ietf-mxcomp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: A 30% solution ; a 40% solution

2004-05-13 12:20:02
from [Matthew Elvey] [Permanent Link] 

On 5/13/2004 9:44 AM, Pete Resnick sent forth electrons to convey:



On 5/12/04 at 7:36 PM -0700, Matthew Elvey wrote:
What will this proposal break?/require adapt? forwarders? mailing lists? greeting card sites?
It will break or require changes for forwarders and possibly greeting card sites. (I've got in mind changes that can be made for them that will work, but there is no question that they will either have to make changes or they will break.) 

Do those changes require rewriting the MAIL FROM, ala SRS?
Mailing lists (if they rewrite the MAIL FROM) should be fine. We've talked some about ways to address these problems. Let's start another thread if we want to go into it in detail.
Does it keep spammers from complying? If so, how? If not, what *does* it accomplish?
Let me answer this backwards: The main thing that doing the check with the MAIL FROM domain is to deter joe-jobs. Secondarily, it can be used (like the HELO/EHLO domain) for the hook into accreditation. So, insofar as it prevents joe-jobs, spammers can't comply. Insofar as the accreditation part goes, spammers can comply, but hopefully will eventually become un-accredited.
Ok, so you claim that spammers who can't get accredited by an approved accreditor or whitelisted by an approved whitelyst or stay out of approved blacklists will be unable to send to recipients with that set of approvals? Good.
What does it impact, how many systems does it impact? MUA? MSA? MTA? MDA? DNS?
I believe the main impact is in MDA (which has to perform the function) and DNS (which has to provide the data). I don't think this impacts MUA, MSA, or MTA. But I'm not sure exactly what you're asking. (For instance, it might impact MUA if we want to get an "unverified" message into the UI, but I'm not sure if you're thinking of things like that.)
It impacts the MUA if, e.g. the mail server(s) used by the MUA probably has to be changed (by a (probably clueless, script-reading) support person dealing with a (more clueless) end user who is frustrated and doesn't get why their mail isn't working anymore.). If this was necessary for an effective proposal, I'd be all for it, but I don't think it is. 




At first blush, it seems that the 30% solution  breaks a lot



Are forwarders and greeting card sites "a lot"?
Not really. If this was necessary for an effective proposal, I'd be all for it, but I don't think it is. It's borderline. It's all the MUAs that may need to be touched that I'm more concerned by. 




and doesn't suggest any workarounds.
*It* doesn't. But then again, I was only thinking of proposing semantics for the solution, not laying out all of the impacts. I'll try and write up a separate "workaround" message. 

pr
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: A 40% solution?, Andrew Newton
Next by Date:  Re: What to check? (was Re: Caller ID and ease of adoption, Matthew Elvey
Previous by Thread:  Re: A 30% solution ; a 40% solution, Pete Resnick
Next by Thread:  RE: A 30% solution, Hallam-Baker, Phillip
Indexes:  [Date] [Thread] [Top] [All Lists]