----- Original Message ----- From: "Douglas Otis" <[EMAIL PROTECTED]> To: "Hector Santos" <[EMAIL PROTECTED]>
> DKIM should identify the domain associated with the email message > transport. It is over-reaching, to say the least, when attempting to > use this mechanism to verify the author of the message. Leave that > effort to OpenPGP and S/MIME. By establishing the accountable > domain, abuse can be handled in a more efficient manner than it is > today. This would also afford opportunistic identifications akin to > that used with SSH. I don't think this aspect has been given any > consideration. Doug, DKIM is like a traffic cop pulling you over and ask for your Driver's license and Registration. Sure, it can be all fake, but it better be consistent. - You appear to be 40-45, but your license shows a birth year that would makes you 23 years old? - You are white, your photo shows you as Afro-American? - You are a women, your photo shows a bearded man? - your registration VIN does not match your car VIN. etc, if anything is inconsistent, you will be immediately scruntized. Either way, he is required to check your information against the central databases for the validity of the license and also for any outstanding tickets, warrants, etc. This is the 3rd entity in the picture that validates the process. You (Sender), the cop (receiver) and central database (DNS). In the end, he *should* be turning a blind eye on WHO you really are. You could be the Mayor of the town and you might have a dead body in the trunk. He shouldn't care as long as you are playing by the rules. But if you raise a raise flag, then that begins a new process of actions that could be taken. -- Hector Santos, Santronics Software, Inc. http://www.santronics.com _______________________________________________ ietf-dkim mailing list http://dkim.org
