Re: Security issue: Minority installed base of compatible MUAs?

ietf-mxcomp

Re: Security issue: Minority installed base of compatible MUAs?

2004-08-09 09:58:28



"Rand Wacker" replied:

On Sat, 7 Aug 2004, Chris Haynes wrote:

The draft states that "in order to avoid this attack, MUAs will need to

start

displaying at least the header that was verified".

My concern is the need for new MUA purchases.


Why can't the server-side check modify the message to display the results
in an MUA-compatible way similar to the way that SpamAssassin modifies
bodies and (optionally) headers today?

-Rand


Could you please supply an example of the modifications you propose in such a
way that:

1) It is displayable in Outlook Express

2) The display could not have been forged by the sender

Thanks,

Chris

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Security issue: Minority installed base of compatible MUAs?, Chris Haynes Re: Security issue: Minority installed base of compatible MUAs?, Rand Wacker Re: Security issue: Minority installed base of compatible MUAs?, Chris Haynes <= Re: Security issue: Minority installed base of compatible MUAs?, Jim Fenton Re: Security issue: Minority installed base of compatible MUAs?, Mark Shewmaker Re: Security issue: Minority installed base of compatible MUAs?, Chris Haynes

Previous by Date:	Re: Security issue: Minority installed base of compatible MUAs?, Rand Wacker
Next by Date:	Re: Does marid-submitter-02 really make sense?, ned . freed
Previous by Thread:	Re: Security issue: Minority installed base of compatible MUAs?, Rand Wacker
Next by Thread:	Re: Security issue: Minority installed base of compatible MUAs?, Jim Fenton
Indexes:	[Date] [Thread] [Top] [All Lists]