Re: home server for email box

To: Jeremy Ardley <jeremy@ardley.org>
Cc: debian-user@lists.debian.org
Subject: Re: home server for email box
From: Jeffrey Walton <noloader@gmail.com>
Date: Sun, 12 Mar 2023 22:30:50 -0400
Message-id: <[🔎] CAH8yC8mAHHFuBhZ2m8wHRyid_ssNMKdo1smWunzjvWc-Lb3Urg@mail.gmail.com>
Reply-to: noloader@gmail.com
In-reply-to: <[🔎] 6ec2dcc3-6166-265d-8cc4-d66dd26cfb61@ardley.org>
References: <[🔎] 1700539476.531935.1678444177593.JavaMail.yahoo@mail.yahoo.co.jp> <[🔎] ZAsOJcbNrwyKzA55@phare.normalesup.org> <[🔎] ZAsYGbYCLwpC67xM@tuxteam.de> <ZAtSNN8mn/PsReqf@Oppenheimer> <[🔎] c7ffa6f1-49a6-56a6-c01a-e5035b05cb17@ardley.org> <[🔎] 67c12d3c-aa3b-9ab0-ff99-0e8101b6386a@ardley.org> <[🔎] 20230311224335.GB3993677@zira.vinc17.org> <[🔎] ZA1vg5O8E5BWqLT1@tuxteam.de> <[🔎] 20230312215247.GF3993677@zira.vinc17.org> <[🔎] f44983b8-9c52-878f-7c43-8d0daaca24c0@ardley.org> <[🔎] 20230312223916.GG3993677@zira.vinc17.org> <[🔎] 6ec2dcc3-6166-265d-8cc4-d66dd26cfb61@ardley.org>

On Sun, Mar 12, 2023 at 9:05 PM Jeremy Ardley <jeremy@ardley.org> wrote:
>
> On 13/3/23 06:39, Vincent Lefevre wrote:
> > O
> >> Each of those options has  been chosen by the mail list administrator.
> >>
> >> As a general principal it's a good thing to know the system sending you mail
> >> is genuine. Given the variety, there is no point in rejecting the email if
> >> there is no certificate, but having a verified certificate could be used to
> >> streamline any anti-spam processes such as not greylisting. I don't know if
> >> postfix can do that yet, but it seems it would be a good thing.
> > I think that DNS attacks are rather rare. Though strong authentication
> > is useful for various kinds of application, it is much less important
> > for antispam (I doubt that spammers do DNS attacks to let their spam
> > through).
> >
> I'm not assuming DNS attacks rather I was wondering if a valid
> certificate could give better 'customer service' i.e. quicker delivery
> of mail.
>
> Brief investigation suggests time consuming stuff happens before the
> certificate exchange - which in itself is expensive.
>
> However later processes could be expedited or improved with a valid
> certificate e.g. reducing content inspection or dropping some connection
> checks on emails from DNS names specified in the certificate

Email is store-and-forward. Ultimately, it is up to the recipient to
visit his/her/it mail server and download messages.

Security on a channel (like HTTPS) usually makes it tougher to inspect
traffic. Or at least it makes it tougher in HTTPS. In fact, spam
filters are mostly useless for messages encrypted with a tool like GPG
or GnuPG.

Jeff

Reply to:

Follow-Ups:
- Re: home server for email box
  - From: Vincent Lefevre <vincent@vinc17.net>

References:
- home server for email box
  - From: pyh@ymail.ne.jp
- Re: home server for email box
  - From: Nicolas George <george@nsup.org>
- Re: home server for email box
  - From: <tomas@tuxteam.de>
- Re: home server for email box
  - From: Henning Follmann <hfollmann@itcfollmann.com>
- Re: home server for email box
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: home server for email box
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: home server for email box
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: home server for email box
  - From: <tomas@tuxteam.de>
- Re: home server for email box
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: home server for email box
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: home server for email box
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: home server for email box
  - From: Jeremy Ardley <jeremy@ardley.org>

Prev by Date: Re: home server for email box
Next by Date: Re: home server for email box
Previous by thread: Re: home server for email box
Next by thread: Re: home server for email box
Index(es):
- Date
- Thread