Re: not really to do with Re: WG Review: Domain-based Message Authentica

Of course people will suggest that we validate the personal name information. 
Because at the end of the
day, spoofing is trying to make me believe that the message comes from "my 
friend Viktor" when in fact it
does not. We may have perfect SPF, DKIM, DMARC and what have you, and still 
get spoofed messages "From:
Viktor Dukhovni <viktor(_at_)dukhovni(_dot_)throwawaydomain(_dot_)biz>."


You know, that's what S/MIME with signed certificates is supposed to
do.  It's widely supported in MUAs and, well, meh.

R's,
John

<Prev in Thread]	Current Thread	[Next in Thread>
Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), (continued) Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), John Levine Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Viktor Dukhovni Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Niels Dettenbach (Syndicat IT&Internet) Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Scott Kitterman Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Dave Crocker Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Scott Kitterman Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Hector Santos Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), t.p. Re: really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Alessandro Vesely RE: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Christian Huitema Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), John Levine <= Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), John Levine Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Scott Kitterman Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Murray S. Kucherawy Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Scott Kitterman Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), ned+ietf Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Pete Resnick Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Dave Crocker Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Hector Santos Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), Douglas Otis Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc), S Moonesamy

Re: not really to do with Re: WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc)