John R. Levine wrote:
>>> This is the mailing list advice that I strongly suggest we NOT attempt
>>> to provide at this point.
>
>> strongly disagree. Filtering early is more likely to pickup signature
>> breakage and protect the down stream recipient. Its more likely to
>> reject back to the sender if they configured stuff wrong.
>
>> Advice could be split between forwarders that break signature and those that
>> done. Keep in mind the dkim goal of is message integrity not reputation
>> (despite its usefulness here).
>
> This is exactly the kind of speculation to which I was referring. Nobody
> at this point has more than the most rudimentary experience with DKIM and
> mailing lists, nobody has any experience with ADSP at all. I won't rehash
> all the reasons that the mailing list "message integrity" argument is
> utterly wrongheaded, but there is clearly no consensus on it. So stop it,
> already.
>
> Go write some software, use it, and come back and tell us about your
> experience with it.
John,
Engineering Speculation not a bad thing. It may help explain why
there is no adoption of ADSP which doesn't help DKIM usefulness
question and adoption rate itself. Engineers have speculated that
remailers are in conflict with ADSP implementations. I personally
would not call that a speculation because its a truth fact.
I can not see how mail system software developers or hosting system
can support ADSP until the remailer question is resolved. Its a
classic chicken and egg situation:
- Will remailers support it once a certain threshold of
amount of domains support it? or
- Will domains begin to add ADSP records once they
know remailers will support the ADSP??
- Will domains begin to add ADSP records in preparation
that one day receivers and remailers will support the
ADSP?
Are you now recommending that software developers add ADSP-compliant
Forwarder/Remailer support so we learn and prove what we already know
will happen?
I am just not sure what you want us to come back and report.
1) Remailers are seeing problems because little to no
domains supports ADSP records.
2) Remailers are seeing an increasing of rejects/discards
related to ADSP domains
x% due to genuine spoofs
y% due to members with ADSP Domains
What empirical evidence are you looking for?
I think it is pretty good engineering speculation that remailers are
in conflict with ADSP domains.
--
HLS
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html
