Contributed by grey on from the this crap again? Let's give them an earful dept.
As you may have noticed, there is currently a bit of a kafufle with the licensing Microsoft is proposing for Sender-ID. Seeing how the IETF is considering Sender-ID as a new standard (and we all know how well the IETF track record has been on such things recently), it doesn't take a rocket scientist to see the similarities here.
While I'm sure undeadly readers are happy to have the free, functional and secure alternatives like CARP and OpenBSD's robust stack implementation, the IETF now seems to be pandering to large corporations and their poorly licensed or patented IP all too often. In this particular case, even Eric Allman indicates that this may change some of the ways in which sendmail is distributed or licensed.
Ironically, on a different, but somewhat related issue, the proposed license for the upcoming Sendmail X is already raising eyebrows on its own, and concerns exist as to whether such future versions will be free enough to distribute.
(Comments are closed)
By Anthony (68.145.111.152) on
Comments
By ivlad (83.149.192.3) on
M$ marketing is gooood, so every dumb ass manager in the every IT department will be convinsed to use it.
Comments
By knomevol (216.99.238.3) knomevol@altivolus.com on
Comments
By goatmaster (65.49.54.179) blsonne@rogers.com on
By Anthony (68.145.111.152) on
By Ash'aman (212.135.28.58) on
Comments
By Anonymous Coward (68.142.8.147) on
By Anonymous Coward (67.153.107.130) on http://www.postfix.org
Comments
By janus (213.39.128.56) janus % errornet % de on http://janus.errornet.de
By pravus (204.66.3.28) on
wake up...
Comments
By chill (216.229.170.65) on
Wake up yourself.
Comments
By Anonymous Coward (69.197.92.190) on
By djm@ (61.95.66.134) on
By tedu (66.93.171.98) on
By Anonymous Coward (141.211.62.118) on
According to http://spf.pobox.com/rfcs.html:
If I understand the authorship of these things correctly, SPF Classic was written wholly by Meng Wong. As such, he is the only person who can claim patents on any item of SPF Classic. Furthermore, any patent on those parts of Sender ID which are obvious in light of SPF Classic is invalid. Consequently, an implementation of SPF Classic which follows the original standard strictly is free of any patent restrictions, and furthermore, if any of the changes made by Sender ID to the original standard are obvious (such as cosmetic changes), they are also free of patent restrictions.
I think this is the way to go.
By t (172.194.139.174) on
By CAMNE (68.76.9.62) on
Maybe someone can explain why no one is discussing email certificates... they are supported by most/all email clients, and are easily obtainable.
Thawte
All you need is the crypto-signature, skip the web-of-trust stuff... it takes maybe five minutes to setup.
Simply configure your email client to filter all non-signed (or invalid-signed) email into a junk folder, and tell everyone you exchange email with to get a certificate.
SPAM and virus-infected emails will not have valid signatures, and if spammers ever start signing their emails, everyone can petition the trusted third party to revoke their certificate.
Granted this is all at the client-end, but maybe someone will come up with patches for common SMTP servers to check signatures...
FYI - Mozilla Mail and Thunderbird on OpenBSD work fine with certificates...
Comments
By djm@ (61.95.66.134) on
Comments
By CAMNE (68.76.9.62) on
My bad...
I use both Mozilla Mail and Thunderbird, I have IMAP/SSL and A-SMTP/SSL setup in both (connecting to a remote OpenBSD mail server), but the eMail Certificate is in Mozilla only (which I use daily).
I only use Thunderbird to auto-sort my email (I have a *lot* of message filters defined in Thunderbird).
By CAMNE (68.76.9.62) on
After a quick double-check, the current version of Thunderbird (v0.7.3) does support email certificates, the version in ports (v0.5) doesn't.
By Anonymous Coward (69.197.92.190) on
Comments
By janus (213.39.149.25) janus % errornet % de on http://janus.errornet.de
What do you expect from the IETF?!
I've read a bit on their mailinglist regarding those anti spam things...
in my opinion they don't care about free software.
Sounds familiar if you remember that the IETF mostly consists of companies interessted in making profit with `standards' they `develop'.