> Damn it, I know I've told people this a thousand times, but I guess > you have to see it in print to believe it, eh? :-)
I really ought to just shut up about this because this story gets written every few months and I have to explain it every time, but nobody who ever actually tried to understand DKIM or any other SMTP authentication effort ever thought that it alone would stop spammers. They were never designed to do that alone. All SMTP authentication does is to authenticate the sender, or at least the domain of the sender. You need to combine this with reputation services in order to get real value out of it. Because systems like DKIM work on domains as opposed to IP addresses they won't have as much collateral damage for blacklists. Larry Seltzer eWEEK.com Security Center Editor http://security.eweek.com/ http://blogs.eweek.com/cheap_hack/ Contributing Editor, PC Magazine [EMAIL PROTECTED] _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
