HOME

TheInfoList



Click Here for Items Related To - Mail Abuse Prevention System
OR:
Mail Abuse Prevention System on:   [Wikipedia]   [Google]   [Amazon]

The Mail Abuse Prevention System (MAPS) is an organization that provides anti-spam support by maintaining a
DNSBL A Domain Name System blocklist, Domain Name System-based blackhole list, Domain Name System blacklist (DNSBL) or real-time blackhole list (RBL) is a service for operation of mail servers to perform a check via a Domain Name System (DNS) query whe ...
. They provide five black lists, categorising why an address or an IP block is listed: * Real-time Blackhole List (RBL), the one for which MAPS is probably best known. * Dialup Users List (DUL), blocks of addresses that include many
SOHO Soho is an area of the City of Westminster, part of the West End of London. Originally a fashionable district for the aristocracy, it has been one of the main entertainment districts in the capital since the 19th century. The area was develo ...
users. * Relay Spam Stopper (RSS), spam relays, e.g. ''hijacked'' servers. * Open Proxy Servers (OPS), naively open
SMTP The Simple Mail Transfer Protocol (SMTP) is an Internet standard communication protocol for electronic mail transmission. Mail servers and other message transfer agents use SMTP to send and receive mail messages. User-level email clients ty ...
servers. * Non-confirming Mailing List (NML), marketers who use opt-out strategy. The acronym MAPS is spam spelled backwards.


History

MAPS was founded in 1996 as a
non-profit organization A nonprofit organization (NPO) or non-profit organisation, also known as a non-business entity, not-for-profit organization, or nonprofit institution, is a legal entity organized and operated for a collective, public or social benefit, in co ...
to pioneer innovative
anti-spam techniques (e-mail) Various anti-spam techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) as opposed to ...
. The early history of MAPS is the History of DNSBLs itself. Dave Rand and
Paul Vixie Paul Vixie is an American computer scientist whose technical contributions include Domain Name System (DNS) protocol design and procedure, mechanisms to achieve operational robustness of DNS implementations, and significant contributions to open ...
, well known Internet software engineers, started keeping a list of IP addresses which had sent out spam or engaged in other behavior they found objectionable. The list became known as the ''Real-time Blackhole List'' (RBL). Many network managers wanted to use the RBL to block unwanted e-mail. Thus, Rand and Vixie created a DNS-based distribution scheme which quickly became popular. Being certain there was an absolute right to publish an anti-spam blacklist, MAPS published
"How to Sue Us" page
inviting spammers to sue them and help them create case law. In 2000 MAPS was the named defendant in no fewer than three lawsuits, being sued b
Yesmail
and survey gian
Harris Interactive
As the first lawsuits came in, MAPS brought in Anne P. Mitchell as their Director of Legal and Public Affairs. In 2001 the company started to require a subscription for accessing their lists. Non-subscribed users received a dummy ''unlisted'' response. MAPS explained as their expectation to get enough funds from free support failed, they were forced to make this decision. However, the spirit of the company remained one of a non-profit organization. Their subscription page was quite hidden in their ''.org'' web site, and their fax-based subscription mechanism was rather awkward. In 2004 MAPS became a division of Kelkea, Inc, moved from Redwood City to San Jose, and from ''.org'' to ''.com''. Dave Rand was the founder and CEO of Kelkea at the time. In June 2005, Trend Micro, Inc. acquired Kelkea, which brought substantial improvement to the subscription mechanism, including a fully automated method for getting temporary subscriptions. In addition, subscribers were provided with personalised web pages where they can view reports, and also set up
whitelist A whitelist, allowlist, or passlist is a mechanism which explicitly allows some identified entities to access a particular privilege, service, mobility, or recognition i.e. it is a list of things allowed when everything is denied by default. It is ...
ing and
blacklist Blacklisting is the action of a group or authority compiling a blacklist (or black list) of people, countries or other entities to be avoided or distrusted as being deemed unacceptable to those making the list. If someone is on a blacklist, ...
ing options (whitelisting is particularly convenient, as it allows to whitelist thousands of IP addresses with a few clicks).


Criticism

Proposing so many lists can confuse a MAPS subscriber; postmasters may hurriedly subscribe to all lists. The difference between an ''open proxy'' which relays spam and a 'somehow open', ''spam relay'' is not clear, so postmasters may just conclude the more lists they use, the more spam they block. However, one of MAPS lists, the DUL, is significantly different from the others. The DUL was supposed to list addresses which are dynamically assigned to end-users (but in practice it also includes statically-allocated ones), which are not directly related to spam, and there is no evidence in MAPS archives of any such address having been used to relay spam. DUL's purpose was to educate users to relay mail through an acknowledged ISP, rather than running their own mail servers. Doing this would bring various advantages and disadvantages; Acknowledged ISPs can, in general, afford to monitor their systems more thoroughly in order to avoid viruses, hijackers and similar threats. Furthermore, it paves the way for effectively exploiting policies like SPF, which rely upon end-user
SMTP The Simple Mail Transfer Protocol (SMTP) is an Internet standard communication protocol for electronic mail transmission. Mail servers and other message transfer agents use SMTP to send and receive mail messages. User-level email clients ty ...
authentication in order to block ''email address abuse''. But it also prevents users of their own domain to publish a proper SPF policy. In addition, ISP email relays are incompatible with fine-grained IP address blocking: if they relay spam and get blocked, it affects all users. MAPS fails to disambiguate the concepts of ''acknowledged ISP'' versus ''end-users of IP addresses'' with a formal definition. While it may be relatively straightforward to recognize ISPs who are network providers, mailbox providers are easily confused with end-users of different kinds. When coupled with the ability to easily whitelist IPs by
local Internet registry A regional Internet registry (RIR) is an organization that manages the allocation and registration of Internet number resources within a region of the world. Internet number resources include IP addresses and autonomous system (AS) numbers. ...
/region to correct obvious shortcomings, using the DUL to block mail may result in an obscure policy that jeopardizes the global reliability of email delivery. It generates an amount of false positives much higher than MAPS claims to be aware of, blocking many legitimate websites and end users, and yet catching only an estimated 2% of spam. This study, however, was done in 2002, and involved only the RBL, not the DUL. Looking at more current results, over the last 10 years shows that the DUL is responsible for blocking the majority of spam messages. The DUL mostly stops compromised end-user machines (and routers) from being abused to send spam. The following table shows these results, as percentage of spam blocked.


See also

* Email spam *
Anti-spam techniques Various anti-spam techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) as opposed to ...
*
Comparison of DNS blacklists __NOTOC__ The following table lists technical information for assumed reputable DNS blacklists used for blocking spam. Notes "Collateral listings"—Deliberately listing non-offending IP addresses, in order to coerce ISPs to take action agains ...


References

{{Reflist


External links


Main MAPS page
Spam filtering