Re: debian.org e-mail address and SPF/SRS

To: debian-devel@lists.debian.org
Subject: Re: debian.org e-mail address and SPF/SRS
From: Matthias Urlichs <smurf@smurf.noris.de>
Date: Sat, 06 Nov 2004 07:48:11 +0100
Message-id: <[🔎] pan.2004.11.06.06.48.11.50590@smurf.noris.de>
References: <[🔎] 20041103231519.GB21713@aokiconsulting.com> <[🔎] 87actydm67.fsf@vawad.err.no> <[🔎] 20041104092659.GB7401@hezmatt.org>

Hi, Matthew Palmer wrote:

> Uhm, having just read through the supplied URL, I can't agree with the
> sanity of the proposal.  It appears to require that headers not be modified
> at all in transit

You can tell it which headers to protect, so that's not a problem.
In theory. Mailing lists do have a problem, but the list forwarder can
always re-sign the message. (It' in the draft.)

I don't like that proposal for a totally different reason: I need
to get the whole message before I can even think about rejecting it.
SPF, on the other hand, I can use as soon as I get the MAIL FROM:.

If I assume the DNS to be not compromised and mailers to be not-open-relay
(as the draft does), DomainKeys gets me precisely nothing, compared to
SPF. However, it'll hurt my bandwidth and my CPU.

-- 
Matthias Urlichs   |   {M:U} IT Design @ m-u-it.de   |  smurf@smurf.noris.de

Reply to:

References:
- debian.org e-mail address and SPF/SRS
  - From: Osamu Aoki <osamu@debian.org>
- Re: debian.org e-mail address and SPF/SRS
  - From: Tollef Fog Heen <tfheen@raw.no>
- Re: debian.org e-mail address and SPF/SRS
  - From: Matthew Palmer <mpalmer@debian.org>

Prev by Date: Re: debian.org e-mail address and SPF/SRS
Next by Date: svn.debian.org
Previous by thread: Re: debian.org e-mail address and SPF/SRS
Next by thread: Re: debian.org e-mail address and SPF/SRS
Index(es):
- Date
- Thread