On Monday 24 November 2003 5:52 pm, Justin Mason wrote:
See http://web-o-trust.org/ for a sample that works entirely orthogonally
- -- running over HTTP, using flat files on web servers as a data store, and
it just comes up with lists of IP addresses that you can query through
DNSbl lookups.
Interesting project. It looks like an antispam whitelist-building scheme
rather than a sender authorization scheme though.
The point being that it may well reign-in overzealous antispam blacklists, but
it does not guarantee the rightful origin of a particular item of mail beyond
'subsequent meatspace consequences' like losing your friends/your bond/going
to jail/thugs turning up at your doorstep. A sender authorization scheme
should implement prior restraint in the sense of rejecting joe-jobs in the
first place.
Also it does not appear to have an inbuilt obsolescence path to a world where
each domain owner publishes which servers are authorized to send mail from
their own domain.
A web of trust would not be neccessary in an SPF world, but could be of help
getting there if done in a way that does not 'institutionalize itself'.
- Dan
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.6.txt
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)©#�«Mo\¯HÝÜîU;±¤Ö¤Íµø�?¡