On 10/25/2017 11:17 AM, Dave Crocker via dmarc-discuss wrote:
2. The article in question might have the right intentions -- and
it does highlight important points that are not widely understood and
whose implications are often missed -- but it fails at its start. In
the Summary:
"DKIM is... one of the major ways currently used to combat sender
spoofing in e-mail"
No, DKIM is not. It doesn't try to be, so it's not interesting that it
doesn't accomplish this.
Oh crap. I don't remember the Wikipedia entry being this wrong:
https://en.wikipedia.org/wiki/DomainKeys_Identified_Mail
DomainKeys Identified Mail (DKIM) is an email authentication method
designed to detect email spoofing. It allows the receiver to check
that an email claimed to have come from a specific domain was
indeed authorized by the owner of that domain.
What I especially like is that this text cites RFC 5585 as its
justification, but in fact that document says nothing like this.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
dmarc-discuss mailing list
[email protected]
http://www.dmarc.org/mailman/listinfo/dmarc-discuss
NOTE: Participating in this list means you agree to the DMARC Note Well terms
(http://www.dmarc.org/note_well.html)
