Dave Crocker <[email protected]> wrote: >On 6/7/2014 4:37 PM, Franck Martin wrote: >> Yahoo has been suggesting the ESPs use OAUTH, so the small business owner, >> can authorize >the ESP to post on its behalf via yahoo servers� Not sure if it is today >possible, but there >is a bunch of apps that has been granted permission to post on Facebook, or >Linkedin, or >Google+ >> >> https://developer.yahoo.com/oauth/ >> https://developer.yahoo.com/mail/ >> >> I guess there was no need for ESP to do OAUTH, till now... > >That might be an interesting line of capability to explore.
I doubt that Yahoo would be thrilled if ESPs used the Yahoo API to send bulk mail. I suppose the ESP could take the message, use the API to send one copy of the message to itself so it gets Yahoo's DKIM signature, then remail that message to all the subscribers through the ESP's outgoing mail, sort of a virtuous replay attack. This could probably work but it feels overclever, and doesn't scale since no two mail providers have the same API.
_______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
