LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

national do-not-spam list

national do-not-spam list

Posted Nov 27, 2003 11:26 UTC (Thu) by rwmj (subscriber, #5474)
In reply to: national do-not-spam list by skybrian
Parent article: The CAN-SPAM bill examined

This is one way to do it.

Another way is to have the FTC (or whichever *trusted* body administrates this) either cleanse lists on behalf of spammers, or give spammers MD5 hashes of the addresses.

The hashing approach is the most interesting: to test an address, you MD5 hash it and look for it on the list of hashes. Reversing this process is mathematically very difficult, so given a list of hashes a spammer cannot derive a list of addresses.

Rich.

(Log in to post comments)

national do-not-spam list

Posted Dec 5, 2003 4:24 UTC (Fri) by khim (subscriber, #9252) [Link]

*Trusted* body ? What the hell ? Why you even need any trusted body ?

It's possible to create 1000 lists with untrusted bodies (including one nationa-wide) where only md5 hashes are stored. Generated locally, obviously. With 100% open-sourced program.

Then anyone can use any such database to check is address if there but nobody can harvest anything from there: e-mail adresses were never actually submitted to such databases!

Nobody can misuse information they do not have in first place - this eliminates needs for trust...

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds