Why Use the ERC's Own E-mail?
Originally Posted: Feb 26, 2010
It is very important for the ERC to use its own email system for many reasons, a few of which are these:
eMail accounts for ATT net cannot be set up on the ERC's server-- doing so violates certain Internet Protocols like *DomainKeys and *SPF and will result in not only nullifying any attempt toward Anonymity but is one of the best ways to get the ERC website listed as a spammer source.
Many email routers (relayers) will block emails claiming to originate from the ERC website, while the headers of the email (hidden code attached to emails) show that the email originated in fact from another source. Forwarding emails in this fashion often fails-- leaving the possibility for a cry of help from someone seeking Recovery never reaching you.
Secure encrypted communication is not possible except by using the ERC's own mail system.
Having an email address that is different from your own website is considered shabby and very possibly shady (as in internet schemes and scams) and any potential contributor to your cause who takes the time to have those things looked at before investing will likely donate to some other cause. I know this is true-- I do website investigations for charity donors and others from time to time. I also know that the ERC has lost at least three significant donors in the past year because of what we are explaining right here.
**Update: Since the original date of this post, federal as well as state laws have been enacted concerning spam and Phishing. If the incident which led to the "ERC Disclaimer" link on the main page of this site were to happen now, anyone in violation of these laws and protocols could be held legally liable.
I'm sure you know what "Phishing" is-- for those who don't know, it is usually someone who tries to pose as your bank and forges a phony URL in an email in order to get user names and passwords etc. Security software on your PC detects this only about half the time.
Now, if you got an email from a scammer posing as your bank and asking for info to "confirm" your account, for example, and his email address was not from your bank, you should get very suspicious. But the ERC, for some inexplicable reason that completely escapes me, seems to think it is still okay for them to use email that does not come from or go to their own website. This is inexcusable, and a potentially serious legal issue.
I would be absolutely irresponsible as webmaster if I did not warn about this issue.
It means absolutely nothing that the ERC is registered with ATT as "Empire Hotel EHARC Inc" -- that has nothing to do with your website! The ATT connection is as an Internet Service Provider (ISP) which only allows you to connect to the internet and nothing more. I am not going into the rules, regulations and laws regarding this-- you can take my word for it or you can "lump it". The fact is that empirerecovery.org is the legal domain name, and where the origin and emission of emails should be. A web domain and an ISP are two different things.
*DomainKeys: DomainKeys is an e-mail authentication system that allows for incoming mail to be checked against the server it was sent from to verify that the mail has not been modified. This ensures that messages are actually coming from the listed sender and allows abusive messages to be tracked with more ease.
*SPF: SPF will specify which machines are authorized to send email from your domain(s). This means that only mail sent through the ERC mail server will appear as valid mail from your domain(s) when the SPF records are checked.