On Tue, 13 Jul 2004, Douglas Otis wrote:
Example of a Domain of Responsibility Tag:
C: MAIL FROM:<alice(_at_)example(_dot_)com>
DOR:t:"ddddd.dddddd";x:"ddddd";a:"ttttt";
s:"tttttttt";
b:"tttttttttttttttttttttttttttttttttttt";
d:"alumni.almamater.edu";
(a:algorithm,
t:time-stamp,
x:expiry,
b:base64 signature,
s:selector,
d:domain)
Why not just get the originator's MSA to sign the original return path?
This gives end-to-end authentication of the MSA, does not require any
change to aliasing/forwarding systems or to SMTP, and works well with
callback verification.
Dave Crocker's BTAV draft is a start at a specification.
Tony.
--
f.a.n.finch <dot(_at_)dotat(_dot_)at> http://dotat.at/
CAPE WRATH TO RATTRAY HEAD INCLUDING ORKNEY: WEST OR NORTHWEST 3 OR 4 BACKING
SOUTHEAST, THEN VEERING WEST 4 OR 5 LOCALLY 6 ON WEDNESDAY. PATCHY RAIN AND
PERHAPS LOCAL MIST CLEARING TO SCATTERED SHOWERS ON WEDNESDAY. MODERATE OR
GOOD, BUT PERHAPS LOCALLY POOR IN MIST FOR A TIME. MODERATE IN NORTH BUT
SLIGHT IN SOUTH.