ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Asrg] Re: message-body-authenticator

2004-03-28 14:10:38
from [Yakov Shafranovich] [Permanent Link]
Why is this better than DomainKeys which authenticates the message body against a public key in DNS? In this scheme, a separate MD5 would have to be stored in DNS for every message, with DomainKeys it is enough to store the public key. 

Yakov

Ricardo Dirani wrote:

MBA doesn't fit in MXCOMP. "A mechanism to identify authorized senders for a
domain". Both LMAP and SPF do that. MBA doesn't. MBA identifies if a message
was actually sent by a domain. If MBA works as intended, spammers won't use
it, because by using it, their domains would be promptly recognized and
easily blocked by most mail hosting providers. Assuming MBA is widely
adopted, a picky receiving MTA could choose to only accept mba-authenticated
mails.

Ricardo

----- Original Message -----
From: Yakov Shafranovich <research(_at_)solidmatrix(_dot_)com>
To: Radu Hociung <radu(_dot_)asrg(_at_)ohmi(_dot_)org>
Cc: <spharion(_at_)directnet(_dot_)com(_dot_)br>; <asrg(_at_)ietf(_dot_)org>
Sent: Sunday, March 28, 2004 4:35 PM
Subject: Re: [Asrg] spf




LMAP-related discussions for SPF and other proposals have moved to the
MXCOMP list (http://www.imc.org/ietf-mxcomp/).

Yakov

Radu Hociung wrote:


Unfortunately,

A spammer can just as well set this up. This system does not
discriminate based on the intention or identity of the sender.

Also, I think a good test to any anti-spam proposal is this: Would this
be a sustainable model if it became mainstream?

Your approach relies on a lot of wasted resources at the DNS cache
level; imagine what would happen to Hotmail's caching DNS servers if
they would cache two entries for every 2.5B spam messages they receive
every day?

I didn't like the pop-ups.
I appreciate the effort, though; you may have something, but it needs
more work.
Radu.
--
Radu Hociung


radu(_at_)ohmi(_dot_)org



   -----Original Message-----
   *From:* asrg-admin(_at_)ietf(_dot_)org 
[mailto:asrg-admin(_at_)ietf(_dot_)org] *On Behalf
   Of *spharion(_at_)directnet(_dot_)com(_dot_)br
   *Sent:* Saturday, March 27, 2004 7:10 AM
   *To:* asrg(_at_)ietf(_dot_)org
   *Subject:* [Asrg] spf

   this is a tentative option to spf, but does not
   seem to break forwarding:

   http://nucleo.freeservers.com/mba/

   have fun. gone, ricardo.








_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg




_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] spf, Yakov Shafranovich
Next by Date:  Re: [Asrg] spf, william(at)elan.net
Previous by Thread:  message-body-authenticator (was: Re: [Asrg] spf), Ricardo Dirani
Next by Thread:  Re: [Asrg] Re: message-body-authenticator, Ricardo Dirani
Indexes:  [Date] [Thread] [Top] [All Lists]