[ietf-dkim] suspicious and SUSPICIOUS
Charles Lindsey
chl at clerew.man.ac.uk
Wed Oct 3 08:46:18 PDT 2007
On Tue, 02 Oct 2007 15:27:33 +0100, <Bill.Oxley at cox.com> wrote:
> "A member of a mailing list needs to know two things:
> a) did the message come via the mailing list?
> b) was it sent to the mailing list by the purported "From"?"
>
> Why would anyone care about b? It is a mailing list which by nature is
> somewhat anonymous and self inclusive. Either a post matches proper list
> content or a moderator will boot the poster with or without warning.
It delends on the nature of the mailing list, whether it are open to
anyone to post, and what the moderation policy is (or even if there is
one).
Suppose, for example, that a submission to the list has been forged in the
name of a regular contributor - so it may not be obvious that it is a
forgery, and indeed there may be discussion on-list concerning its
provenance. You cannot assume that list managers will necessarily be
checking DKIM signatures.
But if it is known that the regular contributor regularly signs with DKIM,
that makes it easier to spot the forgery.
--
Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131
Web: http://www.cs.man.ac.uk/~chl
Email: chl at clerew.man.ac.uk Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9 Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5
More information about the ietf-dkim
mailing list