[41420] in cryptography@c2.net mail archive
Re: signing all outbound email
daemon@ATHENA.MIT.EDU (James A. Donald)
Fri Sep 8 10:39:15 2006
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Fri, 08 Sep 2006 07:02:21 +1000
From: "James A. Donald" <jamesd@echeque.com>
To: Paul Hoffman <paul.hoffman@vpnc.org>
Cc: Cryptography <cryptography@metzdowd.com>
In-Reply-To: <p06230909c1234cfc0b8a@[10.20.30.177]>
--
Paul Hoffman wrote:
> At 11:40 AM +0200 9/5/06, Massimiliano Pala wrote:
>> Jon Callas wrote:
>>>
>>> On 4 Sep 2006, at 4:13 AM, Travis H. wrote:
>>>
>>>> Has anyone created hooks in MTAs so that they
>>>> automagically [sign email]
>> [...]
>>> Go look at <http://www.dkim.org/> for many more
>>> details.
>>
>> This approach is MTA-to-MTA...
>
> No, it's not. The receiving MTA *and/or* MUA can
> verify signatures. That is clearly covered in the
> protocol document.
I do not seem to be able to use DKIM to for spam
filtering. I would like to whitelist all validly signed
DKIM from well known domains.
One way of doing this would be for the MTA to insist on
a valid signature when talking to certain well known
MTAs, and then my MUA could whitelist mail sent from
those well known MTAs
In short, I am not able to get any advantage out of
using this protocol, which means that there is no
advantage in sending me signed mail.
--digsig
James A. Donald
6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG
htNnuqbJ9fv6n64IRfD1zA7lLKKr2izEKeU8gcTj
4VIaWftcnkDyBJkkmq5thq8hruA/YIkpnczdJ3kzD
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
