[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] New proposal for spam blocking: Greylisting

To: Vernon Schryver <vjs@calcite.rhyolite.com>, asrg@ietf.org
Subject: Re: [Asrg] New proposal for spam blocking: Greylisting
From: Yakov Shafranovich <research@solidmatrix.com>
Date: Fri, 20 Jun 2003 14:00:50 -0400
In-reply-to: <200306201747.h5KHllwA020633@calcite.rhyolite.com>
List-archive: <https://www1.ietf.org/pipermail/asrg/>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=unsubscribe>
References: <Pine.LNX.4.44.0306201154140.28886-100000@kinison.puremagic.com>
Sender: asrg-admin@ietf.org

At 11:47 AM 6/20/2003 -0600, Vernon Schryver wrote:

> From: Evan Harris <eharris@puremagic.com>

> > As with any whitelist, there are potential privacy concerns, but
> > these concerns would be greater here because of the additional data
> > tracked in the database.  Of greatest concern would be:
>
> I disagree.  One of the nice things about this method is that it keeps
> very little profiling info.  It certainly doesn't look at the body or
> even the headers of the messages.  The only statistics kept are things that
> could easily be retrieved from the mailer logs anyway.

Please reconsider.  Contemplate the value of knowing that Bill Gates has
recieved a message from Steve Case (or vice versa) even without knowing
the contents.  Your database doesn't contain messages, but traffic analysis
can be very valuable.  That's why "pen recorders" are used by the police.
It's why the legitimacy of some traffic analysis of email and phone
calls is a continuing issue in federal criminal court cases.

There are ways to reduce the problem by storing the sensitive information not in plain text, perhaps using some one way function like many systems do for passwords. Still it is an issue.

[..]

>                                                         Most mail servers
> keep logs for longer than that anyway.

"Most" is a strong word, particularly on issues like this that are
subject to corporate "document retention" policies.  Those policies
should be called "burn after reading policies" because they require
the desctruction of archives and backups lest they be used in future
court cases.

Some time ago I was in touch with a CIO-level executive of a major university. Their retention policies call for ALL logs to be destroyed after merely 10 days due to the increased number of court orders.

Also, the SEC/NASD rules require all email to be stored for three years at US-based investment firms. These whitelists just add to the equation.

Note also that some few librarians are burning records as soon as books
are returned to avoid their use by snoopers.

Being a former librarian I definitely agree with that. I had also recently wrote a library program used for small schools and specifically put in a feature to erase records after the books are returned.

Yakov

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

References:
- Re: [Asrg] New proposal for spam blocking: Greylisting
  - From: Evan Harris
- Re: [Asrg] New proposal for spam blocking: Greylisting
  - From: Vernon Schryver

Prev by Date: Re: [Asrg] New proposal for spam blocking: Greylisting
Next by Date: Re: [Asrg] New proposal for spam blocking: Greylisting
Previous by thread: Re: [Asrg] New proposal for spam blocking: Greylisting
Next by thread: Re: [Asrg] New proposal for spam blocking: Greylisting
Index(es):
- Date
- Thread