Email Used to Be Simple
Email was created as a simple communication tool: easy, open, and free.
If you had an SMTP server, you could communicate with almost anyone in the world who had an email address. There was almost no approval process. No dashboards. No reputation scores. No five-page setup guides.
The hardest part was figuring out what you wanted to say.
Today, sending even a perfectly normal newsletter can feel like trying to pass airport security with a bottle of water.
Before you send a single message, you need SPF, DKIM, DMARC, reverse DNS, alignment, warmed IPs, monitoring tools, blocklist checks, complaint thresholds, Google Postmaster, Microsoft SNDS, etc, as well as three different people telling you why Gmail put your message in spam while Outlook did not.
And after all that, there is still a good chance something breaks for no obvious reason.
Your emails get delayed or delivered to spam. A mailbox provider suddenly decides that your domain looks “suspicious.”
The fun part is that all of this complexity was introduced for a good reason: to stop spam.
But spam never disappeared. It became more advanced.
Email Freedom
SMTP was never designed around permission. It was designed around communication. If you had a server and an internet connection, you could send a message.
That was the beauty of it. But slowly, without anyone really noticing, email changed.
Today, a handful of companies effectively control whether your message gets seen.
Mailbox providers decide which domains are trusted. Which IPs look suspicious. Which messages are “wanted.” Which ones quietly disappear.
To be fair, some filtering is necessary. Without it, inboxes would become unusable within hours.
The problem is not that these systems exist. The problem is that they are mostly invisible.
A company can do everything right. It can authenticate perfectly, clean its list, send relevant content, follow every best practice and still end up in spam with no real explanation.
There is usually no clear answer. No human to talk to. No real appeal process. For many senders, email no longer feels like an open protocol. It feels like standing outside a locked building, trying to guess which invisible rule you broke.
The Business of Fighting Spam
There is now an entire economy built around the idea of stopping spam. And it is a very profitable one.
There are companies selling:
- – spam filters
- – reputation monitoring
- – inbox placement testing
- – blocklist data
- – DMARC platforms
- – security gateways
- – anti-phishing services
- – compliance tools
- – threat intelligence feeds
Some of these products are genuinely useful. Some are almost essential.
But there is also an uncomfortable truth hiding in the background:
The email industry has learned how to make money from the existence of spam.
If spam magically disappeared tomorrow, an enormous number of products, vendors, consultants, and services would suddenly have a much smaller reason to exist.
The whole thing starts to feel a bit like airport security. Every year there are more rules. More scanners. More forms. More things you are told to remove from your bag. And yet people still find ways around it.
Professional spammers adapt faster than the system changes. The people who end up carrying most of the cost are not the worst actors. It is the legitimate companies. The businesses trying to do the right thing. The small senders who suddenly need a deliverability consultant just to make sure their monthly newsletter reaches their customers.
Authentication Solved the Wrong Problem
SPF, DKIM, and DMARC absolutely helped. They made it harder to fake someone else’s domain. They reduced obvious phishing. They made email more secure.
But somewhere along the way, the industry started treating authentication as if it were the same thing as trust.
It is not.
Authentication answers one question:
“Is this really coming from the domain it claims to come from?”
It does not answer:
- – Is this sender legitimate?
- – Is this email useful?
- – Did the recipient actually want it?
- – Is this campaign abusive?
A spammer with SPF, DKIM, and DMARC is still a spammer.
In fact, many of the more sophisticated spam operations now look technically better than real businesses.
They have:
- – perfectly configured authentication
- – warmed-up IPs
- – old domains
- – careful complaint management
- – good infrastructure
- – great content
Meanwhile, a real company can make one small mistake like a list upload, a bad campaign, one wrong DNS change and suddenly spend weeks trying to recover.
Somewhere along the way, we started confusing “authenticated” with “good.”
They are not the same thing.
SMTP Became Too Complex for Legitimate Senders
SMTP used to be simple because it was supposed to be simple.
Now, for many companies, sending email feels like running a second business.
You need DNS records. You need reputation monitoring. You need deliverability tools. You need someone who understands Microsoft, someone who understands Gmail, and probably someone whose full-time job is explaining why your open rates suddenly dropped.
What used to be a basic communication tool now often requires:
- – DNS specialists
- – deliverability experts
- – compliance teams
- – security teams
- – consultants
- – monitoring platforms
A small business owner who just wants to send updates to customers suddenly has to learn what SPF alignment means, why their domain is on a blocklist, why Microsoft is deferring their mail, or why Gmail decided their messages belong in Promotions instead of Primary.
The bad actors automate around these problems.
The legitimate senders pay for them.
The Real Problem Is Not Technical
At its core, spam is not really a technical problem. It is an economic one.
Spam exists because it is still profitable. If sending ten million messages costs almost nothing, then even a tiny success rate can make money and as long as that remains true, spam will never disappear.
Authentication, filtering, reputation systems, AI models – all of these things make spam slightly more expensive. But they do not change the underlying equation. The incentives stay the same.
That is why the war on spam always feels endless.
Every year there are more rules. More machine learning. More signals. More layers. And yet somehow, the spam is still there.
The real tragedy is not that we failed to eliminate spam. It is that, in trying to fight it, we slowly turned one of the simplest and most open forms of communication into something complicated, expensive, and controlled.
Email was supposed to be easy and somewhere along the way, we forgot that.