[Nottingham] Challenge-Response systems
Simon Huggins
huggie at earth.li
Fri Nov 4 10:31:41 GMT 2005
On Fri, Nov 04, 2005 at 11:19:59AM +0100, Michael Erskine wrote:
> The point with this particular CR system is that if you genuinely WANT
> to get your mail through then you can. Spam doesn't get through.
Don't be silly. If (heaven forbid) CR actually becomes widespread then
spam does get through.
People spam you with a forged From:, you send your challenge to a user
who just automatically confirms it by jumping through the hoops without
really thinking (ok, they think enough to go to their browser and
confirm it).
In the same way people ignore regular cron reports, people would just
acknowledge mails and you're back to square one.
CR doesn't work.
Simon.
--
[ "I think we're just out of Waldorfs" - Basil, Fawlty Towers ]
More information about the Nottingham
mailing list