On 9/10/10 2:45 PM, J.D. Falk wrote:
On Sep 9, 2010, at 7:34 PM, John Levine wrote:
any organization that wants to use ADSP should be prepared to bear
the costs of doing so, such as making arrangements for valuable
mail to come from a different domain, as Paypal is doing.
Exactly -- and the RFC agrees.
Its ironic. A mechanism attempting to mitigate phishing, because it
lacks a means to authorize third-party services, recommends the use of
additional domains, where in the case of paypal, this is a cousin
domain. The irony is because confusion regarding cousin domains
significantly reduces the value obtained from email-authentication.
-Doug
_______________________________________________
dkim-ops mailing list
dkim-ops(_at_)mipassoc(_dot_)org
http://mipassoc.org/mailman/listinfo/dkim-ops