[ietf-dkim] Re: New Issue: Threat-00 Limiting the scope of trust
hsantos at santronics.com
Tue Feb 14 14:17:52 PST 2006
----- Original Message -----
From: "Douglas Otis" <dotis at mail-abuse.org>
To: "Frank Ellermann" <nobody at xyzzy.claranet.de>
> Verifying the HELO would be analogous to checking a wax seal
> on an envelope.
I would not agree with this analogy.
First, "Wax Seals" are user based and optional. The HELO Client Domain
Names (CDN) are not.
Second, the HELO CDN would be more analogous to the postal service
postmarks indicating the time of processing, postal office, location,
etc, that handled the processing and delivery of the parcel.
The realistic fact most people don't bother to look at it, or if they
did, probably couldn't make heads or tails with the information, it is
extremely close, if not exactly equivalent to how worthless the SMTP
client domain name has become today.
To put trust behave it (HELO), it would be akin to having the same trust
when using a registered or certified mail. Without it, having the
postmarks won't tell you how many "hands" outside the portal service
touched the letter.
Hector Santos, Santronics Software, Inc.
More information about the ietf-dkim