Comments on: One small step for email, one giant leap for Internet safety

By: William John

William John — Fri, 28 Aug 2009 13:15:31 +0000

Eveybody talks about DKIM, strangely after googling and yahooing, have not come across any hands-on guide or tutorial on how to implement DKIM.

Why do not DKIM working group realize this requirement and come across some good tutorials on how to practically implement DKIM to mail servers.

I am sure, there will be a wide acceptance of DKIM, if you enable such hands-on knowledgebase

This would really help

regards

William John

By: sbs sonuçları

sbs sonuçları — Sun, 26 Jul 2009 23:43:56 +0000

Great work!

Finally the end of the spammers dominion is in sight!

By: Zakir Shaikh

Zakir Shaikh — Thu, 16 Jul 2009 11:04:50 +0000

very very gr8 job undoubtedly!!
but there is a glitch in here… oops
Even after making sure about the proper setups of SPF, Domain Keys & DKIM, the mails to yahoo domain/TLD still bangs the SPAM folder.
Definitely not a point to go for party ;)
Whereas the mails to Gmail directly goes to the Inbox :)

Is there something, that should be taken care of, or is there something which I’m missing..

By: seo service Chandigarh India

seo service Chandigarh India — Thu, 18 Jun 2009 18:41:58 +0000

the emailing by the internet is very easy and cheap and hilly responding resource. toady life is very fast so no have more time to post a letter and some calls at that movement email service is good for communication point of veiv

By: Jonathan Cutting

Jonathan Cutting — Wed, 04 Mar 2009 18:56:28 +0000

Pity that, even after spending hours setting up my mail server to sign mails with both DomainKeys and DKIM, and configuring reverse DNS, SPF records etc, I still see my emails end up in Yahoo’s spam boxes.

As Yahoo servers also act for btinternet customers this is a serious problem for server administrators in the UK.

Yahoo servers are also responsible for sending OUT spam, which is now signed with DomainKeys one assumes.

By: sgk

sgk — Thu, 18 Sep 2008 15:59:57 +0000

Thank you.

By: jocuri

jocuri — Fri, 11 Jul 2008 10:03:19 +0000

Great work!

Finally the end of the spammers dominion is in sight!

By: statusuri

statusuri — Fri, 30 May 2008 18:14:33 +0000

great post

By: jocuri

jocuri — Sat, 24 May 2008 18:55:53 +0000

thank you

By: RS

RS — Tue, 18 Mar 2008 05:22:17 +0000

Put that in English Mark. Can we set our Yahoo Mail accounts to only accept DKIM e-mails? Get about 50 spams a day on that account…As soon as you can do that, you are on to something great. Go on you for tackling this issue. Good to hear that Yahoo helped clean up the web, if that indeed is what ends up occurring. Hope it helps turn your stock around.

By: manele noi

manele noi — Thu, 06 Mar 2008 20:32:42 +0000

Great work .. is a great step …

By: Muzica Noua

Muzica Noua — Thu, 31 Jan 2008 16:28:18 +0000

Great Job! i hate spammers ! now i will love more my yahoo mail! i will tell to all of my friends about this site

By: Manele gratis

Manele gratis — Wed, 09 Jan 2008 17:39:11 +0000

Great work! keep up the good work!

By: Manele

Manele — Wed, 14 Nov 2007 07:56:06 +0000

Great Job! i hate spammers ! now i will love more my yahoo mail!

By: Mark Risher

Mark Risher — Thu, 04 Oct 2007 16:36:49 +0000

@fei & @Richard Wooding –

Yahoo! Mail is committed to encouraging e-mail authentication, and has been signing and validating using DomainKeys since 2004. While we are moving towards the IETF standard DomainKeys Identified Mail (DKIM) in the upcoming months, if you want your messages to receive validation starting immediately, I would recommend DomainKeys.

It’s important to note that we will continue validating DomainKeys signatures in parallel with DKIM for a good long time (we certainly don’t want to create extra work for the early-adopters!). In recent months, we have seen several large senders successfully signing their messages with both DomainKeys and DKIM, and if you want to reach the broadest possible audience, you may want to consider such a solution during this transition period.

Hope that helps,
Mark Risher
Product Manager, Yahoo! Mail

By: Richard Wooding

Richard Wooding — Wed, 03 Oct 2007 09:30:04 +0000

We have a community website which emails our members, the majority of which use @yahoo.com based webmail.

Should I use DKIM or older DomainKeys?

I have implemeted DKIM by using dkimproxy at http://jason.long.name/dkimproxy/ with postfix.

I have tested the DKIM signing with the following reflector services:

dkim-test AT mtcc DOT com
dktest AT exhalus DOT net
dktest AT blackops DOT org
sa-test AT sendmail DOT net

The DKIM signing seems to be working correctly, however I am unsure if the Yahoo! based webmail is understanding this, or should I use the older Yahoo! Domain Keys.

Your advice on this will be much appreciated.

