[ietf-dkim] SSP issues
mike at mtcc.com
Wed May 30 16:35:12 PDT 2007
Scott Kitterman wrote:
> On Wed, 30 May 2007 15:52:17 -0700 Michael Thomas <mike at mtcc.com> wrote:
>> I have a lot of sympathy for this point of view, but something
>> also to consider here is that there is a relatively small, but
>> motivated set up of people who would like to use SSP as early
>> adopters. These are people who are being attacked by phishers
>> and would find it relatively easy to make a broad statement like
>> "by all means, trash mail from me that isn't signed". For those
>> folks, it just needs to be possible at all. For bind, this is a
>> straightforward, if somewhat aesthetically unappealing, process.
>> Other resolvers may vary (obviously).
> Receivers need to be able to query it too for it to be useful. Doable in
> BIND is intersting, but not nearly sufficient.
While I have sympathy on the server side, I have little sympathy on
the client side. Consing up a DNS query is hardly rocket science, and
there are lots of resolver libraries to accomplish that for somebody
tasked with the development.
More information about the ietf-dkim