ietf-dkim
[Top] [All Lists]

Re: [ietf-dkim] suspicious and SUSPICIOUS

2007-10-03 08:59:13
On Tue, 02 Oct 2007 15:27:33 +0100, <Bill(_dot_)Oxley(_at_)cox(_dot_)com> wrote:

 "A member of a mailing list needs to know two things:
   a) did the message come via the mailing list?
   b) was it sent to the mailing list by the purported "From"?"

Why would anyone care about b? It is a mailing list which by nature is somewhat anonymous and self inclusive. Either a post matches proper list content or a moderator will boot the poster with or without warning.

It delends on the nature of the mailing list, whether it are open to anyone to post, and what the moderation policy is (or even if there is one).

Suppose, for example, that a submission to the list has been forged in the name of a regular contributor - so it may not be obvious that it is a forgery, and indeed there may be discussion on-list concerning its provenance. You cannot assume that list managers will necessarily be checking DKIM signatures.

But if it is known that the regular contributor regularly signs with DKIM, that makes it easier to spot the forgery.

--
Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131     Web: http://www.cs.man.ac.uk/~chl
Email: chl(_at_)clerew(_dot_)man(_dot_)ac(_dot_)uk      Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9      Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5
_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html