Re: [Mailman-Developers] Two more DMARC mitigations
12 Jun
2014
12 Jun
'14
9:46 p.m.
Jim Popovitch writes:
Unless I am mistaking things, the sheer irony here is that Yahoo's bastardized version of DMARC, which is necessary to stave off collateral damage from their past security breach(es?), needs to be further augmented with even less user security in order to be secure.
I don't see why the OAuth version of John's proposal would be less secure.
If you want real irony, look no farther than Yahoo! Groups' From: header field. Yahoo! is using DMARC to get "yahoo.com" out of the From: field in list traffic, and Groups is putting it right back in.
3597
Age (days ago)
3597
Last active (days ago)
1 comments
2 participants
participants (2)
-
Barry Warsaw
-
Stephen J. Turnbull