ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [ietf-dkim] SSP = FAILURE DETECTION

2006-09-12 10:51:31
from [Arvel Hathcock] [Permanent Link] 
SSP has an advantage when we assume that criminals 
are stupid enough to keep sending forged mail. It 
has no advantage with look-alike attacks. Guess what 
criminals will do. 


They will stop using real domains and start using other domains (assuming your 
logic plays out).  

This is PROGRESS.  This is something positive (not negative).

Today I received a half dozen paypal phishing mails.  All had 
"<local-part>@paypal.com" in the FROM header.  SSP can stop that.  SSP can't 
solve everything but that's no reason not to let it address what it can solve.

-- 
Arvel 




_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] SSP = FAILURE DETECTION, Wietse Venema
Next by Date:  Re: [ietf-dkim] SSP and mailing lists, Michael Thomas
Previous by Thread:  Re: [ietf-dkim] SSP = FAILURE DETECTION, Stephen Farrell
Next by Thread:  RE: [ietf-dkim] SSP = FAILURE DETECTION, Arvel Hathcock
Indexes:  [Date] [Thread] [Top] [All Lists]