I'm forwarding this from another list I recently subscribed to regarding a spam conference in NY recently. I was up there at the time, but didn't read about it until the day of the conference (and I was flying back to FL at lunch time that day). I wish I had found out sooner... Hopefully I'll be up there next year for the second annual conference.
Anyway... the email is broken English from a guy who speaks Portuguese. If someone can read Portuguese, I'll post what he sent in Portuguese. I'm excluding it now because the English he wrote is much shorter than his Portugese, and I've had no success translating his Portugese anywhere. His basic idea was to have a registry system, similar to domain name registrars, that people have to register their ms/mail servers names/ip's. You could possibly attach a record to the domain, detailing the mx record, and all associated information, like IP, A records, PTR's, etc. If people were required to register mail servers, and attach them to a domain, which has real contact information, and everyone agreed to openly communicate to mail servers that are registered, and ignore/filter the rest, it would be easier to identify sources of spam at the beginning of a session, without hitting multiple databases. He suggested having tables (zones): One with the registered mail servers, and one with un-registered, questionable servers. I think this could be done with dns, maybe be adding information into a zone that verifies that the mx record contacting you matches the server(s) in the registrars db. I think his biggest suggestion was an international standard for registering mail servers, and attaching them to domain names. Maybe instead of just seeing dns addresses in the whois database, you could see the mx records, etc. This would then either have to be integrated into dns, or could be run as a separate dns system altogether. I'd like to see it run by an international organization. Maybe I interpreted this guy wrong, or his English doesn't do his idea justice. It sounded interesting to say the least. I was wondering if anyone had thoughts on this idea? Is it too far-fetched? I've though of a few variations of this already. Keep fighting the good fight! -- Jackson _____________________________________________________ >Subject: I had idea. Please, read my message. >To: [EMAIL PROTECTED] > >I don't speak English very well so I will write this message in >Portuguese, because this is my language. > >Sorry for this, but it's very important that anybody translate my >message. Please. > >Well. I wrote some words in English, but my idea is better explain with >more details in Portuguese. > >I had thinking. >Why the mail servers do not work how the DNS servers ? >The mail servers could have one table of valid mail servers. >For have your mail server in this table, the administrators or any >people, would fill a identification form in web controllers >Institutions. >Could be the Institutions that do the controller of domains. >I think this will reduce or finish the SPAMers.
