Re: [Asrg] RMX provides auth for one-hop only (Re: privacy is a feature)

ietf-asrg

[Top] [All Lists]

<prev [Date] next>

<prev [Thread] next>

Re: [Asrg] RMX provides auth for one-hop only (Re: privacy is a feature)

2003-03-06 14:15:31

from [wayne]

[Permanent Link]

In <20030306193937(_dot_)D4198310(_at_)exeter(_dot_)ac(_dot_)uk> Adam Back 
<adam(_at_)cypherspace(_dot_)org> writes:

Nodes in the received path can lie with RMX or UUCP, I think this is
the point.  Ergo RMX only provides authentication when there is one
hop.


Good point.

But, as long as you can verify the one "important" hop, the RMX thing
can still do it's job.

Barring hacked machines, all hops on the senders internal network can
be trusted, and all hops on the receivers internal network (and
secondary MXs and such) can be trusted.  The important hop is from the
sender's control to the receiver's control.

If there are any other hops between the sender and the receiver, then
there is a problem.  Either the sender is sending it to someplace that
it should have authorized to forward its mail, or the receiver is
receiving email that from a server they trust and the RMX check should
have been done sooner.

Or, am I missing something?


-wayne

_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), (continued) Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Hadmut Danisch Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Keith Moore Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Hadmut Danisch Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Keith Moore Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Hadmut Danisch Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), wayne Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Chris Lewis Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Hadmut Danisch [Asrg] RMX provides auth for one-hop only (Re: privacy is a feature), Adam Back [Asrg] Re: RMX provides auth for one-hop only (Re: privacy is a feature), Chris Lewis Re: [Asrg] RMX provides auth for one-hop only (Re: privacy is a feature), wayne <= Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Roland Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Hadmut Danisch Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Keith Moore Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Adam Back Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Vernon Schryver Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Keith Moore Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), william Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Hadmut Danisch Re: [Asrg] desirable characteristics of source tracking (was: Requirements for source tracking), Eric Brunner-Williams in Portland Maine Re: [Asrg] desirable characteristics of source tracking (was: Requirements for source tracking), Eric Brunner-Williams in Portland Maine

Previous by Date:	Re: [Asrg] Re: DNSSEC has it's own deployment problems (Re: Keith, Hadmut bo th right), Chris Lewis
Next by Date:	RE: Patents (was Re: [Asrg] Time for the ISPs to fight back!), Bob Wyman
Previous by Thread:	[Asrg] Re: RMX provides auth for one-hop only (Re: privacy is a feature), Chris Lewis
Next by Thread:	Re: privacy is a feature (Re: [Asrg] desirable characteristics of source tracking), Roland
Indexes:	[Date] [Thread] [Top] [All Lists]