Carl Hutzler wrote:
BTW, this issue of allowing someone to send through "someone else's
relay" is a problem for ALL email authentication approaches except
perhaps CSV and BATV. DomainKeys, SPF, IIM, and SID all have an issue
until we can get MUAs to sign with DK/IIM.
If end-users (MUAs) are to use shared private keys (e.g. for a common
sender domain), the confidentiality of the private keys is at risk.
If end-users are to use user-specific private keys, they could very well
use PGP or S/MIME right away. IMO this is the direction things need to be
going.
pgpm2xM8Pgei0.pgp
Description: PGP signature