Great Circle Associates List-Managers
(December 2000)
 

Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]

Subject: Re: Is mailback validation still safe?
From: SRE <eckert @ climber . org>
Date: Sun, 10 Dec 2000 12:35:56 -0800
To: Chuq Von Rospach <chuqui @ plaidworks . com>
Cc: list-managers @ GreatCircle . COM
In-reply-to: <p0433010db6579022bfbf@[209.239.169.197]>

At 12:22 AM 12/9/00, Chuq Von Rospach wrote:
>But if you think about it, once that 
>validation handshake is complete, there's never ANY further validation

The simple fix is twofold: First, new subscriptions should be moderated
by default until the list owner clears the flag and lets them post freely.

MORE IMPORTANTLY, if you have a continuing problem with people forging
 From addresses to bypass "post by nonsubscriber" traps, you configure
your MLM to require confirmation FROM THE POSTER before the post goes out.
Now the worst that happens is the harvested address gets a few confirmation
requests before the spammer gives up.

I've done both of these things, after being targeted by a single person
with bad intent and persistance, and they work well... if you have the
time to moderate new subscribers and explain to people that they need
to confirm each post. A hassle, but workable.




Follow-Ups:
References:
Indexed By Date Previous: Re: Is mailback validation still safe?
From: Mike Nolan <nolan@celery.tssi.com>
Next: Re: Is mailback validation still safe?
From: "David W. Tamkin" <dattier@ripco.com>
Indexed By Thread Previous: Re: Is mailback validation still safe?
From: Chuq Von Rospach <chuqui@plaidworks.com>
Next: Re: Is mailback validation still safe?
From: "Bernie Cosell" <bernie@fantasyfarm.com>

Google
 
Search Internet Search www.greatcircle.com