Re: [ietf-dkim] envelope signatures, was Corner cases and loose ends
2010-09-28 12:56:51
That no workable envelope-level DKIM equivalent has materialized to
date is unfortunate.
Not for lack of trying, but I just don't see how you could prevent bad
guys from replaying good envelopes on bad mail.
Yeah. Short-lived keys is the best thing I can come up with.
Do you think it's worth a shot?
Probably not. BATV is about 2/3 of what a scheme like that would be.
It has a bounce address with a signature hash of the original bounce
address and a timestamp, with its main limitation being that it uses a
private key rather than public key signature, which would be
straightforward to add.
It works well for me, but people say it causes problems due to
changing bounce addresses for the same correspondent (a surprising
amount of software keys on bounce address) and local parts longer than
64 characters, a limit that some MTAs still enforce.
To limit replays, it could include both the bounce and recipient
addresses in the hash, but that would recreate much of what's wrong
with SPF. So unless you have a truly brilliant way to solve all
these problems (we can always hope), I don't see any point to going
down this road again.
R's,
John
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html
<Prev in Thread] |
Current Thread |
[Next in Thread>
|
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, (continued)
- [ietf-dkim] ADSP Extensions, Hector Santos
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Murray S. Kucherawy
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Dave CROCKER
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Mark Delany
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Murray S. Kucherawy
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, John R. Levine
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Murray S. Kucherawy
- Re: [ietf-dkim] envelope signatures, was Corner cases and loose ends,
John Levine <=
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Michael Deutschmann
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Ian Eiloart
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Ian Eiloart
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Hector Santos
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Alessandro Vesely
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Ian Eiloart
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Graham Murray
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Steve Atkins
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Ian Eiloart
- Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, John R. Levine
|
Previous by Date: |
Re: [ietf-dkim] draft-ietf-dkim-mailinglists-02 review, Dave CROCKER |
Next by Date: |
Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Alessandro Vesely |
Previous by Thread: |
Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Murray S. Kucherawy |
Next by Thread: |
Re: [ietf-dkim] Corner cases and loose ends, was , draft-vesely-dkim-joint-sigs, Michael Deutschmann |
Indexes: |
[Date]
[Thread]
[Top]
[All Lists] |
|
|