Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
Spam Microsoft

Gates on Spam 608

pvt_medic writes "Microsoft is proposing a new system that would require people to pay to send e-mails. Postage would be in the form of allowing others to use your computer to make calculations, similar to the SETi@home project. There are other systems being suggested that would include monetary stamps and people could decide on accepting an e-mail based off the value of the stamp. (story has great picture of Bill Gates as well)" Gates' proposed system will be Microsoft patent-encumbered, unsurprisingly.
This discussion has been archived. No new comments can be posted.

Gates on Spam

Comments Filter:
  • Cha ching, reloaded. (Score:5, Interesting)

    by monstroyer ( 748389 ) * <devnull@slashdot.org> on Friday March 05, 2004 @04:24PM (#8479197) Homepage Journal
    This has been discussed before [slashdot.org], and i replied [slashdot.org] to this before. Allow others to make calculations on your computer, eh? Would those calculations happen to be the spam solution MS Research came up with [slashdot.org]? Why don't they stick to that solution?! Strap it to SpamAssassin like these guys do [si20.com] but replacing the C/R, it's gold!

    Similar to Seti@Home, sure... Except you pay Microsoft to have the calculations considered.

    Also, what is Gates holding in that picture? A joint? Is that was he's smoking thinking people will accept this idea as part of their daily email lives so that microsoft can make even more barrels of cash?
    • by JUSTONEMORELATTE ( 584508 ) on Friday March 05, 2004 @04:27PM (#8479237) Homepage
      Also, what is Gates holding in that picture? A joint?
      Shhh... It's an iPod mini [apple.com]
    • by bad enema ( 745446 ) on Friday March 05, 2004 @04:35PM (#8479330)
      Microsoft makes peace with Spam, tells everyone to learn to live with it and love it.
    • by Lawbeefaroni ( 246892 ) on Friday March 05, 2004 @04:40PM (#8479387) Homepage
      He's smoking a wad of cash. If this is implemented, exploits in Windows and outlook that allow viruses to email copies of themselves will be making him money. "Let's um, hold off on that patch for a bit longer, shall we? Muwahahahahaha!!!"

      • Beyond that... (Score:5, Insightful)

        by jaysones ( 138378 ) on Friday March 05, 2004 @05:25PM (#8479926)
        98% of people will read this as: "So the richest man in the world wants me to pay for something I have always done for free?"

        I predict his personal backing can only hurt this effort.
        • Re:Beyond that... (Score:5, Insightful)

          by dslbrian ( 318993 ) on Friday March 05, 2004 @05:57PM (#8480284)

          98% of people will read this as: "So the richest man in the world wants me to pay for something I have always done for free?"

          I agree, this thing is dead before it ever gets out the conceptual door. Narrow-minded people look at it and think its rational, after all they think "it won't cost me much" ... but the whole concept of paying anything for email just destroys legitimate things such as mailing lists (think about kernel mailing lists, hobbiest lists, etc). It will never work across international boundaries, and if ever implemented people will simply revert to using the older free techniques. People are always looking for free or less costly methods of communication (such as VOIP), attaching a charge onto something that is free now is just stupid.

          And I shudder to think of what might happen if politicians get a hold of a concept like this - "whoa, people paying money, and we are not getting our fair share of tax?!?"

          I wish people would simply drop the paying for email concept. Bulk mail (bulk advertising) is not free, yet I still get way more of it stuffed into my physical mailbox than legitimate letters. Making it cost WILL NOT make it go away.

    • by helmutjd ( 568988 ) on Friday March 05, 2004 @04:41PM (#8479392)
      If you read the article, it's actually nothing to do with anything like Seti@Home, or any distributed computing application. The computation is simply there to consume time, so that it takes longer to send a message. The mail server knows the answer in advance, and if the client provides the correct answer, the message is relayed... if not, it's denied. That way, spammers HAVE to perform the expensive computation, which significantly slows their mass-mailing efforts. Typical users wouldn't even notice the delay (it could be done in the background or whatever, after the user clicks send). The results of the computation itself are meaningless... so nobody benefits from them, including Microsoft.
      • Comment removed (Score:5, Informative)

        by account_deleted ( 4530225 ) on Friday March 05, 2004 @04:47PM (#8479487)
        Comment removed based on user account deletion
      • by milkman_matt ( 593465 ) on Friday March 05, 2004 @05:38PM (#8480099)
        The mail server knows the answer in advance, and if the client provides the correct answer, the message is relayed... if not, it's denied. That way, spammers HAVE to perform the expensive computation, which significantly slows their mass-mailing efforts.

        Ok, I quickly read over the article, so I may have missed something... However I had to respond to this particular point that you make. If this is going to be 'expensive computation which significantly slows [spammers'] mass-mailing efforts', won't it do the same for legitimate mass-mailing efforts as well? Newsletters? Daily mailings? News updates? I can think of several legitimate mass-mailing systems that I myself subscribe to, and I like getting them, if this makes it expensive for mass-mailing, then I may just lose the stuff that I signed up for as well as the stuff that I didn't (spam). I don't think that's necessarily the best approach..

        -matt
      • by macdaddy ( 38372 ) on Friday March 05, 2004 @06:32PM (#8480625) Homepage Journal
        And what the hell are we providers supposed to do? We're already having to upgrade our mail system to deal with the unbelievable increase in infected email and spam. Now we're supposed to add computations to each and every message that passes through our boxes? Who the hell is going to pay for that? We're having to "absorb" the costs of the 3 new SMP boxes that will make up our new mail system. We can't afford to do this ever couple of months. That is unless YOU as a customer want to foot the bill. How would you like to pay an extra $10/month for your Internet access? I didn't think you'd like it. And who's going to pay for the inevitable Microsoft licensing fees? We're sure as hell not going to.
  • Gates/Chong/Pope? (Score:5, Insightful)

    by garcia ( 6573 ) * on Friday March 05, 2004 @04:25PM (#8479200)
    story has great picture of Bill Gates as well

    Is he praising Mel Gibson for Passion of Christ? Is he smoking one incredibly fat doober that would make even Tommy Chong jealous? Is he trying to convince the Pope that Longhorn isn't named after a pornstar? Or is he really just THAT great?

