ietf-dkim
[Top] [All Lists]

Re: [ietf-dkim] Should DKIM drop SSP?

2005-10-28 04:32:36

----- Original Message -----
From: "Douglas Otis" <dotis(_at_)mail-abuse(_dot_)org>
To: "Hector Santos" <hlsdkim(_at_)bellsouth(_dot_)net>

DKIM should identify the domain associated with the email message
transport.  It is over-reaching, to say the least, when attempting to
use this mechanism to verify the author of the message.  Leave that
effort to OpenPGP and S/MIME.  By establishing the accountable
domain, abuse can be handled in a more efficient manner than it is
today.  This would also afford opportunistic identifications akin to
that used with SSH.   I don't think this aspect has been given any
consideration.

Doug,  DKIM is like a traffic cop pulling you over and ask for your Driver's
license and Registration.  Sure, it can be all fake, but it better be
consistent.

 - You appear to be 40-45, but your license shows a birth
   year that would makes you 23 years old?

 - You are white, your photo shows you as Afro-American?

 - You are a women, your photo shows a bearded man?

 - your registration VIN does not match your car VIN.

etc, if anything is inconsistent, you will be immediately scruntized.

Either way, he is required to check your information against the central
databases for the validity of the license and also for any outstanding
tickets, warrants, etc.   This is the 3rd entity in the picture that
validates the process.  You (Sender), the cop (receiver) and central
database (DNS).

In the end, he *should* be turning a blind eye on WHO you really are. You
could be the Mayor of the town and you might have a dead body in the trunk.
He shouldn't care as long as you are playing by the rules.  But if you raise
a raise flag, then that begins a new process of actions that could be taken.

--
Hector Santos, Santronics Software, Inc.
http://www.santronics.com





_______________________________________________
ietf-dkim mailing list
http://dkim.org