By: Richard Wooding

Richard Wooding — Wed, 03 Oct 2007 09:26:18 +0000

DKIM or older DomainKeys?

By: Fei

Fei — Sun, 15 Jul 2007 22:08:17 +0000

When will Yahoo start using DKIM/RFC 4871 instead of the old DomainKeys?

I spent all weekend implementing and testing DKIM because it was touted in press releases like this one.

And my DKIM-signed emails to dkim-test@testing.dkim.org passes all their DKIM tests.

But my DKIM-signed emails to yahoo.com say “(no sig)” as of July 15, 2007.

Again, does anyone know when Yahoo.com will use DKIM?

Thanks!

By: BIP

BIP — Sat, 30 Jun 2007 13:43:55 +0000

Require email approval by specific address from blocked domains..such as yahoo.com for example. Your domain is blocked by many folks and most have an ability to allow specific addresses to pass through the domain block..not yahoo…I block a domain and cannot allow a specific address from that domain….dull.

By: Craig Herberg

Craig Herberg — Thu, 07 Jun 2007 03:29:37 +0000

This could be a major turning point in the war against spam. If this succeeds in making spam economically non-viable, we will be able to reclaim our inboxes.

By: bhaskar mahendrakar

bhaskar mahendrakar — Sat, 26 May 2007 22:23:16 +0000

Hai,
The biggest problem I have with Yahoo mail is SPAM mails..these form the major chunk of mails I receive daily.
And also some times regular mails are being moved to SPAM…I am using yahoo mail for about 8 years now…

By: JayVee

JayVee — Sat, 26 May 2007 11:57:46 +0000

Great work!

Finally the end of the spammers dominion is in sight!

By: Ryan

Ryan — Sat, 26 May 2007 00:37:49 +0000

I am wondering when Yahoo! mail is going to start including messenger within the mail system so I don’t have to keep the two applications seperate anymore. Gmail accomplishes this now, and I have been waiting on Yahoo! to do this since the announcement in Feb. and so far nothing.

Why announce this stuff and then take months to roll it out – especially when your competitors at Google are already doing it…..

By: anshu

anshu — Fri, 25 May 2007 10:44:26 +0000

yahoo , This DOES NOT WORK. Just LOG INTO MY email and check how my Inbox has been BOMBARDED WITH SPAMS

I left using yahoo for other service *guess?*.

And by Spam , I dont mean newsletter I subscribed to but now i hate. I mean v1agr@ and c1@liS spams got it ? it comes right in my Inbox. Why???????????

By: Randy Stewart

Randy Stewart — Thu, 24 May 2007 23:02:32 +0000

DKIM is a great start to combatting phishing attacks on the net. Congrats on getting the standard approved.

Cheers,
Randy Stewart
randy@boxbe.com

By: Arvel Hathcock

Arvel Hathcock — Thu, 24 May 2007 15:34:46 +0000

Excellent work my friend!

Arvel

By: Douglas Otis

Douglas Otis — Wed, 23 May 2007 21:07:30 +0000

Correction:

Comment mangled by defanging:

base32-hash-of-large-esp._ssp.customer.info. TXT
“large-esp.com…”;

By: Douglas Otis

Douglas Otis — Wed, 23 May 2007 20:53:53 +0000

There remains cases where an SMTP client is not within the DKIM domain. It would be nice to have a means for the DKIM domain to authorize SMTP clients.

For example:

EHLO some-host.large-esp.com
…
dkim d=customer.info

Within DNS:
._ssp.customer.info. TXT
“large-esp.com…”;

This scheme permits an esp to send DKIM signed messages where those who authorize the esp thereby indicate their trust. The trust being that esp ensures only authorized sources for customer.info are transmitted by esp SMTP clients. This ensures no one would be able to abusive replay DKIM messages and hurt or take advantage of their reputation. This would be extremely important when those signing messages might sign messages for poorly vetted authors. This ensures poorly vetted authors can not benefit by indirectly sending themselves messages they then replay to usurp the once good DKIM domain reputation.

There should also be grave concerns for utilizing SPF as a means to provide DKIM domain associations. The local-macro expansion feature of SPF’s script-like scheme enables a _resource-free_ means to stage a DoS attack while also spamming! The operations required to acquire SPF records also makes this approach extremely dangerous in general, as this can lead to _very_ high amplifications as well. Dissuading use of dangerous libraries acquiring SPF records may even require use of ‘+all’, to ensure only CIDR constructs are used for white-listing purposes only.

By: TheAnand

TheAnand — Wed, 23 May 2007 18:15:04 +0000

Thats wonderful news! And I think the no. of spam on my junk mail has come down….earlier it used to be at a ratio of 1 real mail to 10! now its about 1:4….good luck!

By: Lilly

Lilly — Wed, 23 May 2007 16:00:06 +0000

That is a great step for internet safety! If they can verify the domain of the sender, can they verify the user of that domain? Like could they catch internet predators this way so they stop talking to children online? I am going to ask the experts on the NetSmartz411 site if this would be possible!!