IETF Logo Mail Archive

Re: [dane] [openpgp] The DANE draft

Hosnieh Rafiee <hosnieh.rafiee@huawei.com> Thu, 06 August 2015 09:04 UTC

Return-Path: <hosnieh.rafiee@huawei.com>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D98F11B2A39; Thu, 6 Aug 2015 02:04:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.211
X-Spam-Level:
X-Spam-Status: No, score=-4.211 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id twgLXDKU5Onf; Thu, 6 Aug 2015 02:04:39 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A6CD41B2A62; Thu, 6 Aug 2015 02:04:38 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml406-hub.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id BZO37041; Thu, 06 Aug 2015 09:04:30 +0000 (GMT)
Received: from LHREML504-MBS.china.huawei.com ([10.125.30.107]) by lhreml406-hub.china.huawei.com ([10.201.5.243]) with mapi id 14.03.0235.001; Thu, 6 Aug 2015 10:04:24 +0100
From: Hosnieh Rafiee <hosnieh.rafiee@huawei.com>
To: Paul Wouters <paul@nohats.ca>, Jiankang Yao <yaojk@cnnic.cn>
Thread-Topic: [dane] [openpgp] The DANE draft
Thread-Index: AQHQz1cAG6iEyei+P0uLgSQSGhtjSZ39ND4AgAA+fgCAAAazAIABGZUAgAAVT5P///M3AIAAEfCg
Date: Thu, 06 Aug 2015 09:04:23 +0000
Message-ID: <814D0BFB77D95844A01CA29B44CBF8A7015D666D@lhreml504-mbs>
References: <CAMm+LwhYdBLXM8Td8q8SCnzgwywRgMx3wNKeS_Q0JSN4Lh7rZQ@mail.gmail.com> <87bnf1hair.fsf@alice.fifthhorseman.net> <alpine.LFD.2.11.1507250832510.854@bofh.nohats.ca> <87bnem2xjq.fsf@alice.fifthhorseman.net> <alpine.LFD.2.11.1508050331340.1451@bofh.nohats.ca> <55C1F35A.5070904@cs.tcd.ie> <B7419740-25C9-4F8D-85AE-FC6E11BCC038@vpnc.org> <55C22D64.9080507@strotmann.de>, <alpine.LFD.2.11.1508060417450.16408@bofh.nohats.ca> <20150806163914546863148@cnnic.cn> <alpine.LFD.2.11.1508060447180.16408@bofh.nohats.ca>
In-Reply-To: <alpine.LFD.2.11.1508060447180.16408@bofh.nohats.ca>
Accept-Language: en-US, zh-CN
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.221.82.162]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <http://mailarchive.ietf.org/arch/msg/dane/ixedOXe60Tz4Mq1jJ4Ut0boHmws>
Cc: IETF OpenPGP <openpgp@ietf.org>, dane <dane@ietf.org>
Subject: Re: [dane] [openpgp] The DANE draft
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Aug 2015 09:04:41 -0000

Paul,


> I really do believe that the hashing is not an affective security
> meassure.
> 

By using hash, we make it harder for an attacker to find email addresses of another person. Of course, we cannot prevent the attack. 

Let me give you a real example from a real person that I name him Bob. Bob hasn't published any email address on his personal website but he used a form so that others can send me email only via form.
The spammer also tried to send hiim message via this form in a hope that they can receive an answer so that they can have his email address. But Bob also used other approaches such as captcha. 

After that, he no longer received any spamming email because it was too efforts for spammer to check the captcha and take more of their time. 


I hope it is clear,
Hosnieh

v2.23.0 | Report a Bug | By Email