[ On Thu, October 30, 1997 at 10:02:49 (-0500), Jay R. Ashworth wrote: ]
Subject: Re: Spam Control Considered Harmful
There's no excuse for this. The user should (and must in the proposed plan) use the mail relay operated by the ISP they dial into for *all* outgoing mail.
Yes, there is. It's a question of span of administrative control.
If I decided to allow my users to make use of their telecommunting connectivity for personal use, I _do not want them_ using my mail server for that, so as to avoid any potential liability for my company under any theory. Sure, use the great high bandwidth connection, but get your mail and news services from a commercial provider.
I think you're beginning to get the full picture! ;-) Yes, by forcing your users to use your outgoing mail relay server you are assuming liability for their actions and thus also assuming responsibility for controlling and limiting their actions. If you cannot provide externally visible audit trails that clearly show who is accountable for originating the mail then you must assume any liability for allowing that anonymous person to send such mail. My off the cuff rule to date for determining where I point the finger is to check and see who the IP address for the originating network is assigned to (i.e. in whois). -- Greg A. Woods +1 416 443-1734 VE3TCP <gwoods@acm.org> <robohack!woods> Planix, Inc. <woods@planix.com>; Secrets of the Weird <woods@weird.com>