Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call

On Fri, 7 Nov 2008 16:09:22 -0800 Douglas Otis 
<dotis(_at_)mail-abuse(_dot_)org> wrote:
....

I think it's worth pointing out when considering how much to worry about 
Doug's latest "SPF will melt the Internet" theory that shared MTA concerns 
are directly addressed in the RFC 4408 security considerations.  This is 
nothing new that wasn't carefully considered during the protocol design.

I think it's reasonable to assume that implementers pay attention to RFC 
security considerations.  I think there are plenty of protocols that would 
have security holes if their security considerations were ignored.

If a DKIM signing shared MTA were to sign a message sent by somone not 
authorized to use the domain, the exact some situation arises.

Scott K
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [mail-vet-discuss] Auth-Results installed base, (continued) Re: [mail-vet-discuss] Auth-Results installed base, Bill.Oxley Re: [mail-vet-discuss] Auth-Results installed base, Dave CROCKER Re: [mail-vet-discuss] Auth-Results installed base, Bill.Oxley Re: [mail-vet-discuss] Auth-Results installed base, Dave CROCKER Re: [mail-vet-discuss] Auth-Results installed base, J D Falk draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Charles Lindsey Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, J.D. Falk Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Scott Kitterman <= Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Scott Kitterman Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Dave CROCKER Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, J.D. Falk Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Tony Hansen Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis [mail-vet-discuss] displaying reputation results (was Re: draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04), J.D. Falk

Previous by Date:	Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis
Next by Date:	Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis
Previous by Thread:	Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis
Next by Thread:	Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04, Douglas Otis
Indexes:	[Date] [Thread] [Top] [All Lists]

Re: [mail-vet-discuss] draft-kucherawy-sender-auth-header and last call draft-hoffman-dac-vbr-04