Spam Control Considered Harmful
Greg A. Woods
woods at most.weird.com
Fri Oct 31 01:51:02 UTC 1997
[ On Thu, October 30, 1997 at 10:02:49 (-0500), Jay R. Ashworth wrote: ]
> Subject: Re: Spam Control Considered Harmful
> > There's no excuse for this. The user should (and must in the proposed
> > plan) use the mail relay operated by the ISP they dial into for *all*
> > outgoing mail.
> Yes, there is. It's a question of span of administrative control.
> If I decided to allow my users to make use of their telecommunting
> connectivity for personal use, I _do not want them_ using my mail
> server for that, so as to avoid any potential liability for my company
> under any theory. Sure, use the great high bandwidth connection, but
> get your mail and news services from a commercial provider.
I think you're beginning to get the full picture! ;-)
Yes, by forcing your users to use your outgoing mail relay server you
are assuming liability for their actions and thus also assuming
responsibility for controlling and limiting their actions.
If you cannot provide externally visible audit trails that clearly show
who is accountable for originating the mail then you must assume any
liability for allowing that anonymous person to send such mail.
My off the cuff rule to date for determining where I point the finger is
to check and see who the IP address for the originating network is
assigned to (i.e. in whois).
Greg A. Woods
+1 416 443-1734 VE3TCP <gwoods at acm.org> <robohack!woods>
Planix, Inc. <woods at planix.com>; Secrets of the Weird <woods at weird.com>
More information about the NANOG