ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] Iteration #3.

2010-02-07 06:17:54
from [Daniel Feenberg] [Permanent Link] 


On Sat, 6 Feb 2010, Derek Diget wrote:



On Feb 6, 2010 at 12:34 -0500, Chris Lewis wrote:
=>Derek Diget wrote:
=>
=>> =>This also allows <domain> to use DNS to map them to somewhere else
=>> entirely.
=>>
=>> -1 for having a "standard" address.  Let sites decided.  Some might want
=>> them to go to abuse@, spam@, devnull@, 
spam-training(_at_)anti-spam(_dot_)vendor(_dot_)
=>
=>Defeats the purpose of self-configuration, UNLESS the mailstore provider can
=>automatically provide it.  See my posting under "We don't need no stinking..."
=>for a method to do it with TXT records.

One of the problems I have with publishing "private" (spammers and DNS
walkers don't need to know this stuff) configuration information is that
people that don't need to know it can get it.  Using SRV records to
auto-config MUA retrieval and MSA settings or XMPP clients are different
in that knowing those settings can't be abused unless you have a valid
authentication credential.  Whereas, publishing an e-mail address is
just asking for it to abused.  (Heck, how many spammers are not smart
enough to list wash abuse@, postmaster@ and the other role accounts
from their lists.  Do you think they won't start sending non-ARF
messages (regular) spam to the TiS reporting address.  (Yes, some would
say that is good as it will just help block/filter them, but I am
thinking more about the increase in volume to the TiS reporting
address.)

I am also thinking of spammers walking DNS and getting the reporting
addresses and then sending ham to it to try to mess up the sites that
might be automatically processing their TiS messages.  If the reporting
address is in a header then they (spammer) would have a harder time
getting the address.  (Yes, with all of the compromised PCs, free
accounts, etc they can still probably get it anyways.)
For this reason the MTA operator would probably want to discard messages to the arf reporting address unless they were submitted via the MSA submission port, or came from inside the MTA operators own network. These are the same criteria that determine if a message is acceptable for relay, and so should easily be programmed in the MTA software. 

Daniel Feenberg
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
http://www.irtf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] Iteration #3., Alessandro Vesely
Next by Date:  Re: [Asrg] Iteration #3., John Levine
Previous by Thread:  Re: [Asrg] Iteration #3., Derek Diget
Next by Thread:  Re: [Asrg] Iteration #3., John Levine
Indexes:  [Date] [Thread] [Top] [All Lists]