On 17/09/2007, Michael Kaplan <michaelkaplanasrg(_at_)gmail(_dot_)com> wrote:
On 9/17/07, Frank Ellermann <nobody(_at_)xyzzy(_dot_)claranet(_dot_)de> wrote:
Michael Kaplan wrote:
The core of this concept is that questionable unauthenticated email
will be bounced
I hope you mean "rejected", unsolicited bounces are evil.
Yes, in section 9 I summarize the Ironport data on the bounce problem, and
it is a real problem.
Sometimes legitimate email is unauthenticated; adopting a policy of
absolutely never sending a bounce in response to an unauthenticated email
will degrade the integrity of email. Banning all such bounces solves one
problem and creates another.
Your use of 'Yes' in your answer to Frank was clearly in the sense of
'No'. Unsolicited bounces are evil, and you're still proposing to send
them. This is bad. Why are you not talking about SMTP-time rejections,
which are not evil and don't suffer the same issues?
Peter
--
Peter Bowyer
Email: peter(_at_)bowyer(_dot_)org
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg