ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] Not exactly not a threat analysis

2005-08-23 20:10:49
from [Dave Crocker] [Permanent Link] 
On 23 Aug 2005 22:42:50 -0400, John R Levine wrote:

 Should a forwarder (e.g. college alumni permanent address service) have

 the same level of accountability as the originating domain (the domain
 that received the initial submission of a message)?


 I don't see why not.  If they're sending me mail, they should be
 accountable, and if it's spam, I'm not happy about it. 



Right.

Let's remember that the primary role for this signature is as input to a 
delivery filtering process.  So the nature of the 'accountability' is 
inherently 
narrow.

Whoever is signing is injecting mail into the handling service.  They are 
responsible for the traffic they generate.  It does not matter where they 
get their messages from; they are choosing to create traffic.

  d/
  ---
  Dave Crocker
  Brandenburg InternetWorking
  +1.408.246.8253
  dcrocker  a t ...
  WE'VE MOVED to:  www.bbiw.net



_______________________________________________
ietf-dkim mailing list
http://dkim.org
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Not exactly not a threat analysis, John R Levine
Next by Date:  Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
Previous by Thread:  Re: [ietf-dkim] Not exactly not a threat analysis, John R Levine
Next by Thread:  Re: [ietf-dkim] Not exactly not a threat analysis, Scott Kitterman
Indexes:  [Date] [Thread] [Top] [All Lists]