- M3AAWG Messaging playlist on YouTube
- Selected Training Videos (also available on www.youtube.com/maawg)
- Selected Keynote Videos (also available on www.youtube.com/maawg)
1
Below are the M3AAWG published materials related to our messaging anti-abuse work. There is also a Messaging video playlist on our YouTube channel at www.youtube.com/maawg and there are a few selected videos on our website in the Training Videos and Keynotes Videos sections under the Meetings menu tab.
Best Practices
PDF
June 08, 2010
MAAWG Overview of DNS Security - Port 53 Protection
This paper briefly discusses how an DNS attack works, the impact of this threat, proposes a solution and discusses the advantages and disadvantages from a technical, business and regulatory standpoint
HTML
July 01, 2009
M3AAWG Common Best Practices for Mitigating Large Scale Bot Infections in Residential Networks
Note: This M3AAWG best practices paper has been replaced by RFC 6561 Remediation of Bots in ISP Networks, March 2012 from the IETF.
PDF
April 01, 2009
Configuring Human Readable Delivery Status Notifications (DSN)
A discussion on improving non-deliverability status notices to better identify abuse issues
PDF
December 01, 2005
Managing Port 25 for Residential or Dynamic IP Space Benefits of Adoption and Risks of Inaction
Recommendations include blocking unauthorized access to and from port 25, requiring authentication, and aggregating email traffic through a SMTP server that is controlled by the service provider
PDF
January 02, 2005
MAAWG Code of Conduct for Messaging System Operators
Outlines a voluntary set of principles for messaging system operators that discourages bulk messaging abuse of peer-to-peer messaging platforms
Pages
Public Policy Comments
September 17, 2010
MAAWG Comments on Department of Commerce Cybersecurity, Innovation and the Internet Economy
MAAWG comments were submitted to the Department of Commerce’s request in September 2010. The DoC site has all submitted comments.
The Department of Commerce’s Internet Policy Task Force undertook a comprehensive review of the nexus between cybersecurity challenges in the commercial sector and innovation in the Internet economy. The Department was seeking comments on measures to improve cybersecurity while sustaining innovation.
July 19, 2010
MAAWG Response to National Strategy for Trusted Identities in Cyberspace
MAAWG offered comments on the U.S. Department of Homeland Security’s strategy in July 2010
The U.S. Department of Homeland Security’s draft plan is focused on maintaining a secure cyberspace, which is critical to the health of the economy and national security. It outlines how the federal government might address the recent and alarming rise in online fraud, identity theft, and misuse of information online.
March 31, 2010
MAAWG Comments on ARIN Draft Policy 2010-3 “Customer Confidentiality”
MAAWG submitted comments in March 2010. As recommended by MAAWG and others, ARIN changed course on this topic.
The initial draft policy would have allowed ISPs to hide the true customer of a domain name. The revised Version 2 policy that was implemented recognized the need for the customer name to remain in the SWIP and RWHOIS information.
Pages
M3AAWG Reports
DM3Z Blog
Updates and Commentary from the Messaging, Malware and Mobile Anti-Abuse Working Group
There is no blog posts.
Pages
News
Articles About M3AAWG
URL
November 13, 2017
Hackers Shut Down ProPublica’s Email For a Day. Here’s How to Stop Attacks Like That.
ProPublica's Julia Angwin augments her earlier "list bomb" article with information on what can be done to prevent these attacks.
URL
November 09, 2017
How Journalists Fought Back Against Crippling Email Bombs
ProPublica journalist Julia Angwin describes how she and colleages were "list bombed" and talks about the growing problem, including a preventive strategy developed by M3AAWG.
Videos
