At 06:45 29-10-2009, Dave CROCKER wrote:
I was just at a session at an industry trade association where the
doing DKIM during SMTP came up. There were operations folk who very
the idea of being able to obtain some DKIM benefit during the SMTP session,
before the dot...
Murray and I discussed the idea of doing DKIM during SMTP last
year. There were some flaws in the idea such as how to deal with
replay. There is also the drawback of getting this deployed as it
requires changes to the MTA.
What /was/ discussed was the possibility of doing a signature that would
validate before DATA. This merely requires a signature that does
not cover the
I guess that you are looking at it implementation-wise where we can
skip the body() call. This is like having a "l=0".
P.S. Apologies to the WG Chairs for going off-topic.
NOTE WELL: This list operates according to