From: "Patrick J. LoPresti" <patl@curl.com>
Cc: ding@gnus.org
Subject: Re: [ANNOUNCE] contrib/hashcash.el spam fighter
Date: 28 Jun 2002 10:48:48 -0400 [thread overview]
Message-ID: <s5gvg834fxr.fsf@egghead.curl.com> (raw)
In-Reply-To: <mit.lcs.mail.ding/02Jun25.104630edt.119271@gateway.intersystems.com>
Stainless Steel Rat <ratinox@peorth.gweep.net> writes:
> | A spammer could compute these, but he could only use it once.
>
> No, he could only use it once every 28 days by default.
No. I think you still do not fully understand the hashcash scheme...
The hashed value includes both the recipient's address and the date.
The hash is valid only if the recipient address is correct *and* the
date is recent. "Recent" can be 28 days, 1 week, 1 day, or whatever
you like; it depends on how long you want to allow the coin to be
valid (for the convenience of the sender) versus how long you want to
keep old coins listed in your local database.
> Still, there may be a way of exploiting the Bcc mechanism or RCPT TO
> at the SMTP level, both common spam tactics. If a spammer were to
> generate a hash against a bogus To header (like most of the spam I
> get), he could blindly send his spam to millions of recipients with
> only one hash. Yes, you could check the X-Hashcash coin against
> your known address, but that leads you directly into a false
> negative if a legitimate sender Bccs you something.
The sender must include a separate hash for every recipient, whether
CC'd or BCC'd. Depending on the structure of the hash, this may or
may not directly reveal to whom you BCC'd. (It certainly makes it
possible for someone else to *guess* to whom you BCC'd, which is a
downside. I doubt you can correct this deficiency without public-key
crypto, though.)
> The system is also vunlerable to false positives. The likelyhood of
> an accidentally duplicated coin increases with the number of users.
> And it is potentially vulnerable to denial of service by the same
> mechanism.
It does not matter if two duplicated coins appear somewhere in the
world; what matters is whether somebody can exploit them. With any
reasonable number of bits, they cannot. One false positive out of a
million messages, or a billion messages, is certainly a ratio I could
tolerate.
I do not think hashcash will catch on because it is too complex. But
it is technically sound, your half-dozen misinformed messages on the
topic notwithstanding :-).
- Pat
next prev parent reply other threads:[~2002-06-28 14:48 UTC|newest]
Thread overview: 56+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-06-22 12:55 Simon Josefsson
2002-06-23 2:40 ` David Masterson
2002-06-23 4:39 ` Stainless Steel Rat
2002-06-23 5:12 ` David Masterson
2002-06-23 13:50 ` Stainless Steel Rat
2002-06-23 14:36 ` Simon Josefsson
2002-06-23 15:20 ` Stainless Steel Rat
2002-06-23 17:59 ` Simon Josefsson
2002-06-23 21:34 ` Stainless Steel Rat
2002-06-24 5:41 ` David Masterson
2002-06-24 8:20 ` Kai Großjohann
2002-06-24 12:06 ` Simon Josefsson
2002-06-24 16:05 ` Stainless Steel Rat
2002-06-24 16:41 ` Simon Josefsson
2002-06-24 19:26 ` Stainless Steel Rat
2002-06-24 21:14 ` Simon Josefsson
2002-06-25 1:55 ` Stainless Steel Rat
2002-06-25 2:15 ` Stainless Steel Rat
2002-06-25 8:56 ` Simon Josefsson
2002-06-25 14:54 ` Stainless Steel Rat
[not found] ` <mit.lcs.mail.ding/02Jun25.104630edt.119271@gateway.intersystems.com>
2002-06-28 14:48 ` Patrick J. LoPresti [this message]
2002-06-28 16:30 ` Stainless Steel Rat
[not found] ` <mit.lcs.mail.ding/02Jun28.122222edt.119118@gateway.intersystems.com>
2002-06-28 20:25 ` Patrick J. LoPresti
2002-06-28 21:30 ` Stainless Steel Rat
2002-06-28 23:03 ` Simon Josefsson
2002-06-29 0:41 ` Stainless Steel Rat
2002-06-29 11:46 ` Simon Josefsson
2002-06-29 13:56 ` Stainless Steel Rat
[not found] ` <m2u1nmti0u.fsf@tnuctip.rychter.com>
2002-06-29 14:05 ` Stainless Steel Rat
[not found] ` <mit.lcs.mail.ding/m3bs9uxjsh.fsf@peorth.gweep.net>
2002-06-30 0:20 ` Patrick J. LoPresti
2002-06-30 7:23 ` Stainless Steel Rat
[not found] ` <mit.lcs.mail.ding/02Jun28.172137edt.119392@gateway.intersystems.com>
2002-06-30 0:07 ` Patrick J. LoPresti
2002-06-30 7:48 ` Stainless Steel Rat
2002-07-01 6:37 ` Steinar Bang
2002-07-01 15:20 ` Stainless Steel Rat
2002-07-01 17:22 ` Steinar Bang
2002-07-01 18:37 ` Stainless Steel Rat
2002-07-02 10:43 ` Steinar Bang
2002-07-02 15:33 ` Stainless Steel Rat
2002-07-02 18:23 ` Simon Josefsson
2002-07-02 18:28 ` Karl Kleinpaste
2002-07-02 18:50 ` Simon Josefsson
2002-07-05 22:14 ` Kevin Ryde
2002-07-06 11:11 ` Henrik Enberg
2002-07-07 18:40 ` Simon Josefsson
2002-07-02 18:57 ` Steinar Bang
2002-07-02 21:09 ` Stainless Steel Rat
2002-07-03 11:45 ` Steinar Bang
2002-07-03 12:35 ` Oystein Viggen
2002-07-03 14:49 ` Stainless Steel Rat
2002-06-25 6:57 ` undo mail catchup w .snapshot .[mumble]rc ? Yeoh Yiu
2002-06-26 19:33 ` Paul Jarc
2002-06-28 4:51 ` Yeoh Yiu
2002-06-23 14:36 ` [ANNOUNCE] contrib/hashcash.el spam fighter Mark Milhollan
2002-06-23 10:54 ` Simon Josefsson
2002-06-24 18:22 ` Jason R. Mastaler
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=s5gvg834fxr.fsf@egghead.curl.com \
--to=patl@curl.com \
--cc=ding@gnus.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).