On Wed, Nov 02, 2005 at 11:36:47AM -0800, Douglas Otis allegedly wrote:
I am glad that you agree email-addresses and signing-domains should
not be required to match.
Right. Conversely they should be able to force a match in their domain
if they need to or want to. Many folk are saying they want the
flexibility to do both, so let's accept that requirement and let the
WG determine the best mechanisms for solving those needs.
at isolating compromised systems within large domains. This remains
problematic today. When there is a problem of this nature, an opaque-
Doug. It seems that no one else supports this notion as a base piece
of functionality. Given the extensive text you've written on the
matter over a great deal of time, under numerous subject themes,
perhaps it's time to accept that your arguments are not compelling to
Furthermore, I don't think anything in DKIM precludes layering such a
concept on top of DKIM at some later stage, assuming you can garner
enough support for such an add-on.
ietf-dkim mailing list