    You decide.

    Seriously:

    Instead of paying a penny, the sender would "buy" postage by devoting maybe 10 seconds of computing time to solving a math puzzle. The exercise would merely serve as proof of the sender's good faith.

    And how the fuck would this make a difference? So what? The computer that is supposed to do the work is going to be like Johnny Badass in 2nd grade math class... They are not going to do their homework and just try to bluff it through class. If they do end up having to hand it in to be graded they are just going to get around it some other way. We will end up blocking just as many hosts as before.

    Gates' proposed system will be Microsoft patent-encumbered, unsurprisingly.

    No kidding. Gates came up w/it why would you be surprised he wouldn't want to protect his idea? No conspiracy here... Was the comment necessary?

    Just my worthless .02,
    • Arg. (Score:4, Insightful)

      by Yobgod Ababua ( 68687 ) on Friday March 05, 2004 @04:30PM (#8479273)
      Wouldn't current methods trivially circumvent this?

      1) Spamhouse uses viruses to own assorted desktops (just like they do now).
      2) Instead of just using those boxes as oen relays (like the do now) they first have them 'pay' this postage.
    • NP = New Postage? (Score:5, Interesting)

      by jfengel ( 409917 ) on Friday March 05, 2004 @04:48PM (#8479499) Homepage Journal
      The famous thing about the NP-complete problems is that they're hard to solve, but easy to check. That's presumably what's going on here. You can parcel out a rather large traveling salesman problem. But it doesn't take me 10 seconds to check it; it takes me far less than one second, even if I didn't know the answer beforehand.

      I think that's kind of neat, actually.

      So Johnny Badass can't bluff his way through; his work will be checked.

      There are many other problems with this technique (a problem that takes 10 seconds on a 4 GHZ Pentium takes several minutes on a still-useful P133; non-upgraded computers get treated like criminals; patent terms could suddenly turn onerous) but the idea that a computer could bluff it out isn't one of them.
  • I say (Score:3, Funny)

    by Soporific ( 595477 ) on Friday March 05, 2004 @04:25PM (#8479211)
    We use his personal bank accounts to pay for the postage.

    ~S
  • The proceeds of a stamp would likely find its way into his pocket, I'm sure.
  • GPL? (Score:5, Insightful)

    by Qeygh ( 463357 ) * <craiga AT eudyptes DOT com> on Friday March 05, 2004 @04:26PM (#8479219) Homepage Journal
    According to the Info World article about Microsoft's Caller ID patents, Microsoft's license "... will encourage all parties involved to allow the Caller ID technology to develop and improve without being hindered by license restrictions or royalty schemes"; and "Microsoft wants to do more than merely give (Caller ID) away, they also want to make sure nobody else can profit from it."

    Seems like a perfect application for the GPL to me. :-)
  • Dear Bill: (Score:5, Funny)

    by mrpuffypants ( 444598 ) * <.moc.liamg. .ta. .stnapyffuprm.> on Friday March 05, 2004 @04:26PM (#8479221)
    No.

    Love, Tom.
  • by Dominic_Mazzoni ( 125164 ) * on Friday March 05, 2004 @04:26PM (#8479224) Homepage
    Charging for email doesn't discourage spam. It discourages mass email. But there are many legitimate uses of mass email, like discussion lists, automated order confirmation emails, etc. - and increasing the costs of sending this type of mail will hurt open-source developers and small businesses the most.

    It's not surprising that Microsoft doesn't see the problem with this. They can afford to buy a few more mail servers to handle all of microsoft.com's outgoing mail, and they'd love it if people had to buy more servers (each running a copy of Windows, of course) just to handle all of the added computational costs of sending mail.

    In the article, "Goodmail chief executive Richard Gingras said individuals might get to send a limited number for free, while mailing lists and nonprofit organizations might get price breaks." But how do you know who's a nonprofit? Someone with a .org? Yeah, right!

    I believe that SPF [pobox.com] currently has the potential to put the biggest dent in spam, since it directly addresses forged email addresses without needing to replace SMTP. It's not a complete solution, but it's a lot more realistic than Microsoft's idea.
    • not a problem (Score:3, Insightful)

      by sbma44 ( 694130 )
      presumably postage-free mail could still be sent, to allow for backward compatibility. You'd just have to put that sender on your "allowed" list.

      I do agree that this could be potentially troublesome for companies like amazon that send out large quantities of confirmation emails. But I imagine those would still be received and stored somewhere -- the user would just have to go poke around for emails they were expecting but hadn't specifically authorized.

    • by dsci ( 658278 ) on Friday March 05, 2004 @04:48PM (#8479506) Homepage
      I own a business and we get something like a fair amount of sales leads via email.

      I wonder how many people would not bother contacting us to inquire about services if they had to pay for the priviledge?

      Also, I exchange A LOT of emails with existing clients...working off-site makes email the prefered mechanism of communication. I already pay for Internet Access (which currently includes access to routes between mail servers); I'd sure hate to have to pay for using a particular service on the Internet that is now free.

      IMO, Spam is best fought at the source. Filters like SA are great for the user end, but the demand on the wires is still there (the recipient server has to GET the spam for it to be dropped). Go after the spammers themselves. Hard. With both barrels.

