On Wed, 1 Oct 1997, Alex Bligh wrote:
It doesn't solve it, but it helps it. One of the main problems is traceability. IE you don't know where the spam has come from. If noone third-party relayed, then when my users get spam, I'd know the IP address of the machine it came from originally. This would be good.
I agree : knowing real source address is the base for success. It's nothing new...
Another necessary fix is for ISPs to keep record of which user had which IP address at any given time, and to keep contact details for all their users (this is desirable for secuirity and legal reasons too).
I've got everything in my logs. all sendmail jobs and from which user it cames from.
If you build these two things together with a term in peering agreements that classifies spam abuse in a similar manner to the way most agreements currently classify security problems (i.e. mutual terms for traceability and action), and one hopes that similar terms are already in place in transit agreements, then one should be better able to get spammers removed.
and what to do ? tell customers "sorry u generate spam, we don't want u on our server" ? OK, but a couple hours later he will get new accounts from other ISP. Cooperation of all ISP is needed. Index od spammers. Absolute rule : before setting up new accounts, check customer in spammers index. And for more : official documents about spam. It should be announced and published over network so EVERY user can read it and imagine what will happen with him if..... MJ ___________________________________________________________________________ Miroslaw.Jaworski@ikp.com.pl (Psyborg) MJ102-RIPE ATM S.A. - IKP division WAN/UNIX adm