From: MX%"pjnesser@rocket.com" 15-OCT-1995 23:24:02.30 Subj: Re: Motion for a new POST NSF AUP
A better use for your effort is to develop some hacks into majordomo or another mailing list manager that can trivially make a list only accept PGP signed (or whatever your favorite authentication system is) messages that it can confirm with a public keyserver. At the very least all of the major mailing lists that get regularly nailed by spams can transition and we can get some authentication of the culprit.
---> Phil
I had a situation several months ago where a member of the list started spamming one of my lists because he was having problems unsubscribing. After contacting his ISP, I initially had problems with them because they flatly denied that the mail was originating from their host. I introduced a minor modification into the SMTP server which logged the IP address as well as the host name. This provided the evidence that the mail was indeed originating from their host, and they took the appropriate action. -HWM
The motion on the table for a Post NSF AUP appears to be dying. The support for my motion is weak in the early stages. I like the idea of PGP authentication in list servers, except for the fact that adding PGP authentication to list servers will greatly slow down the processing time of large lists. The large public key rings required for large lists do not scale well. Second, the use of PGP authentication would restrict list participation to those with the ability to use PGP (this might be a *good* way to promote PGP use, on the other hand) Unless strong support for the AUP motion is observed today, I plan to table the motion for a Post NSF AUP for the Internet. The general concensus appears to be that an AUP would not be useful. I do not agree, but am more than happy to withdraw my motion, given weak support the AUP idea has received. The ideas for PGP authentication merit further discussion, especially the points above on reduced processing time with large public key rings. Thanks, Tim -- +--------------------------------------------------------------------------+ | Tim Bass | #include<campfire.h> | | Principal Network Systems Engineer | for(beer=100;beer>1;beer++){ | | The Silk Road Group, Ltd. | take_one_down(); | | | pass_it_around(); | | http://www.silkroad.com/ | } | | | back_to_work(); /*never reached */ | +--------------------------------------------------------------------------+
I personally think slightly smarter exploders might go a long way. For example: 1) a list server that recognizes the "subscribe me" messages and informs the subscriber without bothering the whole list, 2) an exploder that "suspends" messages with more than, say 6 lists and newsgroups, and notifies the sender. If the sender is not a real address, it automatically is purged. : you get the idea. Bill ------------------------------------------------------------------------- William B. Norton Merit Network Inc. e-mail: wbn@merit.edu phone: (313) 936-2656 WWW: http://home.merit.edu/~wbn On Mon, 16 Oct 1995, Tim Bass wrote:
The motion on the table for a Post NSF AUP appears to be dying. The support for my motion is weak in the early stages. I like the idea of PGP authentication in list servers, except for the fact that adding PGP authentication to list servers will greatly slow down the processing time of large lists.
The large public key rings required for large lists do not scale well. Second, the use of PGP authentication would restrict list participation to those with the ability to use PGP (this might be a *good* way to promote PGP use, on the other hand)
Unless strong support for the AUP motion is observed today, I plan to table the motion for a Post NSF AUP for the Internet. The general concensus appears to be that an AUP would not be useful. I do not agree, but am more than happy to withdraw my motion, given weak support the AUP idea has received.
The ideas for PGP authentication merit further discussion, especially the points above on reduced processing time with large public key rings.
Thanks,
Tim
-- +--------------------------------------------------------------------------+ | Tim Bass | #include<campfire.h> | | Principal Network Systems Engineer | for(beer=100;beer>1;beer++){ | | The Silk Road Group, Ltd. | take_one_down(); | | | pass_it_around(); | | http://www.silkroad.com/ | } | | | back_to_work(); /*never reached */ | +--------------------------------------------------------------------------+
On Mon, 16 Oct 1995, William B. Norton wrote:
I personally think slightly smarter exploders might go a long way. For example: 1) a list server that recognizes the "subscribe me" messages and informs the subscriber without bothering the whole list, 2) an exploder that "suspends" messages with more than, say 6 lists and newsgroups, and notifies the sender. If the sender is not a real address, it automatically is purged.
How about the sender must be on the list?
participants (4)
-
Forrest W. Christian
-
Henry W. Miller
-
Tim Bass
-
William B. Norton