      (1) Make it financially unattractive to spam. This can be either by fines or by MORE user education to NOT RESPOND to the dang things.

      (2) Go after them criminally. They put an arguably unethical demand on everyone's Internet; who knows how many hardware failures are accelerated by the traffic due to spam (disks, NIC's etc). I liken spammers to someone who blows up, or at least physically blocks, a bridge on a public highway.
  • Barter (Score:3, Interesting)

    by YanceyAI ( 192279 ) * <IAMYANCEY@yahoo.com> on Friday March 05, 2004 @04:27PM (#8479230)
    I always thought it should be a barter account--get an email, get a penny, send an email, send a penny...and your address book exempts people from having to pay, so corporations could get around paying to their business partners.

    It might cut down on those damn chain letters and stupid Internet jokes that get passed around 5000 times.

  • by burgburgburg ( 574866 ) <splisken06&email,com> on Friday March 05, 2004 @04:27PM (#8479233)
    Those agreeing to receive the Mark of Microsoft will have dominion over the earth.

    The rest will burn in the Final Conflagration between the Dark Prince's OS and the upstart Penguin!

    Muwahahahahahahahaha!!!!!

  • Eat this! (Score:2, Insightful)

    by andy55 ( 743992 ) *
    It pains me to think that MS will have IP hooks into this stuff, but one thing, however, is clear... A system isn't far away, and when it's in place, the spam and virus f*cks will be screwed--and I can't wait to see them fold (it least, to a large degree). For once, virus authors will have to make *real* exploits (rather than take advantage of Outlooks click-and-run garbage) and spam people will have to pursue legit forms of mass mailing.

    One thing's for sure, as a receiver of 500-1000 spam and virus em
  • where to begin? (Score:5, Insightful)

    by tverbeek ( 457094 ) on Friday March 05, 2004 @04:27PM (#8479239) Homepage
    Requiring people to let the sender or some third party execute instructions on the sending machine is so fraught with problems, it's hard to know where to start. Unless this software is Free, you simply can't expect everyone to install on their systems; of course MS wants them to, but hey let's be realistic here: they won't. If it's only available in binary, it would lock out anyone using an unsupported OS (or version thereof). It'd be a new security hole in the sender's machine just begging (with a big neon sign) to be exploited, and would complicate the use of firewalls, especially those using NAT. It'd have a regressive fee structure, because those with expensive, high-powered machines could afford to "spend" more CPU cycles (heck, build a beowulf cluster of discarded 486's to buy more spamming rights), while some poor sod using a Pentium/150 can hardly afford to give up any.
  • by kneecarrot ( 646291 ) on Friday March 05, 2004 @04:27PM (#8479247)
    The most explosive growth for Internet usage (including the almighty email, of course) is coming from third world nations. A penny here or there may not affect someone from the first world, but it sure would make a difference in poorer parts of the globe.
  • Stupid (Score:5, Interesting)

    by Sentosus ( 751729 ) on Friday March 05, 2004 @04:28PM (#8479249)
    Email needs to be free....

    Spam as a tool works as per the previous articles. It is a pain just like anything else, but instead of making me pay money to use email, why not spend you high budgets with an educational compaign to stop people from buying spammed products? No money made means no motivation. Problem solved. We voted with our dollars on banner ads and look how that market fell out. Rinse and apply to spam.

    Also, what happens when we are forced to move away from email because we invite Microsoft to take over and control it?

  • I think I'd rather put spam filters on backbone routers. That sounds a lot cheaper for everyone.
  • by El ( 94934 ) on Friday March 05, 2004 @04:28PM (#8479255)
    The only great picture of Bill Gates that I know of are ones of this incident [theawayteam.com]
  • by Abcd1234 ( 188840 ) on Friday March 05, 2004 @04:28PM (#8479258) Homepage
    How does this help in the case of spammers creating massive networks of compromised hosts which are then used to send spam in a distributed manner? Such a "pay-with-cycles" technique is useless in this case, since you can still send a *massive* amount of spam with a few million compromised computers, even if each one can only send, say, one email per hour.
  • Pay with cycles? (Score:5, Insightful)

    by JUSTONEMORELATTE ( 584508 ) on Friday March 05, 2004 @04:29PM (#8479262) Homepage
    Aren't most spams sent using hijacked PCs anyway?
    Why wouldn't the spammer be willing to sell cycles on the zombie PCs?
  • If this were the case, I would have little to no incentive to send e-mails at that point. I don't use my cell phone's text messages for the same reason. Who wants to pay for a service that is already free? Besides, I still get junk mail, and that costs postage too, but it doesn't stop the companies from sending it to me.
  • by cmowire ( 254489 ) on Friday March 05, 2004 @04:30PM (#8479274) Homepage
    That charging for email means that *nobody* will be able to run a free mailing list service anymore. Or, alternatively, be just as easy to get around as the current system. Or, even better, have a new set of quirks and possibilities for abuse that would further ruin our email systems.

    The problem is, the main reason why the Internet has worked and CIS, GEnie, ISDN, Teletex, etc. have all fallen by the wayside is because you pay for bandwidth, not services.

    No, the problem is, there's no good way to kick somebody off of the Internet.
  • I already pay (Score:5, Insightful)

    by nurb432 ( 527695 ) on Friday March 05, 2004 @04:32PM (#8479283) Homepage Journal
    I pay for my internet service, I pay for my pc, my taxes ( way too much ), my electrical bill... and my time isn't free.. ( though my software is )

    Why should I have to pay more just because the government refuses to enforce laws that already exist.. Remember the no fax spam laws that pre-date this 'internet thing'? They prohibited sending faxes due to the fact the receiver had to foot the bill for the 'privilege' of getting the spam, due to expenses of paper and ink.

