#2 Signing mail submitted through MSA

v0.1.8
closed
5
2004-06-04
2004-06-03
Anonymous
No

Sites accepting mail on the submission port may wish to
consider these emails as valid for signing. I suggest
adding a switch for dk-milter to sign emails handled by
MSA. In future, dk-milter could do a db lookup for
sites using POP3 before SMTP authentication to check
whether the email should be signed.

Discussion

  • Logged In: YES
    user_id=1048957

    The risk is that spammers can then just start submitting
    spam on the MSA port, bypassing the security provided by DK.
    However, adding this flag with enough documentation
    attached to it warning of the risks is probably OK.

    The POP before SMTP idea should be in a separate RFE.

     
    • assigned_to: nobody --> sm-msk
     
  • Logged In: YES
    user_id=1048957

    The MSA support patch will be present in 0.1.9.

     
    • milestone: --> v0.1.8
     
  • Logged In: YES
    user_id=1048957

    Released in v0.1.9.

     
    • status: open --> closed