It appears that Gellner, Oliver via mailop <[email protected]> said: > >> On 13.02.2024 at 17:05 John Levine via mailop wrote: >> It appears that Taavi Eomäe via mailop <[email protected]> said: >>> >>> On 13/02/2024 05:16, John Levine via mailop wrote: >>>> Right now if you get a message from Gmail or Yahoo with a valid DKIM >>>> signature, you >>>> can be quite confident that it came from whichever Gmail or Yahoo user >>>> is in the From header. >>> >>> That's absolutely not the guarantee provided by DKIM though. >> >> More to the point, whether it's DKIM nor S/MIME or PGP, bad guys can >> and do sign their mail, too. > >True, however I never came across a S/MIME- or PGP-signed spam or phishing >message - and we receive a lot of S/MIME emails.
I suspect that's because none of the large webmail systems understand S/MIME so why bother. Spammers go for volume. It seems to be a regional thing. There is basically no S/MIME in the U.S. other than internal mail in organizations with their own key management. R's, John _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