    This doesn't even touch the fact that a large percentage of spam is pornographic, and being sent to minors.. also a crime in this country....

    So fact Bill is in it to profit ( go figure ) has nothing to do with my statement...I f-ing pay enough now.. And im sick of it.
  • Rising costs (Score:3, Insightful)

    by harks ( 534599 ) on Friday March 05, 2004 @04:32PM (#8479288)
    Does anyone -really- believe the cost would stay 1 cent? It would stay there for a while, until everyone considers paying for emails normal, then it'll rise and never come back, guaranteed.
  • Which would you rather see: Gates on Spam, or Spam on Gates?
  • While saying this requires users to "pay to send emails" may be technically accurate, the practical cost to most users will be zero since they're not using those cycles anyway (and the consumed wattage will be virtually nonexistent). Adding a computational burden to email may not be a good idea under MS's implementation -- fine -- but don't lead people to think it's going to take money out of their pockets to send email.
  • Dear lord.... (Score:5, Insightful)

    by Aqua OS X ( 458522 ) on Friday March 05, 2004 @04:36PM (#8479337)
    Could you imagine the security problems we'd have if Microsoft developed software that forced us to leave machines open to remote connections in order to "pay" for mail.

    I have enough security problems with downloading email and web content onto Windows machines. God only knows what would happen if people could upload shit onto my machine without my approval.

    It's a novel idea. But I wouldn't trust MS to implement it.

  • Charging people postage for letters works because there is one centralized postal service which makes all the deliveries. Charging people for sending email will never work because nobody, not even Microsoft, owns the "email service." Because there isn't one. Just the SMTP protocol, and millions of computers which comply with it.

    Maybe in a few decades people will catch on to the fact that the internet is global and decentralized, and that schemes like this are doomed to failure. You can't devise a pay-f
  • by DrPascal ( 185005 ) on Friday March 05, 2004 @04:36PM (#8479349) Homepage
    That device he's holding in the picture is a slide changer for the speech he's giving... Do all executives take the same class to teach how to give a speech? Regardless of company (Microsoft, Intel, Apple, etc, as long as its a tech speech), they all seem to come out with the same horribly hunched over shoulders, and hold that damn thing with two fingers while spinning it around with their other hands fingers.

    It's such a pet peeve now that I can't even watch keynote speeches anymore.
  • by Vaevictis666 ( 680137 ) on Friday March 05, 2004 @04:36PM (#8479350)
    To protect its investment, Microsoft reserves the right to incorporate other groups' improvements to Caller ID back into the specification free of charge, using a so-called "reciprocal license," Frank said.

    That sounds an awful lot like a GPL-ism to me.

  • My system for spam. (Score:5, Interesting)

    by Captain Rotundo ( 165816 ) on Friday March 05, 2004 @04:39PM (#8479373) Homepage
    First off requireing on supposedly time consuming math is absurd. First off it can't be too complex because it would encumber normal users and recievers (who have to check it I suppose) second spammers will develope a cheat sheet (and if Bill doesn't think so he should do a search on the web for "Microsoft Product Activation Code".

    My system is beautiful and simple.

    Everyone use an OpenPGP program (maybe gnuPG) to sign all their email. then recipients can easily check a public keyserver (probably would have to set up more, but ideally each large domain would have one so you can check 'keyserver.microsoft.com' for the key for an adress from microsoft.com) of course you wouldn't need to check a server for someone in your keyring, but I bet through this method anti-spam webs of trust would become very easy to protect.

    This is currently standards complient, so it breaks nothing. And it allows people to decide their level of protection.... you want unsigned mail to get through more power to you. You want to see only verified email fro people YOU know, go for it. you want to accept from any one who has signed that you can get the identity of from a keyserver, sounds great.

    Why don't people do this? it requires nothing more than minimal changes to mail readers, and mild diligence. once it became popular enough its very easy to eliminate all non-trusted mail (although st first you would have to slowoly build it up of course)

    is this that bad of an idea?
    • by Greyfox ( 87712 ) on Friday March 05, 2004 @05:00PM (#8479636) Homepage Journal
      There are a few problems with it, but it's workable.

      1) Still requires me to get the entire E-Mail before deciding to keep it or not, but until E-Mail is taking up a non-fractional percentage of my bandwidth, that's not a problem for me (It is for the Internet as a whole, though.)

      2) Requires you to do some processing to insure that the entire message is signed. Otherwise a spammer could seek out a legitmate message from your mom and copy it into the bottom if his spam. If you just look for the PGP signature headers and don't notice that 90% of the message isn't signed, you'll still accept the E-Mail.

      3) Spammer could generate a throw-away key and register it with a keyserver. Though if you require all incoming E-mail to be encrypted to your key, that'd solve that problem.

      4) Mailers would have to support that, and most of them hardly even support PGP, largely thanks to those pesky export regulations of a while back. Apparently even implementing a "Crypto enabling API" was illegal. I don't know the current status of those things.

      5) Still doesn't solve the problem of hacked machines out there, not that there's a good way around that one no matter what solution you use.

  • by DocSnyder ( 10755 ) on Friday March 05, 2004 @04:43PM (#8479432)
    As soon as email costs money, the spammers will be the last ones to pay for their crap. Even worse, the whole system begs to get abused.

