Hallam-Baker, Phillip wrote:
>>This comes back to the subject of publishers specifying the
identities. If, from reading Andy's "toward a compromise" post, we
are going to be selecting algorithms, I think it is very important for
domain owners to either be able to select the identities, or maybe
better, to select the algorithms that they want the MARID data to be
This does not work. The domain owner can't select the algorithm,
only the receiver can decide what checks they are going to apply.
they won't know what the policy is until they check the domain
name in an identity.
The domain owner can let the receiver know that specific fields are to
or not to be relied on for MARID checking. For example, if the domain
owner sends mail with correct 2821 MAIL FROM but uses all kinds of
values for 2822 From header, he wants the ability to let the receiver
know that only 2821 data is to be relied on and not 2822 data.
Otherwise, the receiver may reject his email when the domain owner did
not want to do that.
Yakov Shafranovich / asrg <at> shaftek.org
SolidMatrix Technologies, Inc. / research <at> solidmatrix.com
"Some lies are easier to believe than the truth" (Dune)