how-to block ads
|
|
Uniqs:
357 |
Share Topic
 |
 |
|
|
 keith2468Premium,MVM
join:2001-02-03
Winnipeg, MB | Legislation needed 1. It isn't dumb users that are responsible for "reduced functionality", it is the hackers and spammers who exploit them.
You don't blame young women for the actions of rapists -- this is the same kind of thing. Don't blame fellow victims.
2. There should be federal legislation in each country allowed to connect to the Internet that all ISPs provide egress filtering for their retail customers, to ensure that source IPs are not spoofed.
That is not to say that egress filtering should be mandatory on all networks, just that it should be mandatory on the public Internet that various national governments paid to found.
Voluntary action hasn't worked, because such filtering costs ISPs money, due to overhead, and the primary benefit goes to customers on other ISPs.
Preventing spoofed source IP addresses for all traffic would go a long way to preventing not just spam, but also DoS and DDoS attacks.
3. It should be mandatory that all email server software on the public Internet all confirm source IP addresses, and all maintain the standard audit trail of headers indicating where messages are received from.
4. My personal feeling is that ideally filtering of things like port 25, spam, and email viruses should easily user configurable, and default to filtering for new accounts.
For port 25 filtering, I think the problem is technical:
a) It increases overhead to add a bunch of individual IP addresses to port blocking rules in the router.
b) There is a bit of manual effort involved in updating the rules for individual customers.
5. As for sending email using the email server at work, so that replies to your emails go back there, that is what the REPLY-TO (in OE accounts, the "reply address") is for.
SENT-BY (FROM or, in OE accounts, the "email address") is formally supposed to be the email address on the ISP the computer is actually on.
ISPs should not be limiting the REPLY-TO (unless maybe the customer has been a problem).
However, to follow the original intent of the standards, they all should have been limiting the SENT-BY.
-----
We've given voluntary standards a good long try. They haven't worked.
The Internet was originally designed to function for a few thousand highly responsible academic, engineering and scientfic users, using small basic communications software packages.
It has been a long time since that represented the Internet community.
And it has been a long time since the software used passed out of the small and basic catagory.
Now we have hackers, crackers, spammers; and we have enormous software packages (even games use comparitively complex software communications).
And so much of the Internet is motivated by free enterprise doing it cheap and quick and keeping our individual costs down.
Clearly we now need enforced common minimum standards for public health and safety on the public Internet. | | |
|
| said by keith2468:
Clearly we now need enforced common minimum standards for public health and safety on the public Internet.
As far as I know, spam is only bad for your health if you eat it. | |
| reply to keith2468
quote:
There should be federal legislation in each country allowed to connect to the Internet that all ISPs provide egress filtering for their retail customers, to ensure that source IPs are not spoofed.
Every time something isn't running perfectly, it's time to turn to the feds. Remember; if they are with the federal government they must be smarter than the rest of us. They had the right idea about the 18th amendment here in the states (that worked real well, it validated the Mafia). The federal drug war is also a good idea. We are spending billions of dollars to kill a few poor farmers... and for what? So that prices are driven up for the Mafia (again), and drugs continue to flow into the country. Johnson's Great Society, State schools, Federally mandated retirement called social security. My father knew he was going to die, but he still was required to pay into social security because the government thought he was too incompetent to take care of his family.
quote:
That is not to say that egress filtering should be mandatory on all networks, just that it should be mandatory on the public Internet that various national governments paid to found.
Fine, since the majority of the Internet is privately funded.
quote:
Preventing spoofed source IP addresses for all traffic would go a long way to preventing not just spam, but also DoS and DDoS attacks.
I guess I can agree with you here, but I never thought of it much since my ISP has been doing anti-spoofing since they were founded, but I don't think we need the feds. Maybe ISP's could be blacklisted for not filtering spoofed addresses.
quote:
We've given voluntary standards a good long try. They haven't worked.
...so it's time for federal legislation. Why? Because whenever I have a problem it is up to the federal government to fix it for me. Fast food joints cause an obesity problem, lets legislate. Swimming pools contribute to drownings, lets legislate. People don't know how to plan for retirement, lets legislate. People don't give enough to charity, lets legislate. People drink too much, lets legislate.... (oops! tried that already). Lets legislate. Lets legislate. Lets legislate. Lets legislate.
quote:
The Internet was originally designed to function for a few thousand highly responsible academic, engineering and scientfic users, using small basic communications software packages.
Actually, DARPA originally envisioned the Internet as a self healing computer communications network that would survive a nuclear attack. If it had not moved into the private sector, you would probably paying a lot more (albeit in taxes) for much less bandwidth.
quote:
And so much of the Internet is motivated by free enterprise doing it cheap and quick and keeping our individual costs down.
Yes. Why? Because you (joe consumer) continue to scream that $50.00 for 3 megabits is a rip off. Joe consumer wants cheap internet, not well thought out Internet. Beta was better than VHS. Mac was better that MS. People demand cheap, and then complain when they get it.
quote:
Clearly we now need enforced common minimum standards for public health and safety on the public Internet.
If you want to fix the problem, stop buying products problems from Redmond. Outside of SPAM, that would fix most of what ails the net! | |
|
