ietf-mxcomp
[Top] [All Lists]

Re: Forging (was Re: Differences between CSV and Sender-ID )

2004-07-07 10:51:34

Greg Connor <gconnor(_at_)nekodojo(_dot_)org> wrote:
Agreed.  MARID-brand LMAP probably won't noticeably reduce spam, or even 
forgery, at first, but if it creates a dis-incentive to forging MY domain 
name, I will definitely use it.

  Summarized in a carefully phrased sentence:

        MARID creates a permanent way for domains to permanently give
        dis-incentives for the transient problem of forgery.

  Domain name forgery is a transient problem, as incidents can occur
sporadically, and the incidents are caused by different people at
different times.  The only way to stop this series of problems is with
a solution which will permanently allow people to detect and prevent
these attacks.  MARID is one approach which creates a long-lived
solution for a transient problem.

  Similarly, bandages solve a transient problem, but the *existence*
of bandages is a permanent phenomenom.  No one would claim that
bandages "do nothing to reduce injuries" because the problem solved by
bandages is transient in nature.


  To put it yet another way, MARID can be thought of as a set of
distributed DNSBL's.  Each domain operates its own DNSBL (or
whitelist), which use a well-known format.  Peers on the net can look
up information for a domain via DNS, and choose to apply the DNSBL
information (or not).

  None of this is new to the net.  DNS already tells peers where to
find information (e.g. MX's), and DNSBL's are already used by clients
to obtain policies which they apply to data flows.  MARID adds very
little to this process, other than a standard for record formats, and
when those record formats are used.  Since MX's work, and DNSBL's
work, I don't see why there's such FUD surrounding MARID.

  Alan DeKok.