Financial penalties for getting pwned are one of the very few things
that might actually get users to stop being idiots about such
things.
I agree in principle, though believe such a system is just too
unwieldy to attempt in a global email world.
If your focus is restricted to email, perhaps.
What we need first is some sort of provable sender id.
We mostly have that at the host level, and that's enough for what I was
sketching to work (to the extent that it will work at all, that is).
"Your machine sent it; you're responsible" - much as (as you point out)
it already is for telephones; bad as that analogy is in many respects,
I think it's a good one in that one respect.
You can't fine/charge someone for being ill,
Sure you can. Ever hear of employers allowing only limited numbers of
sick days? :-)
/~\ The ASCII Mouse
\ / Ribbon Campaign
X Against HTML mouse(_at_)rodents-montreal(_dot_)org
/ \ Email! 7D C8 61 52 5D E7 2D 39 4E F1 31 3E E8 B3 27 4B
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
https://www.irtf.org/mailman/listinfo/asrg