[Mimedefang] Deadline for SPF records *long w/morbid horoscope*

[Steffen Kaiser]

On Thu, 12 Aug 2004, Kelson Vibber wrote:

> Sure, PGP and S/MIME are probably more elegant solutions.  But if you think 
> it's hard getting mail server admins to agree on and implement something like 
> SPF, just try convincing every man, woman and child on the Internet to 
> digitally sign every piece of outgoing mail!

That's a problem of:

a) how hard is it to sign a mail (try to sign a mail with PGP with Mozilla 
or Outlook for instance),
b) how hard and cumbersum is it to gather a certificate (try to get a cert 
for S/Mime for instance).

Both conditions above indicate that it is not easy, but it is not easy by
intention; it gets even more painful when you try to set up such scenario
for different mail addresses, aka "roles", e.g. when you participate in
various projects, firms, or "morally bad" mailing lists.

BTW: Many people think of PGP and S/Mime very personally, I mean, they 
believe that that you can be tracked down all the net by them. However, 
PGP signs are absolutely not human-personalized, only when you want to 
enter a partitucal web-of-trust. Also, PGP lacks the check currently, that 
you can ensure that the corresponding mail address is not faked as well.

Bye,

-- 
Steffen Kaiser