    • Phishing for credit cards, email accounts and passwords is very common.
    • Most spam is being relayed through trojaned Wind0ze boxes, whose owners would have to pay the postage.
    • Email would become a "premium rate service" similar to expensive SMS or phone numbers, with the recipient getting a small (or maybe bigger) amount of money for each received email. It won't take too long for spammers to make wormed Wind0ze boxes send them zillions of emails and lining up their pockets.
  • Spam solution (Score:3, Insightful)

    by Erratio ( 570164 ) on Friday March 05, 2004 @04:44PM (#8479444)
    IT seems like Spam is largely able to exist just because of the widespread looseness in SMTP. If access to SMTP servers is restricted with accounts (either with authentication or address recognition, etc. for LAN's), and then further checking is done by other SMTP servers to validate the hostnames, addresses, etc. so that random SMTP servers can't just be set up. Then sent e-mails should always be able to easily be tracked down to the account that sent it (relevant info could be added to the header) and that account can be disabled for spam. If the reporting process were relatively streamlined objectively, then the effort of overcoming the obstacles would outweigh any benefit.
    • Should we remove all services likely to be abused from the operating systems? Or should we just not allow people to setup their own operating systems? Maybe we shouldn't allow people access to compilers. Alot of bad things are done with compilers.
  • by yoshi_mon ( 172895 ) on Friday March 05, 2004 @04:45PM (#8479466)
    Forcing some sort of email "stamp" in any way will do one thing, fragment the email standard as those who don't want to pay/can't afford to pay will adopt a new standard of sending messages.

    Then I'm sure the lawyers would muck it up even more by trying to enforce ISPs to regulate the new email/message sending system and we would get into the very thorny issue of what constitutes an email?

    What about IRC chat, or Instant Messaging, or message board messaging systems? Would those fall under the email stamp tax?

    Spam is annoying but I personally will not pay again for my service. I pay for my bandwidth and I know how to filter my email properly. Forcing me to pay again for email will only insure that I will be one of those who switches to another standard.
  • Root certificates? (Score:5, Interesting)

    by msimm ( 580077 ) on Friday March 05, 2004 @04:46PM (#8479473) Homepage
    Why not use a system based on something like root certificates, which:
    A) Cost money (hopefully not break the bank).

    B) Are revokable (with a review process funded by registrations?).
    C) Can be used to validate the authenticity of the source (PGP style domain/user authentication should be seamlessly built into ANY new RFC).
    I know I'm not the first person to suggest this, but if white/grey/black listing or filtering (which I hate) isn't enough why use a per email fee instead of just validating the from field and revoking servers that allow spam.

    I bet if we did this it wouldn't be long before almost everybody signed up with a registered email service (or purchased their own certificates) only leaving illegitimate senders in the cold. Forged headers *should* be a thing of the past, we have the technology.

    Anyhow, I fear at this point its going to be decided by the first large system that comes to market. Which looks like MS is really pushing to be.
    • "Why not use a system based on something like root certificates?"

      Here's why not: Because hackers and worm authors will still have control of a vast network of computers, that will not only generate spam signed by the poor victim, but will also lead to that victim's e-mail access being revoked.

      Relying on a review process would be too difficult - each new virus/worm could result in, say, a million affected machines, which means potentially a million reviews suddenly needing to be made.
  • by Androclese ( 627848 ) on Friday March 05, 2004 @04:54PM (#8479570)
    ...for people running Sendmail and a *nix compatable email client, how do "they" plan on enforcing the cost of the stamps?

    What is to stop me from having a mail server off US shores to provide my clients with cost-free email access? What is to stop spammers from setting up their own mail servers and forging the stamps? They certainly don't play by the rules right now!

    Do they plan on forcing everyone to upgrade their mail clients and server software?

    My biggest question, Who are "they". Are "They" the ones who will collect the money for these stamps? Is it M$? The ISP? The Government? Since a transaction is taking place, will there be a tax on the email? (you know the IRS will want their cut).

    I run a mail server on a colo for myself and give space/access to my friends for free. Do I now have to charge them? Do I have to pay taxes on that?

    Yes, this is a lot of questions, but they a) don't see have been asked yet, and b) don't have answers that I know of.

    I am not for spam but I'll be damned if I will start paying for my email as a theory to stop spam when we all know damn well that it won't stop them.
  • Mailing lists (Score:5, Interesting)

    by AaronW ( 33736 ) on Friday March 05, 2004 @04:54PM (#8479579) Homepage
    I can't see how this could work. Any spam-prevention measure must also have some provision to deal with legitimate mailing lists. Some mailing lists can be quite busy and have thousands of members.

    Also, Gate's method has a lot of flaws, security being only one of them. For example, how will you deal with all the various different operating systems and embedded hardware that send email? For example, my Netgear firewall box periodically sends me emails of logs or alerts.

    Also, you can't easily change the way email is done because its use is so widespread.

    Making it computationally based has a number of major flaws.

    1. How do you deal with the wide range of computer performance? For example, my mail server is a Pentium II, which is more than adequate for my needs, or my firewall, which is a 50MHz StrongARM processor?

    2. How would you allow others to use your computer to make computations? This opens up some serious security considerations, not to mention the fact that there's a wide range of processors and operating systems that would need to be supported. I won't run Seti@Home because the last time I ran it it crashed my mail server after over 200 days of uptime. I don't know what it was about Seti, but it would always immediately crash my server.

    3. You would need to make everyone agree to do this. The Internet is international.

    A better way would be to strongly encourage ISPs to block spammers and give them the tools to go after them. An ISP should be able to charge the hell out of a spammer on their network and encouraged to do so.

    Why not give the backbones the power to cut off major spam sources and provide financial incentives to do so?

    There's lots of other methods that could be used. If you make life completely miserable for spammers, they'll stop. If there's no profit, they'll stop.

    If our stupid congress critters would do something right for a change, like California's anti-spam law that was blocked by the Washington idiots, then we'd have a lot more power to go after the spammers.
  • by JeffHunt ( 129508 ) on Friday March 05, 2004 @04:56PM (#8479593) Homepage
    If sending regular email via the existing methods becomes a pay-for-play service, then it's only a matter of time before an entirely new email protocol surfaces that allows participants to send mail for free.

