Nico Schottelius via Postfix-users: > > Wietse Venema via Postfix-users <postfix-users@postfix.org> writes: > > > The nice part is that trust is decentralized. The bad part is that > > decentralized trust does not scale globally. It might work on a > > small scale of a few hundred participants. Email is much bigger. > > A totally different different question, for a PoC what would potentially > be the right way to hack such support into postfix?
Instead of changing SMTP, one right way is to follow DNSXL, SPF, DKIM, DMARC, TLSRPT, etc., and use DNS records for (decentralized!) information distribution. You can then enforce policies with Postfix plugin interfaces as described in: https://www.postfix.org/SMTPD_POLICY_README.html https://www.postfix.org/MILTER_README.html Then you can experiment with maintaining delegated trust at a large scale: work out membership criteria, who can add a new member, who can suspend a bad member (for example after a key compromise), and how to communicate suspension globally and timely. That is a development that does not belong on the Postfix mailing list. Good luck. Wietse _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
