At 12:56 -0700 02-08-05, Dan Wing wrote:
As an implementor, there isn't a simple choice of which to implement --
you have to implement both to cover cases of customers that prefer
one over the other.
Is there a co-working problem between S/MINE and PGP?
I guess people can send messages unsing either security
method, and the receiving mailer should then be able
to use the security protocol chosen by the sender?
Why are so few people using either of these security
methods, when they at the same time complain of the
lack of security in e-mail.
This discussion started with a person complaining that
a lot of spams and/or virus messages had been sent
with him as purported sender. Such spamming can only
be avoided if everyone used secure e-mail, and if
everyone refused to handle incoming e-mail which was
not secure.
Perhaps SMTP relayers should be instructed to check
if messages are using PGP or S/MINE, and refuse to
handle them otherwise? Like SMTP relayers five years
ago started refusing to relay mail. That was *very*
effective!
--
Jacob Palme <jpalme(_at_)dsv(_dot_)su(_dot_)se> (Stockholm University and KTH)
for more info see URL: http://www.dsv.su.se/jpalme/