Absolutely, and in fact I see mailing list management as a natural early
adopter for DKIM filtering.
The vast bulk of the spam I am moderating off the KEYPROV list is phishing spam
against five particular addresses, all of which implement DKIM. My workload as
a moderator can be cut by 80% by rejecting any message from those addresses
that is not DKIM signed.
Mailing lists do not in general subscribe to mailing lists so the normal
arguments against discarding messages for failing DKIM compliance do not apply.
-----Original Message-----
From: Fred Baker [mailto:fred(_at_)cisco(_dot_)com]
Sent: Thursday, October 04, 2007 1:44 PM
To: Hallam-Baker, Phillip
Cc: John Levine; ietf(_at_)ietf(_dot_)org
Subject: Re: Spammers answering TMDA Queries
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Oct 4, 2007, at 11:56 AM, Hallam-Baker, Phillip wrote:
The problem is the amount of time it is taking to moderate
mail sent
by non subscribers.
yes. For example, every email from @cisco.com is dkim-signed.
The IETF can automagically dump any such email that is not
signed, or for which the signature doesn't check out. I know
that fred(_at_)cisco(_dot_)com is one of many commonly-spoofed email
addresses - I can tell that from the backscatter I find in my
junk box.
For how many of us is that true?
-----BEGIN PGP SIGNATURE-----
iD8DBQFHBSZXbjEdbHIsm0MRAt9UAJ9xVCpDMdC3spmPkmsTFCqZTNWY6ACffR0R
lUEQvoA8i0OZXuU4r8TroLs=
=0xUE
-----END PGP SIGNATURE-----
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf