[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Trouble with Sender Authentication

To: Scott Kitterman <scott@xxxxxxxxxxxxx>
Subject: Re: Trouble with Sender Authentication
From: Douglas Otis <dotis@xxxxxxxxxxxxxx>
Date: Wed, 8 Nov 2006 09:15:29 -0800
Cc: IETF MARID WG <ietf-mxcomp@xxxxxxx>
In-reply-to: <200611072110.41216.scott@xxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-mxcomp/mail-archive/>
List-id: <ietf-mxcomp.imc.org>
List-unsubscribe: <mailto:ietf-mxcomp-request@imc.org?body=unsubscribe>
References: <200611021612.13627.ietf-mxcomp.lists@xxxxxxxxxxxxx> <200611072002.35727.julian@xxxxxxxxxx> <91F4A2C0-3CF9-4875-86D3-9E2E5BC1192C@xxxxxxxxxxxxxx> <200611072110.41216.scott@xxxxxxxxxxxxx>
Sender: owner-ietf-mxcomp@xxxxxxxxxxxx



On Nov 7, 2006, at 6:10 PM, Scott Kitterman wrote:

On Tuesday 07 November 2006 18:41, Douglas Otis wrote:
Obsoleting existing libraries and related scripts as needed due tothe DDoS potential.
When you say the word script, do you mean SPF records (Please, thisis meant to be a yes/no question, there's no need to write adissertation that repeats the arguements made earlier in thethread. I read those already.)?

The concern is with libraries that execute scripts labeled as SPF 1or 2 contained within DNS resource records. A potential attackutilizing just the access of these resources records has not beendescribed.


-Doug

References:
- Trouble with Sender Authentication
  - From: K.J. Petrie
- Re: Trouble with Sender Authentication
  - From: Julian Mehnle
- Re: Trouble with Sender Authentication
  - From: Douglas Otis
- Re: Trouble with Sender Authentication
  - From: Scott Kitterman

Prev by Date: Lonlwgj
Next by Date: Re: Trouble with Sender Authentication
Previous by thread: Re: Trouble with Sender Authentication
Next by thread: Re: Trouble with Sender Authentication
Index(es):
- Date
- Thread