ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Asrg] article: port 25 blocking

2005-04-12 02:11:41
from [George Ou] [Permanent Link] 
-----Original Message-----
From: asrg-bounces(_at_)ietf(_dot_)org 
[mailto:asrg-bounces(_at_)ietf(_dot_)org] On Behalf Of
James Lick
Sent: Tuesday, April 12, 2005 12:42 AM
To: asrg(_at_)ietf(_dot_)org
Subject: Re: [Asrg] article: port 25 blocking


Similiarly, your suggestion to universally implement SPF would require that

every domain and mail server on the planet to implement your solution,
versus port 25 blocking which would only require a few power users to make
some changes.  Which is more likely to happen?


I agree with Larry.  It's well past time to implement this on all consumer

level ISPs.


--
James Lick -- ??? -- jlick(_at_)jameslick(_dot_)com -- http://jameslick.com/



James,

I have to respectfully disagree with you.  I've read your take on spam
before and I agree with most of it.  This is one of the few areas where I
disagree with you.

Blocking port 25 or demanding SPF is conceptually the same by dealing with
the problem from the opposite ends of the spectrum.  The question is do we
use an ACL that forbids all non-SMTP servers or do we use an ACL that only
permits all legitimate SMTP servers?  It would seem to me that non-SMTP
nodes on the net vastly out weigh legitimate SMTP servers and therefore
would be a much smaller ACL to deal with.  Permitting only legitimate SMTP
servers via SenderID lookup follows the "least privileges" rule and is a
much more effective ACL.  Anyone who blocks all non-SPF compliant messages
blocks all illegitimate SMTP servers using a database (public DNS records)
that they don't need to personally manage.  Creating or managing a massive
database of non-SMTP servers is totally impractical.

What makes you think that it takes "ALL domains" to implement SPF?  Just the
top 50 domains in the world alone implementing it would pretty much force
the entire world to comply unless they don't care for their messages to be
delivered to the 50 largest domains.  Do you honestly believe you can get
all ISPs and hotspots to manage a much larger non-SMTP server ACL?


Here is a more detailed write up on this.
http://blogs.zdnet.com/Ou/index.php?p=51
Let me know what you think.


George Ou


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] article: port 25 blocking, Danny Angus
Next by Date:  RE: [Asrg] article: port 25 blocking, Larry Seltzer
Previous by Thread:  Re: [Asrg] article: port 25 blocking, James Lick
Next by Thread:  Re: [Asrg] article: port 25 blocking, James Lick
Indexes:  [Date] [Thread] [Top] [All Lists]