[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: (DEPLOY) In Support of Sender ID

To: ietf-mxcomp@xxxxxxx
Subject: Re: (DEPLOY) In Support of Sender ID
From: Graham Murray <graham@xxxxxxxxxxxxxxx>
Date: Fri, 03 Sep 2004 06:25:21 +0100
In-reply-to: <> (Rand Wacker's message of "Thu, 2 Sep 2004 15:06:49 -0700 (PDT)")
List-archive: <http://www.imc.org/ietf-mxcomp/mail-archive/>
List-id: <ietf-mxcomp.imc.org>
List-unsubscribe: <mailto:ietf-mxcomp-request@imc.org?body=unsubscribe>
References: <> <>
Sender: owner-ietf-mxcomp@xxxxxxxxxxxx
User-agent: Gnus/5.110003 (No Gnus v0.3) Emacs/21.3.50 (gnu/linux)

Rand Wacker <rand@xxxxxxxxxxxx> writes:

> As I said before, there is a large majority of mail that goes from large
> commercial sites (or consumer ISPs) merely one hop to another large
> commercial ISP, so the From: header will be successfully authenticated.

In the case of sending from a large ISP (and that includes commercial
sites who outsource email) that is not true. Unless the ISP does
additional checking then Sender-ID (and SPF) still allows a customer
of the ISP to forge the mail as coming from any other customer of that
ISP.

Follow-Ups:
- Re: (DEPLOY) In Support of Sender ID
  - From: Rand Wacker
- Re: (DEPLOY) In Support of Sender ID
  - From: Meng Weng Wong

References:
- RE: (DEPLOY) In Support of Sender ID
  - From: Michael R. Brumm
- RE: (DEPLOY) In Support of Sender ID
  - From: Rand Wacker

Prev by Date: RE: PRA Patent: License for Display in MUAs?
Next by Date: Re: Obstacles between us and the finish line
Previous by thread: RE: (DEPLOY) In Support of Sender ID
Next by thread: Re: (DEPLOY) In Support of Sender ID
Index(es):
- Date
- Thread