On Sat, Jan 31, 2009 at 12:15 AM, Douglas Otis
<dotis(_at_)mail-abuse(_dot_)org> wrote:
Large domains will almost always have some small percentage of problematic
accounts. If the d= parameter becomes a significant basis for acceptance,
then replay abuse will need to be controlled.
You are confusing authentication with reputation.
Authentication is going to be managed with a whole lot of other ways
rather than being solely dkim based
As for rep - one individual sender's rep really shouldnt taint all the
ISP (or all the d=) rep unless it is pretty damned bad. And if the
ISP / ESP lets the cause of that bad rep continue .. well, they
deserve the bad rep.
Ever tried putting a single gram of (say) cyanide in a gallon of
water? The entire water is poisoned as a result.
In other words replay attacks arent the attack vector I am concerned
about here - they are moot, to be frank and all due respect to the bee
in your bonnet.
--srs
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html