[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: TMDA and other challenge-response systems considered harmful

On 2004-06-02, Tim Connors penned:
> If challenge response ever becomes ubiquitous, then spammers will
> trivially be able to verify the responses without providing their own
> email address. They will simply do what the currently do - open up
> millions of backdoors on cracked computers, go through the address
> books to look for email addresses, then send using a From: of the
> current computer. An MTA running via the backdoor will pick up an CR
> attempts, respond to them, and voila, send spam to a verified email
> address.

At least that method of circumvention is a serious legal offense ...


Reply to: