Re: [ietf-dkim] Not exactly not a threat analysis

ietf-dkim

Re: [ietf-dkim] Not exactly not a threat analysis

2005-08-24 08:52:51

On Wed, 24 Aug 2005 08:39:41 -0700, Michael Thomas wrote:

 Who knows? I mean, if mail eventually needs to be
 signed before it's accepted by the masses, they may
 well be forced to sign -- or find some other transport
 vehicle.


I think that the history of adoption of SPF by spammers demonstrates nicely 
that 
the mere act of associating a confirmable identity is not enough.  So the mere 
act of signing should not be a criterion for acceptance of the mail.

The required additional step is some basis for assessing that identity.


  d/
  ---
  Dave Crocker
  Brandenburg InternetWorking
  +1.408.246.8253
  dcrocker  a t ...
  WE'VE MOVED to:  www.bbiw.net



_______________________________________________
ietf-dkim mailing list
http://dkim.org

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] Not exactly not a threat analysis, (continued) Re: [ietf-dkim] Not exactly not a threat analysis, Scott Kitterman Re: [ietf-dkim] Not exactly not a threat analysis, domainkeys-feedbackbase02 Re: [ietf-dkim] Not exactly not a threat analysis, Scott Kitterman Re: [ietf-dkim] Not exactly not a threat analysis, domainkeys-feedbackbase02 Re: [ietf-dkim] Not exactly not a threat analysis, domainkeys-feedbackbase02 Re: [ietf-dkim] Not exactly not a threat analysis, Earl Hood Re: [ietf-dkim] Not exactly not a threat analysis, domainkeys-feedbackbase02 Re: [ietf-dkim] Not exactly not a threat analysis, Michael Thomas Re: [ietf-dkim] Not exactly not a threat analysis, domainkeys-feedbackbase02 Re: [ietf-dkim] Not exactly not a threat analysis, Michael Thomas Re: [ietf-dkim] Not exactly not a threat analysis, Dave Crocker <= Re: [ietf-dkim] Not exactly not a threat analysis, Arvel Hathcock Re: [ietf-dkim] Not exactly not a threat analysis, SM Re: [ietf-dkim] Not exactly not a threat analysis, John Levine Re: [ietf-dkim] Not exactly not a threat analysis, Tony Finch Re: [ietf-dkim] Not exactly not a threat analysis, John Levine Re: [ietf-dkim] Not exactly not a threat analysis, Ned Freed Re: [ietf-dkim] Not exactly not a threat analysis, Earl Hood Re: [ietf-dkim] Not exactly not a threat analysis, John R Levine Re: [ietf-dkim] Not exactly not a threat analysis, Ned Freed [ietf-dkim] Is accountability binary?, domainkeys-feedbackbase02

Previous by Date:	Re: [ietf-dkim] Not exactly not a threat analysis, Ned Freed
Next by Date:	Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
Previous by Thread:	Re: [ietf-dkim] Not exactly not a threat analysis, Michael Thomas
Next by Thread:	Re: [ietf-dkim] Not exactly not a threat analysis, Arvel Hathcock
Indexes:	[Date] [Thread] [Top] [All Lists]