ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: pros and cons of RMX (Re: [Asrg] Declaration to the world)

2003-03-06 14:25:31
from [Hallam-Baker, Phillip] [Permanent Link] 
Adam,

Paul kindly forwarded me a copy of his paper he sent out last year 
which addresses the issue you raise.

The security hole can be eliminated with a simple nonce scheme, see
my earlier post.

        Phill


-----Original Message-----
From: Adam Back [mailto:adam(_at_)cypherspace(_dot_)org]
Sent: Thursday, March 06, 2003 3:46 PM
To: Hallam-Baker, Phillip
Cc: Hadmut Danisch; asrg(_at_)ietf(_dot_)org; Adam Back
Subject: Re: pros and cons of RMX (Re: [Asrg] Declaration to 
the world)


Phil wrote:

[...] If DNS is broken we can fix it for this application.


That was my request: 

- RMX proposers should demonstrate fixes to it's security problems

- the deployment of any fixes to DNS should be considered part of the
deployment picture for RMX

(Deployment being probably the biggest challenge with any anti-spam
solution.)

Adam

Attachment: mailfrom.txt
Description: Text document

[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] Do we need to do anything?, Nate W
Next by Date:  Re: [Asrg] Do we need to do anything?, Matt Sergeant
Previous by Thread:  Re: pros and cons of RMX (Re: [Asrg] Declaration to the world), Keith Moore
Next by Thread:  RE: pros and cons of RMX (Re: [Asrg] Declaration to the world), Jonathan Wilkins
Indexes:  [Date] [Thread] [Top] [All Lists]