From: SM <sm...@re...> - 2004-07-28 04:25:45
|
Hi Jose Marcio, At 13:24 27-07-2004, Jose Marcio Martins da Cruz wrote: >Yes, but I'm talking about the moment the message was signed. When you >endorse some paper wroten by some one other than you, you usually sign it >and write the date you signed it. Am I wrong ? You are not endorsing a paper here. You are only adding a key to validate whether the email from the domain listed in the From: header can be trusted as coming from a MTA for that domain. If you want to track the time, you can always refer to the Received: header. However, that timestamp may be inaccurate if the clock of the sending MTA is not in sync. If we use the endorsement analogy, then we also have to authenticate the username part of the email address. Do we want to get into that too? :) Regards, -sm |