On Sat, 20 Nov 2004 09:33:05 -0500, Alan DeKok wrote:
The key here is "open discussion"...
Some major keys to open discussion is that people avoid ad hominem attacks --
for example, they do not call people liars -- and they avoid hyperbole. For
example:
The failure of SMTP to protect from forgery, malicious bounces,
etc. is a failure of the security model of SMTP.
The security model of SMTP is the same as the security model for sending paper
letters and for making phone calls.
To "fail" requires that there be a goal that was not attained. That's not the
case here. The case here is that real threats changed after 25 years of
operation and we need to adjust to them.
When crime goes up because a small town becomes a big city, and we have to add
locks to our doors, we do not say that the security model that used to work
"failed". We say that it changed.
The key to open discussion is that people say things thoughtfully and with an
attempt to be accurate and precise.
d/
--
Dave Crocker
Brandenburg InternetWorking
+1.408.246.8253
dcrocker a t ...
www.brandenburg.com