On May 26, 2010, at 11:04 AM, Jeff Macdonald wrote: > On Wed, May 26, 2010 at 1:42 PM, Steve Atkins <[email protected]> wrote: >> >> On May 26, 2010, at 10:13 AM, Steve Atkins wrote: >> >>> >>> On May 26, 2010, at 10:11 AM, Michael Thomas wrote: >>> >>>> On 05/26/2010 09:58 AM, Steve Atkins wrote: >>>>> On May 26, 2010, at 9:14 AM, Brett McDowell wrote: >>>>> >>>>>> I respectfully disagree with you. >>>>>> >>>>>> We *were* a special case. Soon we will not be a special case because >>>>>> ADSP will enable all mailbox providers, if they choose, to do for others >>>>>> what they have historically done for us. That's the big win that only >>>>>> ADSP could ever enable. >>>>>> >>>>>> Apparently such an announcement is going to come as a surprise to many >>>>>> of you on this list, but it shouldn't. It's the logical conclusion of >>>>>> the ADSP work. >>>>> >>>>> I'm big on concrete examples. So how does your logical conclusion deal >>>>> with these two situations? >>>>> >>>>> $ host -t txt _adsp._domainkey.paypaI.me >>>>> _adsp._domainkey.paypaI.me descriptive text "dkim=discardable" >>>>> >>>>> $ host -t txt _adsp._domainkey.paypal.com >>>>> _adsp._domainkey.paypal.com descriptive text "dkim=discardable" >>>>> >>>> >>>> Huh? What does that have to do with anything? John is wrong: ADSP allows >>>> them to >>>> get rid of the "special case" handling by Y! and G. This is hardly >>>> controversial. >>> >>> >>> Could you expand on why you think that? >> >> Michael claims off-list that he has no idea what I'm speaking of. > > I said "huh?" too.
Perhaps I'm missing something. I'm working with the mental model that the underlying problem ADSP advocates would like to address is phishing or brand protection, as they're the only concrete problems I've seen mentioned. If there's something else it's intended to address I'm all ears. >> So, to be more specific, I'm implicitly asking two things. >> >> 1. Should those domains be treated differently by the recipient ISP? > > perhaps the question is "are those two different entities?" I'd say as > far as the recipient ISP can tell, yes. No, that's a very different question. A good one, but one that's easier to answer. Should mail from the two domains be treated differently? Delivered or not delivered to the user, displayed differently to the user? That's the only thing that has any effect on the issue of phishing in general. >> 2. How does ADSP help them make that decision? > > It doesn't, nor do I think it claims to. I agree, but that leads to the question as to what operationally useful decision it can help with. Paypal claim it'll be a big win of some sort once they're no longer treated as a special case, rather just the same as every other domain. Cheers, Steve _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
