On Friday 18 August 2006 14:52, Paul Hoffman wrote:
It sounds like what you and few other people want is an SSP policy
that says "if you receive a message that is supposedly from this site
(for some definition of "from") and it doesn't have the mark that
says that XYZ is authorized to sign the message, assume the message
is forged". Is that a correct summary of the requirement you see?
I would say that sums it up nicely.
NOTE WELL: This list operates according to