[ietf-dkim] DKIM SSP: Security vulnerability when SSP record
does not exist?
Scott Kitterman
ietf-dkim at kitterman.com
Sat Aug 20 17:29:39 PDT 2005
Douglas Otis wrote:
> DKIM should verify a domain that can be held accountable for stopping
> abusive messages. (It would be nice for the recipient to see who is
> accountable.) However, displaying the accountable domain is not needed
> and should not be attempted with feeble header bindings. With DKIM,
> administrators can ensure bad actors are excluded. With DKIM, creating
> a list of trusted domains will exclude most of the emails which need
> greater examination.
>
So, given that view, as a sender, what's in it for me?
Sounds like all I get is more spam reports and maybe on a domain based
blacklist if someone doesn't like my mail? What benifit is being
offered that I should risk that?
Scott Kitterman
More information about the ietf-dkim
mailing list