RFC 2822: With so many viruses forging From: addresses these days some...

Internet RFC Index

Usenet FAQ Index

Other FAQs

Documents

Search
  Search FAQs
  Search RFCs

 
Reader comments:
 

Comment by ni-s
Submitted on 2/8/2004
Related RFC: RFC 2822
Rating:	Rate this comment: N/A Worst Weak OK Good Great
With so many viruses forging From: addresses these days some kind of validation of sender should be added. A suggestion that has occured to me would be to add a signature of the Message-ID: e.g. Message-ID-Signature: xxxxxxxx where xxxxx would be PGP-like signature of the message ID and From: A Message-ID is a unique string and essentialy forms a 'challenge' for a challenge-reponse authentication Public key could either be in another header or obtained from a keyserver based on the From: address. Idea is to have this checkable from just the headers of the message.

 
 
FAQS.ORG makes no guarantees as to the accuracy of the posts. Each post is the personal opinion of the poster. These posts are not intended to substitute for medical, tax, legal, investment, accounting, or other professional advice. FAQS.ORG does not endorse any opinion or any product or service mentioned mentioned in these posts.

<< Back to: RFC 2822