… until it stops moving

gotzombie

Nothing is impossible to kill. It’s just that sometimes after you kill something you have to keep shooting it until it stops moving.Mira Grant, Feed

It’s getting to the time of year when I can get away with some horror movie metaphors. Today, things that are dead.
1. ADSP
ADSP was a domain repudiation scheme that should never really have lived, but thankfully it’s now dead. If you see “_adsp._domainkey” in DNS somewhere, kill it with fire.
(Don’t confuse it with DMARC, it’s much improved spiritual successor.)
2. SenderID
SenderID was a slight variant of SPF created by Microsoft and pitched for a while as “SPF version 2”. If you see “spf2.0/” in a DNS TXT record, beat it down with a shovel.
3. DomainKeys
DomainKeys served valiantly as a prototype, but has been entirely replaced by it’s successor, DKIM. Nobody is paying any attention to DomainKeys signatures, certainly not for mail that’s also signed with DKIM.
It’s dead. Completely dead. So if you see “DomainKey-Signature:” in an email somewhere, shoot it until it stops moving.
 
 

Related Posts

Delivery implications of Yahoo releasing usernames

Yahoo announced a few weeks ago it would be releasing account names back into the general pool. This, understandably, caused a lot of concern among marketers about how this would affect email delivery at Yahoo. I had the opportunity to talk with a Yahoo employee last week, and ask some questions about how this might affect delivery.
Q: How many email addresses are affected?

Read More

Hotmail moves to SPF authentication

Hotmail has recently stopped using Sender ID for email authentication and switched to authenticating with SPF. The protocol differences between SenderID and SPF were subtle and most senders who were getting a pass at Hotmail were already publishing SPF records.
From an email in my inbox from September:

Read More

Yahoo releases user names

According to TechCrunch, Yahoo has started notifying people if their desired username is available. For users who asked for names that aren’t available now, Yahoo has a solution. They will be keeping wishlists for users for the next 3 years. If those usernames are abandoned and expire, Yahoo will notify people by email.
Any sender using email as an account key (either for resetting passwords or granting access) should be careful about releasing accounts to Yahoo users. Yahoo has established a new header type (Require-recipient-valid-since, currently going through the IETF standards process) to minimize the chance that the wrong people get access to other accounts tied to a recycled mailbox.
For those of us who didn’t put in some addresses we, too, can create username wishlists, we’re just going to pay $1.99 for the privilege.

Read More