On 9/10/10 2:45 PM, J.D. Falk wrote: > On Sep 9, 2010, at 7:34 PM, John Levine wrote: > > > any organization that wants to use ADSP should be prepared to bear > > the costs of doing so, such as making arrangements for valuable > > mail to come from a different domain, as Paypal is doing. > > Exactly -- and the RFC agrees.
Its ironic. A mechanism attempting to mitigate phishing, because it lacks a means to authorize third-party services, recommends the use of additional domains, where in the case of paypal, this is a cousin domain. The irony is because confusion regarding cousin domains significantly reduces the value obtained from email-authentication. -Doug _______________________________________________ dkim-ops mailing list [email protected] http://mipassoc.org/mailman/listinfo/dkim-ops
