On Tue, Mar 09, 2004 at 10:04:53AM -0800, Ted Hardie wrote:
"What *identity* is it that needs to be authorized".
At a first glance I thought pretty good question.
At a second glance I thought ambiguous question (or maybe my
english is not good enough).
What does *identity* mean? Whom to authorize or the mail address
someone needs to be authorized to use?
In case of the "whom":
- IPv4 address of SMTP peer
- IPv6 address of SMTP peer
- Any IPv4 wrap into IPv6 address?
- Certificate contents if SMTP over TLS?
- Phone number when using mobile in connect mode
- MAC address?
- Cryptographic challenge-response?
regards
Hadmut