On Jul 27, 2010, at 10:33 AM, Douglas Otis wrote:
Companies are good at shooting themselves in the foot in respect to
helping bad actors phish. (blush) The other foot injury involves their
email being rejected or discarded. Unfortunately, these two goals are
in conflict when making ADSP assertions. Unless the targeted
organizations or institutions forgo all informal third-party services,
such as mailing-lists, it is not possible to get ADSP right.
Ironically, following recommendations being proposed for mailing-lists
is likely to make phishing worse.
Mailing lists are a separate issue. I don't think it's helpful for a 3rd party
to vouch that lists are lists, and that's not what John's draft does.
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html