    I suppose you could say it'd be "voting with your dollar" to shut down any efforts to control the Internet in such a manner.
  • System (Score:3, Funny)

    by jeffkjo1 ( 663413 ) on Friday March 05, 2004 @04:59PM (#8479619) Homepage
    I'd like to propose a system by which users will have to pay for their slashdot submissions, to cut down on duplicates.
  • leave it be (Score:4, Insightful)

    by Anonymous Coward on Friday March 05, 2004 @05:06PM (#8479688)
    Articles like these really make me sad.

    When the Internet exploded and the joe masses came flooding in there were many rapid changes witnessed. Many of these changes were tremendously wonderful, and many weren't.

    Over the years we saw the tug of war between those who think that the net is evil and must be controlled, and those who are intelligent enough to govern themselves and contribute to the common good.

    There were many different attacks on our freedom, and usually we prevailed because it was obvious that proposed restrictions would damage our precious medium. But lately the anti-spam efforts begin to scare me.

    I'm scared because most people hate spam. So even people who are normally freedom-fighters give a moment of pause to think, "Well, I really do hate spam, maybe I should consider this."

    The answer to problems that arise within the net are never ones that limit and merely mimic our failing systems elsewhere.

    I too was pulling out my hair over the explosion of advertising. I realized that it was collecting in my memories, permanently, like toxic waste being spewed at my senses.

    For the most part however I have returned to serenity. I use Mozilla Firefox with the Adblock plugin, this takes care of all banners/popups. I also finally just installed spamassasin on my mail server and the hundreds of junk mailings that normally made my veins bulge are now routed behind closed doors to a junk folder.

    To top it off I threw away my television. I can still enjoy the simpsons, but now it is commercial free. Caller I.D. protects me from unwanted calls. Simply lift the phone for a split second and slam it back down. And I do most of my business through the net so I can safely ignore snail mail.

    The solution is already here. It is education, technology, and intellect.

    [Paul Anka]
    To stop those monsters 1-2-3
    Here's a fresh new way that's trouble free
    It's got Paul Anka's guarantee...
    [Lisa]
    Guarantee void in Tennessee!
    [All]
    Just don't look!
    Just don't look!
    Just don't look!
    Just don't look!
  • I don't get it (Score:5, Interesting)

    by Coward Anonymous ( 110649 ) on Friday March 05, 2004 @05:13PM (#8479768)
    Most spam originates from spoofed email addresses. Those emails that don't come from spoofed email addresses can be sued into oblivion.
    So it is a simple matter of finding the spoofed email addresses.
    This is how an email server would check inbound email:
    1. receive email
    2. lookup domain of sender. If does not resolve, discard.
    3. lookup "domain email authority" of domain, say "authorize.yahoo.com" for senders originating at yahoo.com. No authority, discard.
    4. ask authority it if the user is known and what IP address it would be sending email from.
    5. Is user known and does "authorized" IP address match IP address of sender? If not, discard.

    This mechanism would also make it easy to circumvent non-spoofed email addresses since the spammers would need to support the extra authorization queries. It would also force them to centralize their efforts making them an easy target for elimination.

    The result: No spam, no Microsoft tax. Nothing. Only a little bit of overhead on DNS and email servers which could be eased with a little bit of caching.

    Why wouldn't this work? Is there a problem with this?
    • There are a lot of "simple" solutions against spam like the one you describe. The problem with the server solutions - where the servers of the sender and receiver make some kind of negotiation to decide if the email is legit. - is that it only works if every server on the net is upgraded and that will never happen.

      For example, let's say you receive an email from babar@domain.ii (imaginary tld). With your scheme, your server asks authorize.domain.il but domain.il hasn't upgraded and still use old simple email server. Email is discarded. That means no user from domain.ii can send you email.

      bzzzt the internet is broken.

      • The proposed scheme can be easily modified to accept that. It is called configuration. You can authorise some domains to get away with it and others not. Yes, at first it would be like a bucket full of holes but eventually the holes seal up. This scheme would be trivial to integrate into the next version of here.
        You are not going to come up with an immediate solution because there is none but if you start with something like this or a hash cash solution, within several years spam will become harder and har
    • Re:I don't get it (Score:3, Interesting)

      by kindbud ( 90044 )
      Why wouldn't this work? Is there a problem with this?

      Mailing lists, forwarding services, email-this-link-to-a-friend, all that stuff and more would become illegitimate email under this scheme, and also under SPF. You've offered no insights or solutions that hundreds of others haven't already brought up.

      Here's a clue for everyone: if someone tells you, or you yourself think, that they have the solution to the spam problem, and it's so simple that there's no reason why it can't be implemented now, they
    • Re:I don't get it (Score:3, Informative)

      by npsimons ( 32752 )

      2. lookup domain of sender. If does not resolve, discard.

      There is already a patch for this (at least for qmail). The others wouldn't be too tricky.
  • by agusus ( 470745 ) on Friday March 05, 2004 @05:15PM (#8479789) Homepage

    "Instead of paying a penny, the sender would "buy" postage by devoting maybe 10 seconds of computing time to solving a math puzzle."


    wait, this was already done! Last time I used Outlook to send an email, my computer churned for 10 seconds and then said "Illegal exception."

    I guess this "math puzzle" [oh, so *that's* what they're calling it now] was too hard for Outlook.

