[77788] in North American Network Operators' Group
Re: Sender authentication & zombies (was Re: Time to check the
daemon@ATHENA.MIT.EDU (Douglas Otis)
Sun Feb 6 02:49:46 2005
From: Douglas Otis <dotis@mail-abuse.org>
To: "J.D. Falk" <jdfalk@cybernothing.org>
Cc: nanog@merit.edu
In-Reply-To: <20050206031021.GN25489@arctic.org>
Date: Sat, 05 Feb 2005 23:49:07 -0800
Errors-To: owner-nanog-outgoing@merit.edu
On Sat, 2005-02-05 at 19:10, J.D. Falk wrote:
> On 02/05/05, Douglas Otis <dotis@mail-abuse.org> wrote:
>
> > DK or IIM makes it clear who is administering the server and this
> > authentication permits reputation assessment. Add an account
> > identifier, and the problem is nailed.
>
> Ah, so you're saying that only the reputation of individual
> e-mail addresses is worth paying attention to? How do you
> expect that to scale to billions of messages per day?
Without authenticating an identity, it must not be used in a reputation
assessment. Currently this is commonly done by using the remote IP
address authenticated through the action of transport. In the name
space there are two options, the HELO and a validated signature. DK and
IIM are attempting to allow the signature solution to scale.
-Doug
