<html><body><span style="font-family:Verdana; color:#000; font-size:12pt;"><div style="color: rgb(0, 0, 0); font-size: 12pt;">So an admin sets their email to "<a href="mailto:Fred@hotmail.com">Fred@hotmail.com</a>" and it passes, because hotmail has a valid email server and its "syntax" is correct?</div><div style="color: rgb(0, 0, 0); font-size: 12pt;"><span style="font-size: 12pt;" mce_style="font-size: 12pt;"><br></span></div><div style="color: rgb(0, 0, 0); font-size: 12pt;"><span style="font-size: 12pt;" mce_style="font-size: 12pt;">It can be validated as human by CAPTCHA:</span></div><div style="color: rgb(0, 0, 0); font-size: 12pt;"><span style="font-size: 12pt;" mce_style="font-size: 12pt;"><br></span></div><div style=""><span style="font-size: 12pt;" mce_style="font-size: 12pt;"><a href="https://en.wikipedia.org/wiki/CAPTCHA">https://en.wikipedia.org/wiki/CAPTCHA</a></span></div><div style=""><span style="font-size: 12pt;" mce_style="font-size: 12pt;"><br></span></div><div style=""><span style="font-size: 12pt;" mce_style="font-size: 12pt;">The current wording is wasting everyone's time, and seriously, does it need a change in policy if it's implemented as is? How does it change a single thing?</span></div><div style=""><span style="font-size: 12pt;" mce_style="font-size: 12pt;"><br></span></div><div style="color: rgb(0, 0, 0); font-family: verdana, geneva; font-size: 12pt;"><br></div>
<blockquote id="replyBlockquote" webmail="1" style="color: black; font-family: verdana; font-size: 10pt; border-left: 2px solid blue; margin-left: 8px; padding-left: 8px;">
<div id="wmQuoteWrapper">
-------- Original Message --------<br>
Subject: Re: [anti-abuse-wg] Decision on Proposal 2017-02 & Next Steps<br>
From: Janos Zsako <<a href="mailto:zsako@iszt.hu">zsako@iszt.hu</a>><br>
Date: Wed, March 14, 2018 11:29 pm<br>
To: Name <<a href="mailto:phishing@storey.xxx">phishing@storey.xxx</a>>, <a href="mailto:anti-abuse-wg@ripe.net">anti-abuse-wg@ripe.net</a><br>
<br>
Dear Anonymous "Name",<br>
<br>
> How do you check the email address is valid if you don't email it?<br>
> <br>
> <a href="https://www.ripe.net/participate/policies/proposals/2017-02">https://www.ripe.net/participate/policies/proposals/2017-02</a><br>
<br>
I think the NCC will be able to tell more details when the plans are ready.<br>
<br>
For now, the relevant part is probably:<br>
<br>
> The RIPE NCC will validate the technical parameters of an “abuse-mailbox:” attribute, such as syntax, domain and mail server configuration, to determine if it is correctly configured to receive messages.<br>
<br>
One can determine with a high degree of confidence whether mail sent to a<br>
given address is accepted for delivery by the mail server specified as MX<br>
in the DNS for the given e-mail address. To me it is a good start and<br>
much more than not checking anything.<br>
<br>
One can probably not test whether the accepted mail is indeed delivered<br>
and even less whether is is eventually read by a human. The latter cannot<br>
be checked even if one does send the e-mail and even get a reply (generally<br>
speaking one cannot be certain the response was sent by a human).<br>
<br>
Therefore, I would leave the details to the NCC for now.<br>
<br>
Best regards,<br>
Janos<br>
</div>
</blockquote></span></body></html>