  • by Yankovic ( 97540 ) on Friday March 05, 2004 @05:22PM (#8479883)
    I know no one on /. reads the article, but what about the snippet at the top. You don't actually exchange cash at all, it's all about provably dedicating computer time. Money is NOT exchanged. This also would not affect DLs and other wide lists, because it would be the initial mail that would be computed, rather than all the redirected ones. As far as mailing to lots of people, that is a concern, but how many lists out there are >10000 in size? What this really limits is people who want to send to 1M people, and, yes, you're screwed there.
  • by kindbud ( 90044 ) on Friday March 05, 2004 @05:26PM (#8479949) Homepage
    Email is valuable and popular because it is cheap and quick. Make it expensive and slow, and its value goes away. Hashcash-like proposals seek to make email suck more for all of us, in the hopes that it will be even more sucky for the spammers, so sucky that they'll quit.

    But you cannot save email by destroying the things that makes it valuable and popular.
  • Not acceptable. (Score:5, Insightful)

    by brain1 ( 699194 ) on Friday March 05, 2004 @05:27PM (#8479966)
    No I am not going to pay to send e-mail. Sorry, but Bill's proposal is not acceptable.

    It is one thing to donate idle CPU time to something charitable and worthwhile, like SETI, if you wish to do so. But to allow a private corporation to freely enjoy things that cost me considerable money for, like a full time DSL connection, and the electricity to operate a PC with a 450 watt power supply 24/7, makes no sense. To require me to submit to this just so I can send e-mail is nonsense.

    Other questions come to mind. If this proposed system is burdened with Microsoft patents, then exactly how will open-source or third-pary e-mail clients and servers be licensed with the Microsoft IP. Exactly what is that going to cost?
  • by Boinger69 ( 673392 ) on Friday March 05, 2004 @05:30PM (#8480016)
    Dear Internet Subscriber: Please read the following carefully if you
    intend to stay online and continue using e-mail: The last few months
    have revealed an alarming trend in the Government of the United States
    attempting to quietly push through legislation that will affect your use
    of the Internet. Under proposed legislation (Bill 602P) the U.S. Postal
    service will be attempting to bilk email users out of "alternative
    postage fees". Bill 602P will permit the Federal Govt. to charge 5 cents
    surcharge on every email delivered, by billing Internet Service
    Providers at source. The consumer would then be billed inturn by the
    ISP. Washington D.C. lawyer Richard Stepp is working without pay to
    prevent this legislation from becoming law. The U.S. Postal Service is
    claiming that lost revenue due to the proliferation of email is costing
    nearly $230,000,000 in revenue per year. You may have noticed the recent
    ad campaign "There is nothing like a letter". Since the average citizen
    received about 10 pieces of email per day in 1998, the cost to the
    typical individual would be an additional 50 cents per day, or over $180
    per year, above and beyond their regular Internet costs. Note that this
    would be money paid directly to the U.S. Postal Service for a service
    they do not even provide. The whole point of the Internet is democracy
    and non-inerference. If the Federal Govt. is permitted to tamper with
    our liberties by adding a surcharge to e-mail, who knows where it will
    end. You are already paying an exorbitant price for snail mail because
    of bureaucratic inefficiency. It currently takes up to 6 days for a
    letter to be delivered from New York to Buffalo. If the U.S. Postal
    Service is allowed to tinker with email, it will mark the end of the
    'free' Internet in the United States. One congressman, Tony Schnell (R)
    has even suggested a "twenty to forty dollar per month surcharge on all
    Internet service" above and beyond the government's proposed email
    charges. Note that most of the major newspapers have ignored the story,
    the only exception being the Washingtonian which called the idea of
    email surcharge "a useful concept whose time has come" (March 6th 1999
    Editorial) Don't sit by and watch your freedoms erode away! Send this
    email to all Americans on your list and tell your friends and relatives
    to write their congressman and say "No!" to Bill 602P Kate Turner
    assistant to Richard Stepp Berger, Stepp and Gorman Attorneys at Law 216
    Concorde Street, Vienna, VA.
    ********

    Spam/Chain Mail predicting the future? Whaaa.
  • by ministeroforder ( 661476 ) * on Friday March 05, 2004 @05:44PM (#8480162) Homepage
    Check out the fine print. "Microsoft and its Affiliates hereby grant you ("Licensee") a fully paid, royalty-free, non-exclusive, worldwide license under Microsoft's Necessary Claims to make, use, sell, offer to sell, import, and otherwise distribute Licensed Implementations, provided, Licensee, on behalf of itself and its Affiliates, hereby grants Microsoft and all other Specification Licensees, a reciprocal fully paid, royalty-free, non-exclusive, worldwide, nontransferable, nonsublicenseable, license under Necessary Claims of Licensee to make, use, sell, offer to sell, import, and otherwise distribute Licensed Implementations." basically whatever code you write, you must give to microsoft for free. Good deal eh?
  • by bugnuts ( 94678 ) on Friday March 05, 2004 @05:51PM (#8480229) Journal
    Instead of paying a penny, the sender would "buy" postage by devoting maybe 10 seconds of computing time to solving a math puzzle.

    How many years is that on my cellphone (which sends email) or my apple //e?

    Spammers can get around this in any number of ways. Let's say I run a boobie site and want to spam you... I have visitors browsing it running a client which does all the calculations I need to send millions of spam a day. After all, I have a captive army of geeks (boobies!) that'd be happy to run calculations in my stead in exchange for free boobies.

    Compute cycles just aren't the answer since they're easy to obtain, and easy to fake, and who the hell gets to decide what problem gets worked on with MY cycles?

    Cold, hard cash is the way to discourage millions of spams sent daily. And the payment should be "opt-in" by the recipient, so that you don't need to worry about your grandma charging you a nickle to send her an email.
  • by CoughDropAddict ( 40792 ) on Friday March 05, 2004 @06:00PM (#8480312) Homepage
    Typical Microsoft conduct: showing up late to the party (people have been inventing "solutions" to SPAM for years now), coming up with solutions other people have already proposed (domain-verified sending and "pay with cycles" have been thought of a million times), and claiming to own them (with patents).

