Re: Most recent sender.



On Tue, 18 Jan 2005, David Woodhouse wrote:

On Mon, 2005-01-17 at 17:17 -0800, william(at)elan.net wrote:

To answer your question in the way email is currently use you can not
be certain because:
 1. Sender headers could be added by mail list for Resent- message
    and you would not be able to tell which one was first


That's what I said.

 
[out of order]

Unless I can actually reject mail for the crime of lacking a MASS
signature when it should have one, MASS is entirely useless to me.


Well, its not useless, just not as usefull and not a solution for phishing
as we're trying to present this effort as.

 2. Headers sometimes get rearranged, even Resent-* headers


Do they really? I have never seen this. Under what circumstances do
Resent-* headers get changed such that they'd change the answer we get
for the 'most recent sender', at an intermediate site? To what extent to
we need to care?


Take a look at the following and after that decide for yourself if you
reall could get automated software that would rely on Resent- headers. 
(below is from http://lists.w3.org/Archives/Public/w3c-dist-auth/msg01694.html)

From w3c-dist-auth-request(_at_)w3(_dot_)org Fri May  9 09:27:02 1997
Received: by www19.w3.org (8.6.12/8.6.12) id MAA00043; Fri, 9 May 1997 12:10:42
Resent-Date: Fri, 9 May 1997 12:10:42 -0400
Resent-Message-Id: <199705091610(_dot_)MAA00043(_at_)www19(_dot_)w3(_dot_)org>
Message-Id: 
<3(_dot_)0(_dot_)32(_dot_)19970509100833(_dot_)006f06f4(_at_)cic-mail(_dot_)lanl(_dot_)gov>
X-Sender: u114212(_at_)cic-mail(_dot_)lanl(_dot_)gov
X-Mailer: Windows Eudora Pro Version 3.0 (32)
Date: Fri, 09 May 1997 10:08:42 -0600
To: Sukanta Ganguly <SGANGULY(_at_)novell(_dot_)com>
From: "Ron Daniel, Jr." <rdaniel(_at_)lanl(_dot_)gov>
Subject: Re: RFC 2141 on URN Syntax
Cc: w3c-dist-auth(_at_)w3(_dot_)org, urn-ietf(_at_)bunyip(_dot_)com
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-List-URL: http://www.w3.org/pub/WWW/Archives/Public/w3c-dist-auth/
X-See-Also: http://www.ics.uci.edu/~ejw/authoring
Resent-From: w3c-dist-auth(_at_)w3(_dot_)org
X-Mailing-List: <w3c-dist-auth(_at_)w3(_dot_)org> archive/latest/776
X-Loop: w3c-dist-auth(_at_)w3(_dot_)org
Sender: w3c-dist-auth-request(_at_)w3(_dot_)org
Resent-Sender: w3c-dist-auth-request(_at_)w3(_dot_)org
Precedence: list


---
William Leibzon, Elan Networks:
 mailto: william(_at_)elan(_dot_)net
Anti-Spam and Email Security Research Worksite:
 http://www.elan.net/~william/emailsecurity/

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Most recent sender., (continued) Re: Most recent sender., John Levine Re: Most recent sender., David Woodhouse Re: what signatures mean, was Most recent sender., John Levine Re: what signatures mean, was Most recent sender., David Woodhouse Re: what signatures mean, was Most recent sender., John R Levine Re: what signatures mean, was Most recent sender., Jim Fenton Re: Most recent sender., Justin Mason Re: Most recent sender., Jim Fenton Re: Most recent sender., william(at)elan.net Re: Most recent sender., David Woodhouse Re: Most recent sender., william(at)elan.net <= Re: Most recent sender., David Woodhouse Re: Most recent sender., ned . freed

Previous by Date:	Re: Most recent sender., David Woodhouse
Next by Date:	Re: Most recent sender., David Woodhouse
Previous by Thread:	Re: Most recent sender., David Woodhouse
Next by Thread:	Re: Most recent sender., David Woodhouse
Indexes:	[Date] [Thread] [Top] [All Lists]