ietf-asrg
[Top] [All Lists]

Re: [Asrg] Re: E-postage

2004-04-21 04:45:29
In brief how about:

   A) Each ISP creates stamps according to some accepted method,
   probably some cryptographic approach. Think SSL certificates or
   some similar precedent.

How do you stop spammers from acting as ISPs and issuing stamps to
themselves for free, without also cutting out individual and other very
small sites (like two-person SOHOs) running their own mailservers?

All this looks like to me is whitelisting based on signatures (and all
that really has over whitelisting based on outgoing mailhost is that it
works through multiple hops), and does nothing at all to help people
decide which signatures to whitelist (which is the hard part of such
whitelisting, because it's the part that has major scaling issues).  If
you have only a few stamp issuers, it becomes a slightly odd flavour of
sender certification, and rather weak sender certification at that.

/~\ The ASCII                           der Mouse
\ / Ribbon Campaign
 X  Against HTML               
mouse(_at_)rodents(_dot_)montreal(_dot_)qc(_dot_)ca
/ \ Email!           7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg