IETF Logo Mail Archive

Re: [Asrg] [Fwd: Yahoo! Mail Publishes Specification for DomainKeys]

Mark Baugher <mbaugher@cisco.com> Thu, 20 May 2004 00:00 UTC

Received: from optimus.ietf.org (www.iesg.org [132.151.1.19]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA00062 for <asrg-archive@odin.ietf.org>; Wed, 19 May 2004 20:00:13 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1BQawU-00005M-L1 for asrg-archive@odin.ietf.org; Wed, 19 May 2004 19:57:46 -0400
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id i4JNvkXt000323 for asrg-archive@odin.ietf.org; Wed, 19 May 2004 19:57:46 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1BQaq6-00079E-AZ for asrg-web-archive@optimus.ietf.org; Wed, 19 May 2004 19:51:10 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id TAA29651 for <asrg-web-archive@ietf.org>; Wed, 19 May 2004 19:51:08 -0400 (EDT)
Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BQaq4-0005iW-Cl for asrg-web-archive@ietf.org; Wed, 19 May 2004 19:51:08 -0400
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BQap7-0005c3-00 for asrg-web-archive@ietf.org; Wed, 19 May 2004 19:50:09 -0400
Received: from optimus.ietf.org ([132.151.1.19]) by ietf-mx with esmtp (Exim 4.12) id 1BQao5-0005VO-00 for asrg-web-archive@ietf.org; Wed, 19 May 2004 19:49:05 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1BQaeM-0004BS-Lb; Wed, 19 May 2004 19:39:02 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1BQaXp-0001qu-6U for asrg@optimus.ietf.org; Wed, 19 May 2004 19:32:17 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id TAA28914 for <asrg@ietf.org>; Wed, 19 May 2004 19:32:15 -0400 (EDT)
Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BQaXn-0003V9-I4 for asrg@ietf.org; Wed, 19 May 2004 19:32:15 -0400
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BQaWn-0003Od-00 for asrg@ietf.org; Wed, 19 May 2004 19:31:14 -0400
Received: from sj-iport-5.cisco.com ([171.68.10.87]) by ietf-mx with esmtp (Exim 4.12) id 1BQaWB-0003H6-00 for asrg@ietf.org; Wed, 19 May 2004 19:30:35 -0400
Received: from sj-core-4.cisco.com (171.68.223.138) by sj-iport-5.cisco.com with ESMTP; 19 May 2004 16:29:13 -0700
Received: from mbaugher-w2k07.cisco.com (sjc-vpn3-1086.cisco.com [10.21.68.62]) by sj-core-4.cisco.com (8.12.10/8.12.6) with ESMTP id i4JNU0Vi019711; Wed, 19 May 2004 16:30:03 -0700 (PDT)
Message-Id: <6.0.0.22.2.20040519162859.0429b910@mira-sjc5-6.cisco.com>
X-Sender: mbaugher@mira-sjc5-6.cisco.com
X-Mailer: QUALCOMM Windows Eudora Version 6.0.0.22
To: William Leibzon <william@completewhois.com>
From: Mark Baugher <mbaugher@cisco.com>
Subject: Re: [Asrg] [Fwd: Yahoo! Mail Publishes Specification for DomainKeys]
Cc: ASRG <asrg@ietf.org>
In-Reply-To: <Pine.LNX.4.44.0405191138550.29979-100000@cwhois1.completew hois.com>
References: <40AAB82D.3090004@solidmatrix.com> <Pine.LNX.4.44.0405191138550.29979-100000@cwhois1.completewhois.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
Date: Wed, 19 May 2004 16:30:31 -0700
X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org
X-Spam-Status: No, hits=0.1 required=5.0 tests=AWL autolearn=no version=2.60

At 11:46 AM 5/19/2004, William Leibzon wrote:

>Big problem I have with it is that yahoo domain keys breaks with email
>forwarders, mail lists and roaming users (and they fully acknoledge that
>it does not work with them and say there is no good work-around). That
>makes it no-go as far as I concerned for initial deployment unless
>changes are made.

You're assuming that there's no way to fix the break.


>And frankly, I'm less then satisfied after so many promises and lots of
>wait for it. Its long document (which I ready fully) that primarily just
>pounds on rather old idea of entering public key in dns and using private
>key to add signed header to email, this idea had been around for at least
>4 years (possibly more) and I thought they found ways around above listed

What is new is the signing of the header.  I don't believe that this
has been practiced since the days of PGP.  I don't know about PEM.

Mark

>and other similar problems when email content must be changed in process
>of tranmission by intermediate server, but unfortunetly they did not. Nor
>do they address entering keys too well, again we're back to reusing TXT
>(where as what we need is standard for entering public keys in DNS and
>this is needed not only for email but for several others things and in
>general would come usefull, there have been drafts about this actually).
>
>On Tue, 18 May 2004, Yakov Shafranovich wrote:
>
> >  From MARID list.
> >
> > -------- Original Message --------
> > Subject: Yahoo! Mail Publishes Specification for DomainKeys
> > Date: Tue, 18 May 2004 10:46:32 -0400
> > From: Larry Seltzer <larry@larryseltzer.com>
> > To: 'IETF MARID WG' <ietf-mxcomp@imc.org>
> >
> >
> > (see http://antispam.yahoo.com/domainkeys in particular)
> >
> > LJS
> >
> > Yahoo! Mail Publishes Specification for DomainKeys
> >
> > E-mail Authentication Solution Filed with IETF;
> >
> > Alpha Version of Open Source Code Available
> >
> > WHAT:
> >
> > On Tuesday, May 18, Yahoo! announces the publication of its
> > specification on DomainKeys,
> > a cryptographic e-mail authentication solution to help fight spam.
> >
> > DomainKeys: In order to attack spam at its roots, a powerful solution is
> > needed that can
> > verify the identity of the e-mail sender and put an end to spoofing and
> > forgery.
> > DomainKeys help fight spam by providing strong assurance of both the
> > sender's identity
> > and the integrity of the e-mail content through the use of
> > public/private key
> > cryptography.
> >
> > On Monday, May 17, the company filed the spec as an Internet-draft with
> > the IETF
> > (Internet Engineering Task Force) standards body to begin the
> > standardization process.
> >
> > Additionally, Yahoo! is currently developing a reference implementation
> > for DomainKeys
> > that can be plugged into Message Transfer Agents (MTAs), such as qmail.
> > An alpha version
> > of this software will be released under a royalty free license at
> > SourceForge.net.
> >
> > WHERE:
> >
> > The specification, license terms and FAQs are posted on Yahoo!'s
> > Anti-Spam Resource
> > Center:  http://antispam.yahoo.com
> > The alpha version of the software will be hosted at SourceForge.net at:
> > http://sourceforge.net/index.php
> >
> > --
> > Yakov Shafranovich / asrg <at> shaftek.org
> > SolidMatrix Technologies, Inc. / research <at> solidmatrix.com
> > "There is nothing new under the sun" (Eccls. 1:9)
> >
> > _______________________________________________
> > Asrg mailing list
> > Asrg@ietf.org
> > https://www1.ietf.org/mailman/listinfo/asrg
> >
>
>
>_______________________________________________
>Asrg mailing list
>Asrg@ietf.org
>https://www1.ietf.org/mailman/listinfo/asrg



_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.23.0 | Report a Bug | By Email