychiatric recidivist sort, nevertheless I do know a vapid
wannabe-Mr-Big timewaster trying to pass off a lazy streak of
intellectual self indulgence with an unjustifiable illusion
of superiority under the cover of a fraudulent facility with
undigested concepts when I see one, and I also know how subtly
but basically destructive of constructive group effort -
particularly the inputs of the socially naive, which are
thereby wasted beyond measure and excuse - such posturing
almost inevitably is, however beneficent it appears to be
en passant.  And, even for a dog, it's a relatively trivial
exercise in network forensics to establish with near certainty
that the previous deranged postings of a technical incompetent
did indeed originate with the same, in exactly the form they
currently have, thus casting (to use a technical term) denials
as self serving lies, aimed at asserting unquestioned "authority"
in a field where it has not earned, through the sheer, hard work
of researching the systems involved, the right to be asserted.

Nothing wrong with learning on the job, provided it is from
an attitude of supplication.

Now, where's that unsubscribe button?  Ah, here i


-- 
__________________________________________________________
Sign-up for your own FREE Personalized E-mail at Mail.com
http://www.mail.com/?sr=signup


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • [Asrg] As requested, Hondin de Goot <=
Previous by Date:  RE: [Asrg] Viruses, Barry Shein
Next by Date:  Re: [Asrg] Consent Proposal, Yakov Shafranovich
Previous by Thread:  Re: [Asrg] Re: Warning people of "intent to send" large quantities of email, Yakov Shafranovich
Next by Thread:  RE: [Asrg] 2. Problem Characterization - Defining spam within consent paradigm, Yakov Shafranovich
Indexes:  [Date] [Thread] [Top] [All Lists]