CSC 379:Week 1, Group 6: Difference between revisions

From Expertiza_Wiki
Jump to navigation Jump to search
No edit summary
Line 3: Line 3:




* Blocking domains
* '''Blocking domains'''
** Pros - highly effective at blocking spam coming from specific domains.
** Domain Blocking allows specific users to be blocked from sending emails, based on their origin domain. To block a specific domain you would add that domain (or a rule applied to multiple domains) to a block list or 'black list'. Domains you wish to allow could also be added to a 'white list'.
** Pros - highly effective at blocking spam coming from specific domains. A user could very easily block a large amount of spam by adding one 'rule'; for instance, you could easily block all foreign domains [http://blogs.earthlink.net/webmail/2006/12/effective_domain_blocking.php read more about how to easily block all foreign domains]
** Cons - may inadvertently block legitimate addresses. Reuse of a domain by a legitmate company that was once used by a spammer would cause that company to be blocked/blacklisted. [http://www.the-cma.org/PublicUploads/224861ForgeMarketingOct03.pdf read more]
** Cons - may inadvertently block legitimate addresses. Reuse of a domain by a legitmate company that was once used by a spammer would cause that company to be blocked/blacklisted. [http://www.the-cma.org/PublicUploads/224861ForgeMarketingOct03.pdf read more]
* Require users to request permission to send you an e-mail.
* '''Require users to request permission to send you an e-mail.'''
** Much like domain blocking users can setup black and white lists but rather then adding entire domains to the list they would add specific email addresses to the list.
** Pros - Guaranteed that any email you recieve is legitamte since you must approve all senders.
** Pros - Guaranteed that any email you recieve is legitamte since you must approve all senders.
** Cons - again, this may inadvertently block some legitimate addresses. For instance, someone may request permission to send you an email from an address you do not recognize or someone may not even know they need to request permission to email you.
** Cons - again, this may inadvertently block some legitimate addresses. For instance, someone may request permission to send you an email from an address you do not recognize or someone may not even know they need to request permission to email you.
* Charge for e-mails sent.
* '''Charge for e-mails sent.'''
** Pros - Eliminates the purpose of spam since it will no longer be free to send mail and advertise.
** Pros - Eliminates the purpose of spam since it will no longer be free to send mail and advertise.
** Cons - Creates a problem for lower income users, especially those who may need to send out many emails and can not afford to. Non-profit organizations would also not be able to afford to send out emails.
** Cons - Creates a problem for lower income users, especially those who may need to send out many emails and can not afford to. Non-profit organizations would also not be able to afford to send out emails.
* Opt in for commercial e-mail.
* '''Opt in for commercial e-mail.'''
**  Pros - Eliminate unsolicited commercial emails as long as its well enforced. Gives company a better target demographic. [http://www.americanchronicle.com/articles/viewArticle.asp?articleID=14247 read more about advantages of opt-in mailing lists.]
**  Pros - Eliminate unsolicited commercial emails as long as its well enforced. Gives company a better target demographic. [http://www.americanchronicle.com/articles/viewArticle.asp?articleID=14247 read more about advantages of opt-in mailing lists.]
** Cons - Not practical since it would be very difficult to actually enforce. Reduce potential advertising cababilities of companies.
** Cons - Not practical since it would be very difficult to actually enforce. Reduce potential advertising cababilities of companies.
* Domain authentication.
* '''Domain authentication.'''
** Pros - would help prevent fraudulent emails, phishing, and falsifying identity.
** Pros - would help prevent fraudulent emails, phishing, and falsifying identity.
** Cons - If the authentication key gets compromised it may give a false sense of security to those who think the domain is authentic.
** Cons - If the authentication key gets compromised it may give a false sense of security to those who think the domain is authentic.
* Bounties
* '''Bounties'''
** Pros - Money collected from spammers who have been caught can be used to catch other spammers. Give you a large policing force that could detect spammers better then a spam filter.
** Pros - Money collected from spammers who have been caught can be used to catch other spammers. Give you a large policing force that could detect spammers better then a spam filter.
** Cons - People may become money hungry and turn in non-spammers simple for a reward.
** Cons - People may become money hungry and turn in non-spammers simple for a reward.
* The "Goodmail" approach. [http://blogs.zdnet.com/BTL/?p=2737 Read more about the Goodmail Approach]
* '''The "Goodmail" approach.''' [http://blogs.zdnet.com/BTL/?p=2737 Read more about the Goodmail Approach]
**Pros - Prevent smaller spamming companies unwilling to pay fees.
**Pros - Prevent smaller spamming companies unwilling to pay fees.
**Cons - Non-profit organization would have difficulties paying fees. Larger spamming companies could easily pay the fees and get easy access to email people. [http://www.techworld.com/security/features/index.cfm?featureid=2292 read more about issues with the Goodmail Approach]
**Cons - Non-profit organization would have difficulties paying fees. Larger spamming companies could easily pay the fees and get easy access to email people. [http://www.techworld.com/security/features/index.cfm?featureid=2292 read more about issues with the Goodmail Approach]

Revision as of 13:00, 6 July 2007

The Ethics of Defenses against Spam

  • Blocking domains
    • Domain Blocking allows specific users to be blocked from sending emails, based on their origin domain. To block a specific domain you would add that domain (or a rule applied to multiple domains) to a block list or 'black list'. Domains you wish to allow could also be added to a 'white list'.
    • Pros - highly effective at blocking spam coming from specific domains. A user could very easily block a large amount of spam by adding one 'rule'; for instance, you could easily block all foreign domains read more about how to easily block all foreign domains
    • Cons - may inadvertently block legitimate addresses. Reuse of a domain by a legitmate company that was once used by a spammer would cause that company to be blocked/blacklisted. read more
  • Require users to request permission to send you an e-mail.
    • Much like domain blocking users can setup black and white lists but rather then adding entire domains to the list they would add specific email addresses to the list.
    • Pros - Guaranteed that any email you recieve is legitamte since you must approve all senders.
    • Cons - again, this may inadvertently block some legitimate addresses. For instance, someone may request permission to send you an email from an address you do not recognize or someone may not even know they need to request permission to email you.
  • Charge for e-mails sent.
    • Pros - Eliminates the purpose of spam since it will no longer be free to send mail and advertise.
    • Cons - Creates a problem for lower income users, especially those who may need to send out many emails and can not afford to. Non-profit organizations would also not be able to afford to send out emails.
  • Opt in for commercial e-mail.
    • Pros - Eliminate unsolicited commercial emails as long as its well enforced. Gives company a better target demographic. read more about advantages of opt-in mailing lists.
    • Cons - Not practical since it would be very difficult to actually enforce. Reduce potential advertising cababilities of companies.
  • Domain authentication.
    • Pros - would help prevent fraudulent emails, phishing, and falsifying identity.
    • Cons - If the authentication key gets compromised it may give a false sense of security to those who think the domain is authentic.
  • Bounties
    • Pros - Money collected from spammers who have been caught can be used to catch other spammers. Give you a large policing force that could detect spammers better then a spam filter.
    • Cons - People may become money hungry and turn in non-spammers simple for a reward.
  • The "Goodmail" approach. Read more about the Goodmail Approach
    • Pros - Prevent smaller spamming companies unwilling to pay fees.
    • Cons - Non-profit organization would have difficulties paying fees. Larger spamming companies could easily pay the fees and get easy access to email people. read more about issues with the Goodmail Approach