ietf-822
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-822] one can re-sign without a permission to re-sign header

2014-05-05 22:29:21
from [Hector Santos] [Permanent Link] 
IDEA:  do both

On 5/5/2014 10:41 PM, John R Levine wrote:

You could, but now we're back to whether we believe that list managers
act to keep crud out of their lists.  In general, I observe that they
do, so I don't see any point to adding features that assume that
managers will just sit there and allow subscribers to abuse their
lists.


This sounds a lot like what ATPS turned out to be, except that it
didn't
give much thought to replay protection.  Maybe we can build on that
instead?


I'd rather stick with the whitelists, since they can solve more
problems than the various signtature-transit hacks can.



--
HLS


_______________________________________________
ietf-822 mailing list
ietf-822(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-822
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-822] one can re-sign without a permission to re-sign header, John R Levine
Next by Date:  Re: [ietf-822] WSJ/gmail/ML, was a permission to... (off-topic), S Moonesamy
Previous by Thread:  Re: [ietf-822] one can re-sign without a permission to re-sign header, John R Levine
Next by Thread:  Re: [ietf-822] one can re-sign without a permission to re-sign header, Murray S. Kucherawy
Indexes:  [Date] [Thread] [Top] [All Lists]