Sender authentication & zombies (was Re: Time to check the rate limits on your mail servers)

• Previous message (by thread): Sender authentication & zombies (was Re: Time to check the rate limits on your mail servers)
• Next message (by thread): Sender authentication & zombies (was Re: Time to check the rate limits on your mail servers)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 2005-02-05 at 19:10, J.D. Falk wrote:
> On 02/05/05, Douglas Otis <dotis at mail-abuse.org> wrote: 
> 
> > DK or IIM makes it clear who is administering the server and this
> > authentication permits reputation assessment.  Add an account
> > identifier, and the problem is nailed.
> 
> Ah, so you're saying that only the reputation of individual
> e-mail addresses is worth paying attention to?  How do you
> expect that to scale to billions of messages per day?

Without authenticating an identity, it must not be used in a reputation
assessment.  Currently this is commonly done by using the remote IP
address authenticated through the action of transport.  In the name
space there are two options, the HELO and a validated signature.  DK and
IIM are attempting to allow the signature solution to scale.

-Doug

• Previous message (by thread): Sender authentication & zombies (was Re: Time to check the rate limits on your mail servers)
• Next message (by thread): Sender authentication & zombies (was Re: Time to check the rate limits on your mail servers)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]