On Wednesday 02 August 2006 22:02, Marc Perkel took the opportunity to say: > Allowing IMAP/POP to Send Email > > The email SMTP protocol was created in simpler times. One of the > problems is that it is far too easy for any one person to impersonate > any other person on the planet. One of the things that will reduce spam > and fraud on the Internet is to make it more difficult for one person to > impersonate someone what they aren't. But to do this we need to change > that way email is distributed and do it in a way that is a natural > evolution of the current system.
Haven't we been through this already? Switching submission protocols does
*not* make the sender address more authenticated. Cryptographic signatures
do, provided that there is infrastructure in place that allows the recipient
to bind the key that made the signature to a physical person. If you can
trust the server that handed you the mail (e.g. by help of SPF...), that
alone can ensure that the sender address is authentic, but you can't trust
servers in general.
--
Magnus Holmgren [EMAIL PROTECTED]
(No Cc of list mail needed, thanks)
pgp0ZleZnzSiD.pgp
Description: PGP signature
