The FTC vs. The Zombies

from the when's-the-sequel-coming-out? dept

Apparently the various attempts by broadband ISPs to cut down on “zombie machines” sending out spam isn’t cutting it with the FTC and regulators in 35 other countries. They’re teaming up in an effort to slay zombies around the world, which certainly sounds like the premise for a schlock horror film. As with those films, the zombies are likely to keep popping up, and it’s likely there will be plenty of time for more than a few sequels. We eagerly await The FTC vs. The Zombies, Part IX: This Time, It’s Port 25.

Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “The FTC vs. The Zombies”

Subscribe: RSS Leave a comment
TJ says:

Not that unreasonable

Lots of sensational, reactionary articles about this topic already today. But they all have left out some of the key things the FTC page actually says, like: “Explore implementing Authenticated SMTP on port 587 for clients who must operate outgoing mail servers.”

It is clear that FTC’s suggestion relates to end-user ISPs, not ISP offerings for connecting large corporate/government networks to the ‘net.

Individuals and small companies who have the technical expertise and need to bypass their ISP’s SMTP server ought to be able to adapt to reasonable ISP accomodations: The port 587 idea above, only opening port 25 upon request, etc.

There are already workarounds today for ISPs that block port 25, because plenty of ISPs already do. My ISP’s mail servers are crap, so for years I’ve used a Usenet/mail third-party provider that costs $6 a month. They have more basic accounts for $30 a year. I can send mail through them using “receive before send” authentication on a non-standard port as much as I want, and because they are very careful with their mail server operation my outgoing mail is less likely to be flagged as spam.

The German political spam fiasco last week was another good example that something needs to be done, and the solution has to be a technical one. As solutions go, what the FTC is proposing seems balanced. It _may_ contribute to some ISPs deciding to implement something very unreasonable, but some ISPs already do that and competition remains the best way to sort that out.

Anonymous Hero says:

Re: Not that unreasonable

Unfortunately, there are many cases where it is not possible or practical to use port 587 instead of 25(see RFC 2476). This is why ISP’s themselves generally use port 25 and the FTC only suggests “explore implementing Authenticated SMTP on port 587”. And once ISP’s decide to block a port as a matter of policy very few are willing to unblock it upon request.
As to competition sorting it out, that’s why the FTC wants to pressure all ISP’s to block so there will be none that don’t. Of course, it’s not like there is much real broadband competition in the US anyway.

Add Your Comment

Your email address will not be published. Required fields are marked *

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop »

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Deals
Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...