Barry Shein <bzs(_at_)world(_dot_)std(_dot_)com> wrote:
As far as I can tell spammers have now become domain registries and
just generate random-appearing, generated domains like www.fxbrezd.com
(or, more often, .info or .somecountryyoudon'twanttoknowmoreabout.)
For example, these whacko domains usually have functioning MX's.
Which means they can just as easily set up SPF or Domain Key or
similar services for those randomly generated domains.
<shrug> Blacklist the DNS IP.
Also, much spam from hijacked PCs seems to use the hijacked
PC's host, as in
wasteofoxygen(_at_)dyn-83-155-31-99(_dot_)ppp(_dot_)tiscali(_dot_)fr
That sort of thing will get around these SPF/YDK approaches, right?
Yes and no. It depends on how it's implemented.
Again, I don't know for a fact that this is completely useless
technology (like proof-of-work which is useless technology), but I
think it's only potentially useful against certain types of scams,
domain forgeries with malicious intent, in a very weak way, and as
such really has little to nothing to do with spam per se except
inasmuch as we can rationalize that ``anything which comes via email
and might harm or annoy me'' is hereby spam.=
Is there a better suggestion on the table?
This isn't to say we should do something nonsensical, simply because
it's better than nothing. But it does have some applicability, a
number of domains are implementing it, and the implementors are strong
proponents.
Alan DeKok.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg