Case in point as to why Prof Bernstein's hack is out to lunch. Like many folk Dan is running a spam filter that requests a respond receipt to verify an email. Unlike most folk however Dan's filter requests a response on every single message. One callback request is OK, every time is bad manners. Now I know that there are spams that hijack mailing list addresses to bypass such filters, but all my mail is signed for that reason. Whatever you think of the VeriSign CPS I think we can all agree that even a self signed cert should be sufficient in combination with a confirmation email and a VeriSign class 1 should be sufficient for spam filtering purposes. Dan's hack solves his problem fine but does not solve the problem for anyone else because it only solves the problem from one perspective. Phill
Attachment:
smime.p7s
Description: application/pkcs7-signature