Outbound SMTP Proxy? - Jon Galloway

Outbound SMTP Proxy?

The company I'm working at is having to go through each application that sends e-mails and verify compliance with CAN SPAM. One of the requirements is a corporate opt out system that ensures once someone has opted out, they will never get an e-mail from you again.

That can be tricky - say someone opts out of a newsletter you send. A year later, an employee sees your message board post asking for help with something that your product happens to do. The employee sends them an e-mail from Outlook, and BLAMO, you've just violated CAN SPAM (I think - IANAL).

So, I was thinking some smart person should write an SMTP proxy that verifies the recipient is not on the opt out list before sending the e-mail. Then you'd just need to do a DNS swap (mail.corporation.com becomes filteredmail.corporation.com, and the SMTP proxy is the new mail.corporation.com) and all your e-mail would automatically be filtered. The SMTP proxy would just need to be able to relay messages to the real SMTP service and to be able to read a few common data / file formats (SQL Server, XML, CSV, etc.).

That's not what we're doing - we're going through each application. Argh.

(lazyweb.org trackback)

Published Sunday, April 18, 2004 12:22 AM by Jon Galloway
Filed under:

Comments

# SMTP Proxy

SMTP Proxy

Tuesday, April 20, 2004 3:48 AM by TrackBack

# re: Outbound SMTP Proxy?

If someone mails you asking for support then I fail to see how you could be breaching CAN SPAM as they have initiated the discussion and requested the email, but what do I know ;)

Tuesday, April 20, 2004 4:54 AM by Colin Walker

# re: Outbound SMTP Proxy?

Yep, I think you'd be okay there. In my scenario, if the potential customer posted a message in a newsgroup or something asking the world at large if there are any good components that will color code vowels and your employee e-mails them, that would likely be a violation of CAN SPAM. The reason is that they've said they never want to be solicited for sales from your company, and your employee has unwittingly "disobeyed" their opt-out.

That's based on the "suppression list" part of the law:

(A) IN GENERAL- If a recipient makes a request using a mechanism provided pursuant to paragraph (3) not to receive some or any commercial electronic mail messages from such sender, then it is unlawful -


(i) for the sender to initiate the transmission to the recipient, more than 10 business days after the receipt of such request, of a commercial electronic mail message that falls within the scope of the request;


(ii) for any person acting on behalf of the sender to initiate the transmission to the recipient, more than 10 business days after the receipt of such request, of a commercial electronic mail message with actual knowledge, or knowledge fairly implied on the basis of objective circumstances, that such message falls within the scope of the request;


(iii) for any person acting on behalf of the sender to assist in initiating the transmission to the recipient, through the provision or selection of addresses to which the message will be sent, of a commercial electronic mail message with actual knowledge, or knowledge fairly implied on the basis of objective circumstances, that such message would violate clause (i) or (ii); or


(iv) for the sender, or any other person who knows that the recipient has made such a request, to sell, lease, exchange, or otherwise transfer or release the electronic mail address of the recipient (including through any transaction or other transfer involving mailing lists bearing the electronic mail address of the recipient) for any purpose other than compliance with this Act or other provision of law.


(B) SUBSEQUENT AFFIRMATIVE CONSENT- A prohibition in subparagraph (A) does not apply if there is affirmative consent by the recipient subsequent to the request under subparagraph (A).

Wednesday, April 21, 2004 4:03 AM by Jon Galloway

# http proxy

open site

Sunday, May 28, 2006 5:46 AM by sit

Leave a Comment

(required) 
(required) 
(optional)
(required)