Posted Nov 12, 2007 20:49 UTC (Mon) by man_ls
In reply to: Email privacy
Parent article: Email privacy
That only works if I own the domain. Most people get their email from a higher level provider, which also own the DNS record. It is easy to redirect selected queries.
And even if I own the domain, a simple change at my domain registrar would suffice to redirect queries to another server. Or at a root server; as you say, you have to trust the certificate chain down to the root. How do you defend against that?
to post comments)