Re: weirdo warning

[Rich Kulawiec <rsk () gsp org>]

On Tue, Jul 14, 2009 at 05:29:00PM +0300, Gadi Evron wrote:
> Rich Kulawiec wrote:
> > The serious part:
> >
> > Wording: the proper term is "confirmed opt-in" -- that is, a confirmation
> > step is used in order to make sure that the person claiming that they want
> > to subscribe is the only person authorized to make such claims, i.e., the
> > owner of the email address in play.  "double opt-in" is spammer-speak,
> > and it's a nonsense phrase besides: there's nothing being done twice.
> > It was coined by spammers (who have also used "triple opt-in" and even
> > "quadruple opt-in") in order to obfuscate their tactics.
>
> But it's clearer?

Your comment certainly isn't clear to me: I don't know what the "it"
you're referring to is. ;-)

But (if I can guess what you're asking me) the acronym COI (confirmed opt-in)
has been in fairly common use for quite some time.  That same acronym has
also been expanded to "closed-loop opt-in", which carries the same meaning
and indicates that affirmitive consent has been secured directly from the
owner of the email address(es) in question.  Among spammers/marketroids,
"double opt-in" often means "entered the same email address twice in the
same form" which of course provides no confirmation of any kind whatsoever.

---Rsk
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.