Click the comments link on any
story to see comments or add your own.
Subscribe to this blog
Home :: Email
11 May 2015
The IETF is once again wrestling with e-mail authentication and reputation,
this time in the context of DMARC,
particularly the long running issue of DMARC vs. mailing lists.
We have a bunch of proposals with various techniques of signing messages,
asking various parties who is authorized to send what.
Some of them seem workable, but a lot aren't.
I have found that a few basic rules that apply to any reputation scheme
make it a lot easier to evaluate
whether a proposal can work.
See more ...
Trackback link is http://jl.ly/Email/theoryrep.trackback
13 Jan 2015
I have often remarked that any fool can run a DNSBL and many fools do so.
Since approximately nobody uses the incompetently run BLs, they don't matter.
Unfortunately, using a DNSBL requires equally little expertise, which becomes
a problem when an operator wants to shut down a list.
See more ...
Trackback link is http://jl.ly/Email/deadbls.trackback
30 Dec 2014
Dave Crocker, author of many of the standards documents that e-mail depends on, and I
were at the M3AAWG meeting in Brussels in June when they asked us to
step into an impromptu video studio and talk about how e-mail has changed
over the past several decades, and whether we're winning the war on spam.
If you want to skip the muzak in the intro, we start talking at :48.
Trackback link is http://jl.ly/Email/m3aawgvideo.trackback
12 Nov 2014
release from the EFF complains that some Internet service providers are
preventing their users from sending mail over a private encrypted channel,
which is bad.
While a few ISPs do that, the story is more complex.
See more ...
Trackback link is http://jl.ly/Email/tlsfilter.trackback
31 Oct 2014
Someone was asking who has the largest set of spamtraps;
I opined that nobody knows, since the people will the biggest ones
don't discuss the details. Also, it's not a very useful metric. There are spammers who only send to
specific large ISPS, so, say, Google would know all about them, and other people wouldn't see them at all.
Also, different kinds of spamtraps get different kinds of spam. I have three general kinds:
- Addresses that were never valid, typically invented by broken scrapeware that grabbed message IDs or
mangled addresses from web sites
- Abandoned addresses and domains, that may have been valid a decade or more ago, but only get spam now
- A depressingly large number of addresses given to well-known companies who then leaked them to spammers.
I also get a fair amount to real addresses that aren't spamtraps, but that are caught by filters or by
I haven't analyzed the spam profiles in detail but they're clearly different. For example, one ESP
doesn't appear on most people's spam radar, but they send me a great deal of spam (relative to my overall modest
volume.) That appears to be because they have a lot of poor quality lists with repurposed addresses, from senders
booted from more selective ESPs, and they're constantly hitting role addresses that aren't spamtraps, but should
never be on anyone's lists.
Trackback link is http://jl.ly/Email/spamflavor.trackback
My other sites
Who is this guy?
Airline ticket info
Interesting articles for May 24th
2 days ago
A keen grasp of the obvious
90 days ago
Coalition Against Unsolicited Commercial E-mail
Network Abuse Clearinghouse