--On Friday, June 13, 2014 10:59 -0400 Phillip Hallam-Baker
<phill@xxxxxxxxxxxxxxx> wrote:
>...
> What really needs to happen is that the external body
> mechanism needs to be integrated into the virus scanning
> mechanism and both have to support use of digital signatures
> so that senders can be appropriately whitelisted.
And what property of external bodies do you believe would
prohibit implementing external bodies so that incoming material
is buffered and scanned for viruses (and whatever else one wants
to scan things for) the same way any local body part/ attachment
scanned? Or extending the external body mechanism to support
signatures -- either in the form of verifying that a signature
or hash in the message matches one taken over the external body
or an option and check on a signature attached to the external
body.
Seems to me that, at worst, all either would take would be
defining of a new access type (see Section 5.2.3 of RFC 2046)
that would make some material in the phantom body mandatory to
pay attention to if present.
Not exactly the sort of radical, earthshaking, change that
justifies a claim that the mail system needs to be replaced.
john