Re: (DMARC) Why mailing lists are only sort of special

ietf

Re: (DMARC) Why mailing lists are only sort of special

2014-04-17 17:21:10

Dave Cridland <dave(_at_)cridland(_dot_)net> wrote:
    > Right now, my MUA treats this as a message "From John R Levine 
<johnl(_at_)taugh(_dot_)com
    >> ". This means that any policy on the message origination comes from 
looking
    > solely at the taugh.com domain. We'll pretend it has a DMARC policy. 
Herein
    > lies the Yahoo/DMARC issue, because unless your policy essentially 
stipulates
    > that the IETF is allowed to spoof you, we're stuck.

If, when sending to ietf(_at_)ietf(_dot_)org, taugh.com knew that it was a 
mailing list,
then it could include, in the message, a signed delegation saying that it was
okay for *this message* for ietf.org to impersonate him.

This is a simple application of cryptographic methods.  Keynote and SPKI
(and I think SASL) define ways to do this.

--
Michael Richardson <mcr+IETF(_at_)sandelman(_dot_)ca>, Sandelman Software Works
 -= IPv6 IoT consulting =-

pgpI8ZmBF85GH.pgp
Description: PGP signature

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: (DMARC) We've been here before, was Why mailing lists, (continued) Re: (DMARC) We've been here before, was Why mailing lists, Theodore Ts'o Re: (DMARC) We've been here before, was Why mailing lists, John Levine Re: (DMARC) Why mailing lists are only sort of special, John Levine Re: (DMARC) Why mailing lists are only sort of special, Dave Cridland Re: (DMARC) Why mailing lists are only sort of special, Yoav Nir Re: (DMARC) Why mailing lists are only sort of special, Martin Rex Re: (DMARC) Why mailing lists are only sort of special, Yoav Nir RE: (DMARC) Why mailing lists are only sort of special, MH Michael Hammer (5304) Re: (DMARC) Why mailing lists are only sort of special, Miles Fidelman Re: (DMARC) Why mailing lists are only sort of special, Dave Cridland Re: (DMARC) Why mailing lists are only sort of special, Michael Richardson <= Re: (DMARC) Why mailing lists are only sort of special, Murray S. Kucherawy Re: DMARC: perspectives from a listadmin of large open-source lists, Doug Barton Message not available RE: DMARC: perspectives from a listadmin of large open-source lists, S Moonesamy Re: DMARC: perspectives from a listadmin of large open-source lists, Miles Fidelman Re: DMARC: perspectives from a listadmin of large open-source lists, S Moonesamy Re: DMARC: perspectives from a listadmin of large open-source lists, Scott Kitterman Re: DMARC: perspectives from a listadmin of large open-source lists, Murray S. Kucherawy Re: DMARC: perspectives from a listadmin of large open-source lists, Miles Fidelman Re: DMARC: perspectives from a listadmin of large open-source lists, Miles Fidelman Re: DMARC: perspectives from a listadmin of large open-source lists, Murray S. Kucherawy

Previous by Date:	Re: Gen-ART review of draft-ietf-bfd-mib-17, Jeffrey Haas
Next by Date:	Re: Gen-ART review of draft-ietf-bfd-mib-17, Sam K. Aldrin
Previous by Thread:	Re: (DMARC) Why mailing lists are only sort of special, Dave Cridland
Next by Thread:	Re: (DMARC) Why mailing lists are only sort of special, Murray S. Kucherawy
Indexes:	[Date] [Thread] [Top] [All Lists]