[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: DEPLOY: Sender-ID provides little or no defense against adaptive threats

To: terry@xxxxxxxxxxxxxxxxxxxx
Subject: RE: DEPLOY: Sender-ID provides little or no defense against adaptive threats
From: Dean Anderson <dean@xxxxxxx>
Date: Sun, 5 Sep 2004 12:00:39 -0400 (EDT)
Cc: "'Hallam-Baker, Phillip'" <pbaker@xxxxxxxxxxxx>, "'Anne P. Mitchell, Esq.'" <amitchell@xxxxxxxxx>, "'IETF MARID WG'" <ietf-mxcomp@xxxxxxx>
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-mxcomp/mail-archive/>
List-id: <ietf-mxcomp.imc.org>
List-unsubscribe: <mailto:ietf-mxcomp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-mxcomp@xxxxxxxxxxxx

On Sat, 4 Sep 2004 terry@xxxxxxxxxxxxxxxxxxxx wrote:

> 
> Not "accomplished nothing" but we would have accomplished the need for the next step:  SMTP AUTH
> that incorporates spoofing prevention.

Oh, SMTP AUTH needs to be changed now.  

And you still have SMTP AUTH passwords that can be stolen.

And you still have disposable accounts.

And you still have disposable domains.

Etc, etc, etc.

The user _still_ needs to do just what they did before.

At even greater expense, you have _still_ accomplished nothing.

		--Dean

References:
- RE: DEPLOY: Sender-ID provides little or no defense against adaptive threats
  - From: terry

Prev by Date: Re: DEPLOY: Rejection of Sender ID does not result in standardiza tion of SPF Classic
Next by Date: Re: DEPLOY: Rejection of Sender ID does not result in standardiza tion of SPF Classic
Previous by thread: RE: DEPLOY: Sender-ID provides little or no defense against adaptive threats
Next by thread: RE: DEPLOY: Rejection of Sender ID does not result in standardiza tion of SPF Classic
Index(es):
- Date
- Thread