US House, Senate Agree on Anti-Spam Bill 448
Folic_Acid writes "Rep. Billy Tauzin, chairman of the House Energy and Commerce committee, has announced that the House and the Senate have reached a deal to both pass an anti-spam bill, the first ever federal anti-spam law in the United States. Specifically, the law contains: opt-out, authority for the FTC to set up a "Do-Not-SPAM" registry, criminal charges for fraudulent spam, including five years in prison, statutory damages of $2 million for violations, tripled to $6 million for intentional violations, unlimited damages for fraud and abuse." News.com has a copy of the bill and a story.
more of the same (Score:5, Informative)
At this point, the only way you can realistically take action against a spammer based on these laws is by printing them out, finding the spammer and then hitting him over the head with the actual laws. Law enforcement agencies and district attorneys have repeatedly demonstrated an apathy towards pursuing and prosecuting spammers. The FBI has a monetary threshold of damages on any case of this nature it even elects to investigate. There are virtually no resources dedicated to enforcing this bill and there are no competent agencies available to even investigate! Please send a message to your political leaders that enforcement and not more laws are key to dealing with this problem.
The law looks good, but without dedicated provisions and a change in policy which will actually insure that these issues will be enforced, this is just a joke.
Re:SPAM fines (Score:3, Informative)
This is to be consitent with DMCA's safe-harbor (Score:5, Informative)
From keytlaw [keytlaw.com]
The simplest, cheapest and best way a web site owner may protect against liability for copyright infringement resulting from users' uploaded content is to comply with the safe harbor provisions of the Digital Millennium Copyright Act. Web site owners who comply with the requirements of the DMCA and who take appropriate action after receiving notice of copyright infringement from a copyright owner, will not be liable for money damages for users' uploaded content.
The closest distance between two points is a tunnel
- Lyndon Johnson.
Most spam *IS* from the USA (Score:5, Informative)
Have a quick scan down the list of countries...
Simon
It's better than nothing (Score:3, Informative)
Then they'll argue that the spammers will move their mail servers to another country. So what? If the company doing business is still located in the U.S., the anti-spam laws will apply. I already block China and South Korea. I'm damn close to blocking Brazil. If the spammers move, it will be easier to block them.
Then they'll say the spammers will move their entire business to another country. Hell, that works for me. Maybe they'll move to the next country on the anti-terrorism hit list.
As for the idiots saying spam is protected by the Constutition. Bzzt! Wrong! Your right to free speech does not extend to breaking into my home to set up your soap box. Your right to free speech does not give you the right to make me pay to listen. Your right to free speech does not continue when I tell you to shut up and get the hell out of my house, nor does it mean you can sneak back in the next day to make me listen yet again.
That's the wrong bill (Score:2, Informative)
The term ''commercial electronic mail message'' means any electronic mail message the primary purpose of which is the commercial advertisement or promotion of a commercial product or service (including content on an Internet website operated for a commercial purpose).
Re:Unlimited damages (Score:1, Informative)
Basically, "because your violation of the NDA might cause damages that money alone can't fix...blah blah blah...you agree that a judge should grant us an immediate injunction against you if we believe you're in violation of this agreement."
Normally the judge would have to find that (a) the plaintiffs are likely to win the case, and (b) the activity in question is likely to cause irreparable harm to the plaintiff. This clause shortcircuits that test. Basically, they go to a judge, file their motion indicating how they feel you are violating the NDA, and the judge (if he believes them) can grant the injunction (barring you from doing further business with whatever is being disputed) without having to find (b), which can sometimes be hard to prove.
Re:Another attempt to kill capitalism (Score:4, Informative)
Spam will NOT be profitable if it generates NOISE. In order for Spam to work, it must leave behind a point of contact of some sort. If we collectively fill that point of contact with JUNK responses, spam will disappear because it cost MORE to the spammers than it is worth. Imagine a spammer having to sort through millions of fake responses to find the one that is legit?
That is how spam will be defeated.
Re:Finally! (Score:3, Informative)
However, I'd say that at least 60% comes from within the US (and yes, I'm in the US.)
I don't think legislation is a magic bullet, but it may just help. Certainly, the `do not call' lists have reduced the telemarking phone calls we receive by over 95%.
Re:The RIAA/MPAA has their mitts in this one too! (Score:3, Informative)
Last time I checked, the only way to be sure was to send a registered letter via the USPS. E-Mail is not a very reliable delivery mechanism, certainly not good enough for sending legal notices. I doubt such an E-Mail would hold up in a court of law, should a lawsuit be filed with just E-Mail notifications, so it's kind of pointless to be sending them.
Re:Finally! (Score:1, Informative)
U.S.
Almost every big time profitable spammer I've heard tracked down has been in the U.S., except one Aussie. They use a lot of off-shore computers, thanks to proxies. I want to see one spammer go to jail. Most are breaking computer security and fraud laws, yet all the ever get is civil penalties. Put a few in jail and you'll see spam drop very fast.
Re:Finally! (Score:1, Informative)
And where are the businesses that the spam advertises for?
Think about it.
Wouldn't most people be less likely to buy things from some random place in Nigeria, or at the very least wouldn't the the foreign placement of the business arouse some suspicion?
Not to mention overseas shipping charges.
Re:How? (Score:3, Informative)
Really? Filters perhaps, but certainly not anything fundamental at the protocol level.
The simplest and most backwards compatible approaches under consideration are IP-number-based sender authentication. These don't require any significant changes to SMTP/ESMTP, and they can be adopted gradually and interoperate with systems not yet deploying them. SPF [pobox.com] is probably one most likely to be adopted. The basic idea is to provide a mechanism for a receipient to check if the IP number of the transmitting SMTP server is one of the IP numbers authorized to transmit messages for that domain (existing MX records only tell you the IP number which is to receiving incoming messages).
But there has been considerable resistance to even these relatively simple, very compatible, easily implemented ideas.
The ugly truth is that LOTS of legitimate email takes advantage of SMTP's complete lack of sender authentication. Adding even very simple and relatively weak sender authentication is going to create a LOT of pain for everyone with improperly configured outgoing mail, and for message forwarding.
Re:more of the same (Score:3, Informative)
Basically because it's a federal law. This means all of the issues of jurisdiction that the state laws face are gone. There are certainly lots of issues left, but having some sort of federal law is a big step IMO.
(I haven't read this particular law yet, since its 55 pages long)
Opt-out and Do Not email l Lists don't work (Score:2, Informative)
As far as the effectiveness of asking spammers to "remove" email addresses, we have done some study on the matter. Below is a partly snipped declaration I made regarding some Florida spammers who use "remove" requests as a source to harvest new requests.
You can imagine once spammers all go to internationally registered and thus untraceable domain names tracking this sort of trickery will become tougher. We tell our users that we know from first hand experience that responding to and attempting to opt out of spammers lists are a bad idea. This law is just a license to spam.
Hasn't passed the House yet. Call Congress now. (Score:5, Informative)
This bill could still die. Call your Congressional office. [house.gov] The staff is still there, very tired, and answering the phone.