I just scanned this sub-thread. It appears to be one that started badly and got
worse. From what I can see, there's little change that trend will change.
I guess I should also note that I don't see it's relevance to marf.
d/
On 2/13/2012 1:36 PM, Bank Security wrote:
I was addressing authentication, not reputation.
This makes no sense at all. DKIM and SPF do authentication right now.
If for some reason you want authentication of the From: line, you know
where to find Sender-ID or DMARC.
Your message a few rounds ago said:
I can't conceive of an Internet-based technology that can confirm
intent or legitimacy of the signer/author/whatever.
How about a public key in a TXT RR?
You can tell that the From: line is tied to a DNS entry, but you can't
tell from that DNS entry whether the sender is the person who he
claims to be, or whether his intent is to phish you or tell you that
your bank account really is overdrawn.
This argument has been beaten to death N times, no need for another round.
R's,
John
_______________________________________________
marf mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/marf
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
marf mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/marf
