[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"

To: "Derek J. Balling" <dredd@megacity.org>
Subject: Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
From: Mark Baugher <mbaugher@cisco.com>
Date: Mon, 08 Dec 2003 08:41:36 -0800
Cc: "Alan DeKok" <aland@ox.org>, asrg@ietf.org
In-reply-to: <1E8EFB23-2996-11D8-8EEC-000A27AF5202@megacity.org>
List-archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=unsubscribe>
References: <Your message of "Sat, 06 Dec 2003 23:45:06 EST." <3FD2B052.9090307@zemos.net><20031207152629.6F43A16CD1@mail.nitros9.org><6.0.0.22.2.20031207145757.03cc7c40@mira-sjc5-6.cisco.com><1E8EFB23-2996-11D8-8EEC-000A27AF5202@megacity.org>
Sender: asrg-admin@ietf.org

At 07:49 AM 12/8/2003, Derek J. Balling wrote:

On Dec 7, 2003, at 6:04 PM, Mark Baugher wrote:
  If DK means that each sender signs the message, then you have two
choices.  One is to have a domain-wide private key, in which case it
must change regularly, as spammers will quickly obtain it.
I don't know why you would assume this.
If I am $BIGCORP with $BIGNUM of employees, there's going to be less-than-honorable employees, there's going to be disgruntled ex-employees. If the sender signs their own message then your company's keys WILL get out into the wild.

I assumed that the MTA would have the private key and sign; not that the mail operator would hand our a *copy* of a public/private keypair to each sender. I have never heard of such a thing. Sorry that I missed that aspect of the yahoo proposal, where did they say that?

Mark

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

Follow-Ups:
- Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
  - From: Derek J. Balling

References:
- Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
  - From: Philip Miller
- Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
  - From: Alan DeKok
- Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
  - From: Mark Baugher
- Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
  - From: Derek J. Balling

Prev by Date: Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
Next by Date: Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
Previous by thread: Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
Next by thread: Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"
Index(es):
- Date
- Thread