| CARVIEW |
Select Language
HTTP/1.1 200 OK
Date: Mon, 14 Jul 2025 13:28:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Strict-Transport-Security: max-age=31536000;
Last-Modified: Fri, 22 Mar 2024 19:43:13 GMT
ETag: "160c-6144508d294ee"
Accept-Ranges: bytes
Content-Length: 5644
Content-Type: text/html
[ppml] Policy Proposal 2007-2: Documentation of the Mail-From Authentication Method
Fri Feb 16 17:56:38 EST 2007
More information about the ARIN-PPML mailing list
[ppml] Policy Proposal 2007-2: Documentation of the Mail-From Authentication Method
Member Services info at arin.netFri Feb 16 17:56:38 EST 2007
- Previous message (by thread): [ppml] Policy Proposal 2007-1: Reinstatement of PGP Authentication Method
- Next message (by thread): [ppml] Policy Proposal 2007-3: Documentation of the X.509 Authentication Method
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 15 February 2007 the ARIN Advisory Council (AC) concluded its review of 'Documentation of the Mail-From Authentication Method' and accepted it as a formal policy proposal for discussion by the community. The proposal is designated Policy Proposal 2007-2: Documentation of the Mail-From Authentication Method. The proposal text is below and can be found at: https://www.arin.net/policy/proposals/2007_2.html All persons in the community are encouraged to discuss Policy Proposal 2007-2 prior to it being presented at the ARIN Public Policy Meeting in San Juan, Puerto Rico, 23-24 April 2007. Both the discussion on the Public Policy Mailing List and at the Public Policy Meeting will be used to determine the community consensus regarding this policy proposal. The ARIN Internet Resource Policy Evaluation Process can be found at: https://www.arin.net/policy/irpep.html ARIN's Policy Proposal Archive can be found at: https://www.arin.net/policy/proposals/proposal_archive.html Regards, Member Services American Registry for Internet Numbers (ARIN) ## * ## 2007-2: Documentation of the Mail-From Authentication Method Authors: Paul Vixie, Mark Kosters, Chris Morrow, Jared Mauch, Bill Woodcock Proposal type: New Policy term: Permanent Policy statement: DELETION FROM THE NRPM 12.1 Mail-From This section intentionally left blank. ADDITION TO THE NRPM 12.1 Mail-From Mail-From is the default authentication method by which registration records are protected from vandalism. If a registrant fails to designate a more secure method, any subsequent email which bears the sender address of an authorized Point of Contact may be deemed authentic with regard to the registrant's records. Since it is trivial to forge a sender address, Mail-From should not be regarded as secure. Use of Mail-From authentication is not recommended to any registrant who has the means to implement either of the more secure cryptographic authentication methods. Rationale: This policy complements the previously-proposed "Reinstatement of PGP Authentication Method" which introduces section 12 to the NRPM. Section 12 relates the existence of three authentication methods. Two of those, mail-from and X.509, were preexisting but not documented within the NRPM. This policy proposal simply seeks to provide brief documentation of the existence of the mail-from authentication method. Because the specific wording of the documentation may be subject to debate, and is in no way interdependent upon the documentation of the other two methods, it is being proposed in a separate policy, so that consensus may be more easily reached. Timetable for implementation: Immediate
- Previous message (by thread): [ppml] Policy Proposal 2007-1: Reinstatement of PGP Authentication Method
- Next message (by thread): [ppml] Policy Proposal 2007-3: Documentation of the X.509 Authentication Method
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
More information about the ARIN-PPML mailing list