On Fri, 20 May 2005, David MacQuigg wrote:
There are currently zero, zip, nada, protocols even proposed for
authenticating the new ID identity.
And I don't intend to add any. We have enough authentication methods already.
Then what's to prevent me from saying:
ID BillGates.microsoft.com
?
Any identity is hearsay until there is some protocol for verifying it.
The point of SPF is to move the MAIL FROM identity from hearsay to
something that can be verified (the HELO identity can already be
verified using the A record, but SPF offers some additional options).
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.