SPF, CallerID, DomainKeys, DMP and RMX and others do not solve spam.
They do improve rampant abuse related to the hijacking and unauthorized
use of OTHER domains in the FROM and RETURN_PATH as well as the
unauthorized use of Zombie PC's. They also provide for better
scaleability for whitelisting domains (web o trust).
These technologies can also form a basis for reputation services to grow
off of.
These are not a silver buller, but they are a first step and a damn good
one that requires some changes to the way email works, but does not gut
the entire system.
-Carl
michel(_at_)arneill-py(_dot_)sacramento(_dot_)ca(_dot_)us wrote:
Roy Snell wrote:
The spammers could register a domain, supply an SPF record in
the DNS and send out their junk. However, registering a domain
involves some traceability and the anti-spam oriented Internet
community should be able to establish a mechanism for identifying
the offending domains and either publishing them in standard RBL
lists or arranging for the DNS references to those domains to be
removed from the ROOT nameservers.
Which would not help much. Registering a domain does not cost more than
a condom; even if the domain is used for 1 hour and then disposed of it
does not change much the business model for the spammer.
Michel.
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/spf-draft-200405.txt
Wiki: http://spfwiki.infinitepenguins.net/pmwiki.php/SenderPermittedFrom/
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
--
Carl Hutzler
Director, AntiSpam Operations
America Online Mail Operations
cdhutzler(_at_)aol(_dot_)com
703.265.5521 work
703.915.6862 cell