Tony Finch wrote:
On Thu, 4 Oct 2007, Keith Moore wrote:
the vast majority of domains won't be able to use DKIM without seriously
impairing their users' ability to send mail.
You seem to be assuming that the vast majority of domains have really
shitty message submission servers or connectivity.
It's a combination of several things - one, requiring that a domain
operate its own mail submission servers which sign their mail (and all
that that implies, like maintaining the private keys). Two, many
domains will be too small to develop enough of a reputation to be
whitelisted, and any spammer can create a temporary domain which will
have about as good a reputation as the vast majority of those domains.
Three, as long as people use Windows boxes, spammers will be able to
compromise them and hijack them to use them to originate mail on behalf
of their domains, thus degrading those domains' reputation.
So basically if you're a small domain, you're SOL. If you're a large
domain, people can't afford to blacklist you unless you originate a lot
of spam anyway.
Ietf mailing list