Re: [spf-discuss] Re: Can this really be true?

On Fri, 23 Sep 2005 18:21:57 +0200 Frank Ellermann 
<nobody(_at_)xyzzy(_dot_)claranet(_dot_)de> wrote:

Scott Kitterman wrote:

unecessary if you are using a shared secret mechanism.


With CRAM-MD5 a "man in the middle" could hijack the session.

That argument seriously hurt draft-hutzler-spamops in its
"IETF last call", and Bruce found some additional nits for
a coup de grace.  
                 Waiting for a new draft:  Frank

OK.  How about ...with a cryptographically robust shared secret method...

Scott K

-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

Re: [spf-discuss] Re: Can this really be true?, paddy

Next by Date:

Re: [spf-discuss] SPF and gateways, Stuart D. Gathman

Previous by Thread:

Re: [spf-discuss] Re: SPF and gateways, Simon Tyler

Next by Thread:

[spf-discuss] Re: Can this really be true?, Frank Ellermann

Indexes:

[Date] [Thread] [Top] [All Lists]