"David" == David Woodhouse <dwmw2(_at_)infradead(_dot_)org> writes:
David> When considered holistically, the domain/IP verification
David> schemes don't actually manage to achieve anything more than
David> CSV does -- they only give a way to determine how much to
David> trust the individual mail server which is offering the
David> mail.
I don't think that's true. The domain/IP verification schemes
directly address forgery, in a way that CSV doesn't. Think about
Sender ID as a tool for senders who (for whatever reason) want to be
able to prevent others from sending forged mail claiming to be from
them.
As a tool for recipients, Sender ID and CSV both provide a hook on
which to hang reputation and accreditation systems, and I'm agnostic
as to which will work better in the real world, though my feeling is
that they may in fact turn out to be complementary.
-roy