Follows
the description of an effort among ISPs and CPs in Brazil to foster Internet
security. Other countries have already done that.
I think that
we could mention also that a faster pace of DNSSEC adoption would increase
security, DNS wise. But Internet security is a much broader issue that requires
coordinated efforts in many areas and by different actors, many beyond the
scope of ICANN.
Brazilian
ISPs and connectivity operators are working together in implementing port 25 management.
The adoption
will be gradual and a schedule is being accompanied by a working group
coordinated by CGI.br, which comprises telecommunications operators, Anatel,
ISPs and associations representing these sectors.
What is port
25 management?
Is the set of actions to separate submission of e-mails by one user from the transport
of messages between email servers.
How is
this separation of functions done?
The submission
of e-mails, done via mailer software such as Thunderbird and Outlook, shall be
made by a unique port for this purpose: the 587/TCP with authentication. But the
transport is still done via 25/TCP.
How this
prevents spam?
When users adopt port 587/TCP, the operator (ADSL, cable,
3G, etc.) will be able to filter traffic directed to port 25/TCP. Thus, legitimate
mails, which use port 587, are not affected. But the spam that is sent by
infected machines (botnets) directly to e-mail servers (port 25), will be
blocked and will not leave the network.
A spammer
cannot send emails via port 587/TCP?
Yes, but the transmission has to be authenticated, making it traceable and
allows the application of other preventive measures by the e-mail service provider.
But if
there are spam filters, what are the advantages of this action?
Prevent spam from leaving the infected machine’s network.
This avoids bandwidth waste and prevents the paying by the spammer’s victim
user for sending spurious messages. The email servers are also less loaded,
increasing the quality of service.
Jaime Wagner
CGI (Comitê
Gestor da Internet no Brasil)
Representante dos Provedores de Acesso e Conteúdo
jaime@cgi.br (51)8126-0916
j.w@gner.net.br