EmailSafety.net - The CAN-SPAM Act as a warning

The CAN-SPAM Act as a warning

Anti-Spam Software

What is Spam?

Spam Laws

Spam Facts

User Tips

Common Email Scams

What Are Visuses?

Virus Prevention Tips

Anti-Virus Software

Basic Tips

Recent News

It is widely expected that the new Congress and administration will be passing a lot of regulations to deal with all sorts of perceived problems. It may be that the now 5-year-old CAN-SPAM Act is one of the better examples of what not to do as far as regulations go.

When it was passed, the act (official name: Controlling the Assault of Non-Solicited Pornography and Marketing Act) was touted -- by the politicians at least -- as a tool to help control the growth of spam. Few of us in the tech world thought it would do any good, and in fact, the general feeling was that it was actually designed to legitimize unsolicited e-mail (see "Can: to be enabled by law").

Back in October, Network World's Carolyn Duffy Marsan reviewed the legislation and asked, "What went wrong?" Her article did a good job of covering the act and its status as a failure. It may be, however, that some important lessons were more hinted at than articulated.

The most important lesson is to not let the industry you are claiming to regulate write the regulations. The CAN-SPAM Act was written to legitimize the business of spam, and it was written to satisfy the spammers themselves. A spam-related regulation that really was aimed at providing relief for Internet users would have started with an opt-in requirement -- an opt-in requirement that did not have an exemption for a theoretical previous business relationship.

Related Content

The next most important lesson is to give enforcement to somebody who cares. The Network World article reported that as of a year ago, the Federal Trade Commission had brought about 30 law-enforcement actions. In the face of more than 100 billion spam messages per year, 30 actions barely qualify as a pin prick. It is clear that the FTC either just does not care about the law or has actively decided it should ignore spam. (Along the same line, it might not be a good thing for federal regulations to override stronger state regulations.)

Yet another important lesson is that legislation should address the people who benefit from bad behavior. A far more effective antispam act would have gone after the companies using spam to advertise their wares and services, as well as after the ISPs supporting the spammers.

Having an antispam act that really was designed to fight spam would not have stopped it, but in looking at what happened when McColo was taken down last November (see "The spam problem was mostly solved last Tuesday"), one can see what could have happened if there had been a concerned enforcement agency and a law that went after spam supporters.

Recent News:

· Feds draw a bead on Russian behind Mega-D botnet
· Ransomware Attack Resurfaces to Hold Files Hostage
· Adobe Reader X Makes PDF Files Safer
· PayPal Users Beware of Holiday Phishing Scam
· McAfee Reports Malware at All-Time High

Site Map | Recent News | Related Sites