RE: Shocker: DKIM antispam standard can't stop spam

["Larry Seltzer" <Larry () larryseltzer com>]

> Damn it, I know I've told people this a thousand times, but I guess 
> you have to see it in print to believe it, eh? :-) 

I really ought to just shut up about this because this story gets
written every few months and I have to explain it every time, but nobody
who ever actually tried to understand DKIM or any other SMTP
authentication effort ever thought that it alone would stop spammers.
They were never designed to do that alone.

All SMTP authentication does is to authenticate the sender, or at least
the domain of the sender. You need to combine this with reputation
services in order to get real value out of it. Because systems like DKIM
work on domains as opposed to IP addresses they won't have as much
collateral damage for blacklists.

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blogs.eweek.com/cheap_hack/
Contributing Editor, PC Magazine
larryseltzer () ziffdavis com 

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.