<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:x="urn:schemas-microsoft-com:office:excel" xmlns:p="urn:schemas-microsoft-com:office:powerpoint" xmlns:a="urn:schemas-microsoft-com:office:access" xmlns:dt="uuid:C2F41010-65B3-11d1-A29F-00AA00C14882" xmlns:s="uuid:BDC6E3F0-6DA3-11d1-A2A3-00AA00C14882" xmlns:rs="urn:schemas-microsoft-com:rowset" xmlns:z="#RowsetSchema" xmlns:b="urn:schemas-microsoft-com:office:publisher" xmlns:ss="urn:schemas-microsoft-com:office:spreadsheet" xmlns:c="urn:schemas-microsoft-com:office:component:spreadsheet" xmlns:odc="urn:schemas-microsoft-com:office:odc" xmlns:oa="urn:schemas-microsoft-com:office:activation" xmlns:html="http://www.w3.org/TR/REC-html40" xmlns:q="http://schemas.xmlsoap.org/soap/envelope/" xmlns:rtc="http://microsoft.com/officenet/conferencing" xmlns:D="DAV:" xmlns:Repl="http://schemas.microsoft.com/repl/" xmlns:mt="http://schemas.microsoft.com/sharepoint/soap/meetings/" xmlns:x2="http://schemas.microsoft.com/office/excel/2003/xml" xmlns:ppda="http://www.passport.com/NameSpace.xsd" xmlns:ois="http://schemas.microsoft.com/sharepoint/soap/ois/" xmlns:dir="http://schemas.microsoft.com/sharepoint/soap/directory/" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:dsp="http://schemas.microsoft.com/sharepoint/dsp" xmlns:udc="http://schemas.microsoft.com/data/udc" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:sub="http://schemas.microsoft.com/sharepoint/soap/2002/1/alerts/" xmlns:ec="http://www.w3.org/2001/04/xmlenc#" xmlns:sp="http://schemas.microsoft.com/sharepoint/" xmlns:sps="http://schemas.microsoft.com/sharepoint/soap/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:udcs="http://schemas.microsoft.com/data/udc/soap" xmlns:udcxf="http://schemas.microsoft.com/data/udc/xmlfile" xmlns:udcp2p="http://schemas.microsoft.com/data/udc/parttopart" xmlns:wf="http://schemas.microsoft.com/sharepoint/soap/workflow/" xmlns:dsss="http://schemas.microsoft.com/office/2006/digsig-setup" xmlns:dssi="http://schemas.microsoft.com/office/2006/digsig" xmlns:mdssi="http://schemas.openxmlformats.org/package/2006/digital-signature" xmlns:mver="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns:mrels="http://schemas.openxmlformats.org/package/2006/relationships" xmlns:spwp="http://microsoft.com/sharepoint/webpartpages" xmlns:ex12t="http://schemas.microsoft.com/exchange/services/2006/types" xmlns:ex12m="http://schemas.microsoft.com/exchange/services/2006/messages" xmlns:pptsl="http://schemas.microsoft.com/sharepoint/soap/SlideLibrary/" xmlns:spsl="http://microsoft.com/webservices/SharePointPortalServer/PublishedLinksService" xmlns:Z="urn:schemas-microsoft-com:" xmlns:st="" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
        {font-family:"Cambria Math";
        panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
        {font-family:Calibri;
        panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
        {margin:0cm;
        margin-bottom:.0001pt;
        font-size:11.0pt;
        font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
        {mso-style-priority:99;
        color:blue;
        text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
        {mso-style-priority:99;
        color:purple;
        text-decoration:underline;}
span.EstiloDeEmail17
        {mso-style-type:personal-compose;
        font-family:"Calibri","sans-serif";
        color:windowtext;}
span.mediumtext1
        {mso-style-name:medium_text1;}
span.longtext1
        {mso-style-name:long_text1;}
.MsoChpDefault
        {mso-style-type:export-only;}
@page Section1
        {size:612.0pt 792.0pt;
        margin:70.85pt 3.0cm 70.85pt 3.0cm;}
div.Section1
        {page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=PT-BR link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'>Follows
the description of an effort among ISPs and CPs in Brazil to foster Internet
security. Other countries have already done that. <o:p></o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'><o:p> </o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'>I think that
we could mention also that a faster pace of DNSSEC adoption would increase
security, DNS wise. But Internet security is a much broader issue that requires
coordinated efforts in many areas and by different actors, many beyond the
scope of ICANN.<o:p></o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'><o:p> </o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'>Brazilian
ISPs and connectivity operators are working together in implementing port 25 management.
