At 6:10 PM -0600 7/3/03, Selby Hatch wrote:
It is limited to a fixed number of characters, enough for a
name/identification and reason for correspondence. No URLs are
permitted. The only way to respond and give consent is by return
email to the from email address provided. No one can ask for
permission without a valid email address to provide a way for
consent to be returned.
That sounds like it has potential.
individual signs up, they would provide the consent token
for the FTC to use when then sent a confirmation email. The FTC WEB
This would probably degenerate to a simple password, since anything
else would require tight integration between the email client and the
web browser (and a signup may occur when the email client isn't
available, or even over the phone). That's not necessarily bad, but
it should be recognized. The other issue here is that this requires
modifying tens, if not hundreds, of thousands of web forms and their
backend databases. Given that, it seems wise to make it possible to
include the consent token in the email address, potentially as an
option. (Although of course that won't work with the FTC site, since
they decided to invent their own concept of what an email address
looks like.)
--
Kee Hinckley
http://www.messagefire.com/ Anti-Spam Service for your POP Account
http://commons.somewhere.com/buzz/ Writings on Technology and Society
I'm not sure which upsets me more: that people are so unwilling to accept
responsibility for their own actions, or that they are so eager to regulate
everyone else's.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg