ietf-asrg
[Top] [All Lists]

Re: [Asrg] Re: 6. Proposals: LMTP proposals]

2003-12-01 06:56:18
Mark E. Mallett wrote:

On Mon, Dec 01, 2003 at 09:16:32AM +0000, Fridrik Skulason wrote:

  A spammer gains access to a compromised computer, and determines
  the mail address of the owner of the machine.  The spam is then
  sent out in the name of the owner of the machine, just as if
the real owner was actually pressing the keys.
In other words, widespread implementation of LMAP (which would be a good
thing) would lead to more compromised machines (which would be a bad thing) ;-)


What solutions are there that don't suffer this problem?

(greylisting and other sorts of limiters might not, so much, but
that's the sort or things that "owning" machines get around, too.)


It then becomes a bigger incentive on the ISPs to start detecting and blocking malicious machines.

Yakov
-------
Yakov Shafranovich / asrg <at> shaftek.org
SolidMatrix Technologies, Inc. / research <at> solidmatrix.com
"And this too shall come to pass"
-------


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg



<Prev in Thread] Current Thread [Next in Thread>