    I especially love:

    "Since they're dedicating it to the public free of charge, (Microsoft) doesn't want to be the patsy who builds a foundation just so other people can come along and erect a building on it, then sell the building," he said.

    Can you say "BSD Stack?"
  • I smell money (Score:3, Insightful)

    by oldgeezer1954 ( 706420 ) on Friday March 05, 2004 @06:13PM (#8480443)
    For the sake of argument let's assume Gate's has perfect vision and the world is going to cooperate, perhaps with some nudging, and it gets implemented and is effective.

    Well there are all sorts of existing technology that could limit spam rates, stop client boxes from using unauthorized services, or unapproved domains, send auth... I'm not suggesting any of those things are or are not appropriate. Just that they do indeed exist and what's lacking is the will and cooperation. And without that his approach will not make things better. There are much easier ways to extend existing standards where that is needed.

    It may slow the rate of growth but it won't stop the flood.

    What it will generate though is more impetus to force older technology users to upgrade. And most likely servers will need to be upgraded as well. The cost will be insignificant to the spam kings who profit. Not even a bump really.

    Of course we could ensure some sort of reliable client identification process is built it... Ooops that's a good benefit to DRM as well! What luck! And stopping spam is a good sales pitch.

    Nah I haven't argued all the points. There are some good ideas out there as to how to stop spam in general.

    But Gate's approach is let's all spend more money on more technology even though the gesture in the long run will be futile. Just because we can't cooperate on these things today doesn't mean we won't if we all spend more money on it (true but not plausible).

    And with proper design we can eliminate this pesky free email too. Does he really think I'd ever pay for hotmail?

  • by npsimons ( 32752 ) on Friday March 05, 2004 @06:47PM (#8480752) Homepage Journal
    You advocate a

    (X) technical ( ) legislative (X) market-based ( ) vigilante

    approach to fighting spam. Your idea will not work. Here is why it won't work. (One or more of the following may apply to your particular idea, and it may have other flaws which used to vary from state to state before a bad federal law was passed.)

    ( ) Spammers can easily use it to harvest email addresses
    (X) Mailing lists and other legitimate email uses would be affected
    (X) No one will be able to find the guy or collect the money
    (X) It is defenseless against brute force attacks
    (X) It will stop spam for two weeks and then we'll be stuck with it
    (X) Users of email will not put up with it
    ( ) Microsoft will not put up with it
    ( ) The police will not put up with it
    (X) Requires too much cooperation from spammers
    (X) Requires immediate total cooperation from everybody at once
    (X) Many email users cannot afford to lose business or alienate potential employers
    ( ) Spammers don't care about invalid addresses in their lists
    ( ) Anyone could anonymously destroy anyone else's career or business

    Specifically, your plan fails to account for

    ( ) Laws expressly prohibiting it
    (X) Lack of centrally controlling authority for email
    (X) Open relays in foreign countries
    ( ) Ease of searching tiny alphanumeric address space of all email addresses
    (X) Asshats
    ( ) Jurisdictional problems
    (X) Unpopularity of weird new taxes
    (X) Public reluctance to accept weird new forms of money
    (X) Huge existing software investment in SMTP
    (X) Susceptibility of protocols other than SMTP to attack
    (X) Willingness of users to install OS patches received by email
    (X) Armies of worm riddled broadband-connected Windows boxes
    (X) Eternal arms race involved in all filtering approaches
    (X) Extreme profitability of spam
    (X) Joe jobs and/or identity theft
    ( ) Technically illiterate politicians
    (X) Extreme stupidity on the part of people who do business with spammers
    (X) Dishonesty on the part of spammers themselves
    ( ) Bandwidth costs that are unaffected by client filtering
    ( ) Outlook

    and the following philosophical objections may also apply:

    (X) Ideas similar to yours are easy to come up with, yet none have ever
    been shown practical
    ( ) Any scheme based on opt-out is unacceptable
    ( ) SMTP headers should not be the subject of legislation
    ( ) Blacklists suck
    ( ) Whitelists suck
    ( ) We should be able to talk about Viagra without being censored
    ( ) Countermeasures should not involve wire fraud or credit card fraud
    ( ) Countermeasures should not involve sabotage of public networks
    (X) Countermeasures must work if phased in gradually
    (X) Sending email should be free
    (X) Why should we have to trust you and your servers?
    (X) Incompatiblity with open source or open source licenses
    (X) Feel-good measures do nothing to solve the problem
    ( ) Temporary/one-time email addresses are cumbersome
    ( ) I don't want the government reading my email
    ( ) Killing them that way is not slow and painful enough

    Furthermore, this is what I think about you:

    (X) Sorry dude, but I don't think it would work.
    (X) This is a stupid idea, and you're a stupid person for suggesting it.
    (X) Nice try, assh0le! I'm going to find out where you live and burn your
    house down!
  • by AaronW ( 33736 ) on Friday March 05, 2004 @07:53PM (#8481206) Homepage
    The problem with requiring computation cycles is that you need to deal with a lot of older computers. I have friends with old Pentium-based computers, some of whom cannot afford a nice new P4 system.

    Also, what happens to all these web-based email accounts like Yahoo or Microsoft's Hotmail? I guess they'll need to spend a lot of money adding processing power for their users to send email.

    What's to stop someone from making hardware to do the processing? It shouldn't be too difficult to implement an FPGA or an ASIC that could do the processing much faster. I imagine it wouldn't take too long for PCI boards to come out to offload the processing for large mail servers, then spammers with money could just buy the board to offload the processing.

    -Aaron

The world will end in 5 minutes. Please log out.

Working...