On Sat, 21 Aug 2004, AccuSpam wrote:
However, consider that supporting "-all" for SPF (in order to give SPF
similar anti-forgery power) for all domains is also going to require upgrades
to all MUAs in order to integrate with many different flavors of SMTP
authentication at many different servers. At least with SenderKeys, the
integration for MUA is very well defined and very simple and uses existing
protocols. The MUA simply POPs (or IMAP) the SenderKeys auto-response,
stores the private key and uses it. STMP and POP see SenderKeys as just
another e-mail, no compatibility issues as there will be with SPF:
SMTP is an existing protocol, very well defined, supported by all modern
MTAs and MUAs - including pine,mutt,etc. I've haven't seen a MUA that
doesn't support AMTO AUTH in years. The only problem is teaching users to
fill in the server, port, user, and passwd fields (non-trivial with some users,
I admit).
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.