Alan DeKok wrote:
Yakov Shafranovich <research(_at_)solidmatrix(_dot_)com> wrote:
DCC (http://www.rhyolite.com/anti-spam/dcc/) tries to detect bulk emails
as do some other projects. This is not something that requires addition
to SMTP and is an separate protocol.
Let's be aware, though, that many content filtering schemes and
black-lists have been caught adding entries to the list which do NOT
meet the publicly stated criteria.
That's a bit of a non-sequitor. DCC and it's detection system is 100%
automated. It doesn't work by "adding entries" to a list. Or, at
least, you can't subvert it by "adding entries", because you'd have to
predict in advance what the hash signature was.
To put it another way, if you don't know what the criteria are, the
system is oben to abuse by insiders.
DCC source is freely available, so the algorithms and procedures are
well known (to those who bother to look).
Doesn't stop the DCC owner from fudging the query system, but that's
possible with _any_ anti-spam solution that relies on anyone else for
decisions. Subversion is a risk with _all_ anti-spam solutions except
those you write yourself. And perhaps not even those ;-)
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg