[Top] [All Lists]

Re: [ietf-smtp] EHLO domain validation requirement in RFC 5321

2020-09-27 19:52:50
Hash: SHA1

In message 
Keith Moore <moore(_at_)network-heretics(_dot_)com> writes

But this is a silly discussion.  

It seems backwards from where it started ... which effectively came down
to what would be good advice to proffer to a client to ensure that their
email deliverability improved.  The good advice "why don't you make sure
that forward and reverse DNS match up and say EHLO in a consistent
manner" is difficult (as has been pointed out) for some clients to
follow ... and that's why IMO it ends up as a SHOULD rather than a MUST.

I certainly acknowledge that spam 
filtering is hard, and that the state of the art is to use unreliable 

I would disagree ... state of the art is ML clustering algorithms using
a wide range of signals, where even the people who developed the systems
find it fairly hard to reliably predict beforehand which of those
signals are going to be of real significance.

Since the only practical way of tuning these algorithms is end-user
free-back that means that special precautions are needed to (a) ensure
that the bad guys do not detune them by "gaming" and (b) that even if
large numbers of people give the feedback that their cellphone bill is
spam this does not override the fact that treating everyone's cellphone
bill as spam would not be a Good Thing

"Heuristics" ... that is, human generated rules which give consensus
"scores" to the spammy-ness of email are far less effective (and we have
25 or so years of experience to demonstrate that).

Now of course, tuning the ML clustering algorithms is especially
difficult if you don't see enough email (ie not billions a day) because
almost everything is too unique to cluster.  But that doesn't make
heuristics "state of the art" -- it just indicates that there's a
failure to by the community as a whole (rather than a handful of very
large providers) to develop ways to share pre-tuned clustering models. 

- -- 
richard                                                   Richard Clayton

Those who would give up essential Liberty, to purchase a little temporary 
Safety, deserve neither Liberty nor Safety. Benjamin Franklin 11 Nov 1755

Version: PGPsdk version 1.7.1


ietf-smtp mailing list

<Prev in Thread] Current Thread [Next in Thread>