On Thu, 29 May 2003, Iljitsch van Beijnum wrote: > However, creating new publick/private key pairs is an incredibly > expensive operation, and one that a legitimate email wouldn't have to > do very often, but a spammer would if we just keep blacklisting their > keys.
Of course, this results in another Type 3 attack, where you get messages
with lots of bogus keys, and you have to verify the keys.
--Dean
