IETF Logo Mail Archive

Re: [Asrg] Consent Proposal

"C. Wegrzyn" <wegrzyn@garbagedump.com> Wed, 02 July 2003 17:34 UTC

Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA03482 for <asrg-archive@odin.ietf.org>; Wed, 2 Jul 2003 13:34:45 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19XlUm-0001Zs-Fg for asrg-archive@odin.ietf.org; Wed, 02 Jul 2003 13:34:17 -0400
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id h62HYGGa006057 for asrg-archive@odin.ietf.org; Wed, 2 Jul 2003 13:34:16 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19XlUm-0001Zc-6t for asrg-web-archive@optimus.ietf.org; Wed, 02 Jul 2003 13:34:16 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA03455; Wed, 2 Jul 2003 13:34:13 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19XlUk-0004kW-00; Wed, 02 Jul 2003 13:34:14 -0400
Received: from ietf.org ([132.151.1.19] helo=optimus.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19XlUj-0004kT-00; Wed, 02 Jul 2003 13:34:13 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19XlUX-0001TI-4g; Wed, 02 Jul 2003 13:34:01 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19XlUR-0001T4-Fh for asrg@optimus.ietf.org; Wed, 02 Jul 2003 13:33:55 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA03432 for <asrg@ietf.org>; Wed, 2 Jul 2003 13:33:52 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19XlUP-0004k1-00 for asrg@ietf.org; Wed, 02 Jul 2003 13:33:53 -0400
Received: from mxsmta03.inithost.com ([209.235.30.105] helo=mxsmta03.dellhost.com) by ietf-mx with esmtp (Exim 4.12) id 19XlUO-0004jy-00 for asrg@ietf.org; Wed, 02 Jul 2003 13:33:52 -0400
Received: from garbagedump.com ([24.128.102.183]) by mxsmta03.dellhost.com (InterMail vM.5.01.03.06 201-253-122-118-106-20010523) with ESMTP id <20030702173541.GUBP28645.mxsmta03.dellhost.com@garbagedump.com>; Wed, 2 Jul 2003 13:35:41 -0400
Message-ID: <3F031784.60408@garbagedump.com>
From: "C. Wegrzyn" <wegrzyn@garbagedump.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a; MultiZilla v1.4.0.4A) Gecko/20030612
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Markus Stumpf <maex-lists-spam-ietf-asrg@Space.Net>
CC: "Asrg@Ietf. Org" <asrg@ietf.org>
Subject: Re: [Asrg] Consent Proposal
References: <20030702015753.F74353@Space.Net> <HKEFKPNPJLANNFPFMDKJIELDIIAA.danny@apache.org> <20030702184054.B82235@Space.Net> <3F030C58.3050605@garbagedump.com> <20030702192330.D82235@Space.Net>
In-Reply-To: <20030702192330.D82235@Space.Net>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Wed, 02 Jul 2003 13:33:56 -0400
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit

Hi Markus. I have only dealt with small groups of trusts - between 
cooperating companies.  The idea was to develop a proxy that would sit 
in front of the MTAs and handle the trust.

As for doing it on a broader scale, I don't know. Trust isn't one of 
those transitive things (A trusts B, B trusts C doesn't mean A trusts 
C). If you take a service like Yahoo email I don't know if the system 
would even scale.

Chuck Wegrzyn


Markus Stumpf wrote:

>On Wed, Jul 02, 2003 at 12:46:16PM -0400, C. Wegrzyn wrote:
>  
>
>>I'll just tell you what I designed..your mileage can vary. Trust was 
>>established between two parties, out of band perhaps. Once that trust 
>>was established all that was required was the use of X509 certs. A proxy 
>>in front of the MTAs would do all the rest....
>>    
>>
>
>I /do/ like the idea in principle.
>What do you think would be required to establish a web of trust large
>enough to cover the current email infrastructure.
>I know quite some mailadmins (some personally, some virtually for years)
>good enough to "trust" them. We could exchange the keys and have a
>small web of trust. What is the benefit? I cannot reject all emails from
>mailservers I don't have a key or I won't have any customers in zero time.
>
>Current practise is to trust everyone unless configured otherwise. I don't
>see a chance for a system that works the opposite way in the near future.
>
>What we need is a simple system that says "trust me" and that even
>allows to say "don't trust me" (because I am a workstation and probably
>hacked or virus infected or abused).
>And IMHO the cheapest, simplest and fastest method would be to associate
>TXT records along with PTR records for IP addresses that would contain:
>    "MTA=yes"
>or
>    "MTA=no"
>and an optional abuse contact in form of an URI like
>    "MTA=yes;mailto:abuse@example.com"
>    "MTA=no;http://www.example.com/abuse/contact.html"
>
>If no such record is available it's up to you whether you accept or not.
>
>It wouldn't break any of the existing mechanisms like forwarding, it
>wouldn't have problems with large DNS packets, it uses standard existing
>methods and it's easy to deploy.
>However it would be weaker than RMX or SPF or ...
>
>	\Maex
>
>  
>



_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.23.0 | Report a Bug | By Email