On Sat, Mar 06, 2004 at 08:24:09PM +1300, Peter Gutmann wrote:
"R. A. Hettinga" <rah@shipwright.com> writes:
If we really do get cryptographic signatures on email in a way that works, expect 80% of all spam to be blown away as a matter of course.
I think you mean:
If we really do get cryptographic signatures on email in a way that works, expect 80% of all spam to contain legit signatures from hacked PCs.
"A way that works" would involve passphrase-locked keyrings, and forgetful MUAs (this mutt only caches the passphrase for a preset time). Filtering for signed/vs. unsigned mail doesn't make sense, authenticating and whitelisting known senders by digital signature makes very good sense. Of course, this doesn't help with people you don't yet know. Would work well with prioritizing mail if taken together with other modes of filtering, though.
This is just another variation of the "To secure the Internet, build a big wall around it and only let the good guys in" idea.
-- Eugen* Leitl <a href="http://leitl.org">leitl</a> ______________________________________________________________ ICBM: 48.07078, 11.61144 http://www.leitl.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE http://moleculardevices.org http://nanomachines.net [demime 1.01d removed an attachment of type application/pgp-signature]