1. Okopipi will not DDoS. Nor will it engage in any other illegal or harmful attack on the spammer.

2. The program does not go after the spammer, but the website that is advertised. The spammer is impossible to find, but the website is public. It has to be.

3. This is roughly how the program functions:

- After a number of spam messages for one website are reported, the owner of the website receives one request to remove Okopipi members from his mailing list.

- After ten days (in compliance with the CAN-SPAM act) have passed, if the same website is still being advertised, the website owner receives one opt-out request for every spam mail reported.

- To avoid bringing down the server, the opt-outs are throttled in their frequency.