[arin-ppml] Access to list of Number Resources with no valid POCs
Leif Sawyer
lsawyer at gci.com
Wed Aug 20 15:01:20 EDT 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
John -
I think that PGP signing all outgoing email is a great step at providing a level
of authentication and validation for non-secure-channel communications.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlP08C4ACgkQlZlwDwi+7aiOawCgsR1wcbMRql7s27u1rsdOivq8
xTsAmwXsdzlQtlHtLwe4ltyN1fJ/QtwM
=JEUg
-----END PGP SIGNATURE-----
-----Original Message-----
From: arin-ppml-bounces at arin.net [mailto:arin-ppml-bounces at arin.net] On Behalf Of John Curran
Sent: Wednesday, August 20, 2014 10:09 AM
To: Ted Mittelstaedt
Cc: arin-ppml at arin.net
Subject: Re: [arin-ppml] Access to list of Number Resources with no valid POCs
On Aug 20, 2014, at 12:24 PM, Ted Mittelstaedt <tedm at ipinc.net> wrote:
>
> Hi John,
>
> Embedded URLs are not really the problem - the problem is
> MIME-encoded email and HTML-encoded email that have the embedded URLs.
>
> If you are sending clickable URLs out in pure ASCII (text) emails
> then there isn't any problem. The fact is that many email clients
> when they see URL's in ASCII mail will make them "clickable" A pure
> text email cannot hide a different URL behind one URL.
>
> In an ideal world the URL would not exist in the email, because including it helps to legitimize the practice.
>
> But in practicality the most important thing is getting validation
> that the email address is being read by a human being, and the
> embedded URL does accomplish that. It may also be that the
> destination email address is something like "hostmaster at example.com"
> and is being forwarded to a recipient who's knee-jerk Reply would be
> to send the reply with a different senders address than what you
> emailed to. (which might complicate parsing the replies)
>
> Since your getting significant returns on the clicks then you should
> continue to use them - but my vote would be to ONLY use them in TEXT
> emails.
>
> I know that sending pure text emails is out of fashion - since that
> precludes people putting in all kinds of fancy logos and formatting
> which they believe are necessary to the continuation of the species -
> but us old timers were formatting ASCII-only email since before most
> of the young whippersnappers out there were in diapers. ;-)
Ted -
Point taken (and I am a huge fan of plain text email :-)... I will
look into any downsides to this approach and report back to the list.
Curious, would it help if ARIN pgp-signs the verification message with
our hostmaster at arin.net account? Does this change the requirement for
plain text email?
Thanks!
/John
John Curran
President and CEO
ARIN
_______________________________________________
PPML
You are receiving this message because you are subscribed to the ARIN Public Policy Mailing List (ARIN-PPML at arin.net).
Unsubscribe or manage your mailing list subscription at:
http://lists.arin.net/mailman/listinfo/arin-ppml
Please contact info at arin.net if you experience any issues.
More information about the ARIN-PPML
mailing list