</span></span><span class=longtext1><span lang=EN-US style='font-size:10.0pt;
font-family:"Arial","sans-serif";color:black;background:#EBEFF9'>The adoption
will be gradual and a schedule is being accompanied by a working group
coordinated by CGI.br, which comprises telecommunications operators, Anatel,
ISPs and associations representing these sectors.</span></span><span
class=longtext1><span lang=EN-US style='font-size:10.0pt;font-family:"Arial","sans-serif";
color:black;background:white'><o:p></o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'><o:p> </o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'>What is port
25 management?<br>
Is the set of actions to separate submission of e-mails by one user from the transport
of messages between email servers.<o:p></o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt'><o:p> </o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'>How is
this separation of functions done?</span></span><span class=longtext1><span
lang=EN-US style='font-size:10.0pt'><br>
</span></span><span class=longtext1><span lang=EN-US style='font-size:10.0pt;
font-family:"Arial","sans-serif";color:black;background:white'>The submission
of e-mails, done via mailer software such as Thunderbird and Outlook, shall be
made by a unique port for this purpose: the 587/TCP with authentication. But the
transport is still done via 25/TCP.<o:p></o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'><o:p> </o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'>How this
prevents spam?</span></span><span lang=EN-US style='font-size:10.0pt;
font-family:"Arial","sans-serif";color:black;background:white'><br>
<span class=longtext1>When users adopt port 587/TCP, the operator (ADSL, cable,
3G, etc.) will be able to filter traffic directed to port 25/TCP. Thus, legitimate
mails, which use port 587, are not affected. But the spam that is sent by
infected machines (botnets) directly to e-mail servers (port 25), will be
blocked and will not leave the network.<o:p></o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'><o:p> </o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'>A spammer
cannot send emails via port 587/TCP?<br>
Yes, but the transmission has to be authenticated, making it traceable and
allows the application of other preventive measures by the e-mail service provider.<o:p></o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'><o:p> </o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'>But if
there are spam filters, what are the advantages of this action?</span></span><span
lang=EN-US style='font-size:10.0pt;font-family:"Arial","sans-serif";color:black;
background:white'><br>
<span class=longtext1>Prevent spam from leaving the infected machine’s network.
This avoids bandwidth waste and prevents the paying by the spammer’s victim
user for sending spurious messages. The email servers are also less loaded,
increasing the quality of service.<o:p></o:p></span></span></p>
<p class=MsoNormal><span class=longtext1><i><span lang=EN-US style='font-size:
10.0pt;font-family:"Arial","sans-serif";color:black;background:white'><o:p> </o:p></span></i></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal>Jaime Wagner<br>
<span style='font-size:7.5pt;font-family:"Arial","sans-serif"'>CGI (Comitê
Gestor da Internet no Brasil)<br>
Representante dos Provedores de Acesso e Conteúdo</span><br>
<span lang=DE style='font-size:7.5pt;font-family:"Arial","sans-serif"'><a
href="mailto:jaime@corp.plugin.com.br"><span style='color:blue'>jaime</span></a><a
href="mailto:jaime@cgi.br"><span style='color:blue'>@cgi.br</span></a></span><span
lang=DE style='font-size:10.0pt;font-family:"Arial","sans-serif"'> </span><span
lang=DE style='font-size:7.5pt;font-family:"Arial","sans-serif"'> (51)8126-0916<br>
</span><u><span style='font-size:7.5pt;color:#0000CC'>j.w@gner.net.br</span></u><o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
</div>
</body>
</html>