On Thursday, April 02, 2009 12:13 PM -0600 LuKreme <krem...@kreme.com>
wrote:
You should be sending mail out through your ISP which should be accepting
your outbound mail as from you since they know who you are. Once your
ISP (with their correctly configured SASL enabled mailserver) passes it
along to the next server, you have a valid chain that goes from your
connection to your ISP to the destination.
How does one join this "clique" of trusted senders? Right now I can buy a
static IP and set up a mail server that's relatively trusted. In your
scheme, what additional steps do I need to take to avoid submitting my mail
to the wiretap-ridden server run by my ISP?
I'm a fan of "web of trust" designs so I'd favor registering a potential
sender with some kind of distributed reputation system. Given that, you
just need the sender to supply authentication credentials to test against
its trusted web. You could either sign the message, authenticate the
transport, or both.
