On Mon, 23 Feb 1998, Dana Bourgeois wrote:
> I must disagree here. SPAM is both a content issue and a forgery issue.
> If SPAM headers are properly formed according to the RFCs then it is
> strictly a content issue. If there is any incorrect information in the
> envelope or headers then there is the possibility of fraud, theft, etc.
That's true of *any* SMTP based mail, as the protocol does not address any
of the above points, no matter if it is valid content from a system with
different baselines, spam, an attempt at subversion, or misconfigured
legitimate mail. Spam itself plays no role in the goodness or badness of
the transport for security reasons. UCE is no more a security threat than
misconfigured Netscape mail, and the fact that it is UCE has no bearing on
that. The fact that I can filter out spam with any effectiveness at all
shows that it is definitely a content issue.
Yes, you can do bad things with e-mail, yes, those can be security issues.
No, spam in and of itself isn't any different than any other sort of
content from a security perspective.
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
proberts @
clark .
net which may have no basis whatsoever in fact."
PSB#9280
References:
|
|
