2) Also, the sentence "Secondly, the types of DNS attacks relevant to
DKIM are very costly and are far less rewarding than DNS attacks on
other Internet applications." from 9.4 is very generalized. What are
these attacks against the DNS for the sake of compromising DKIM?
Andrew;
meta-question: what is the purpose of the security considerations section?
tutorial about broad topics in security? fair warning about limitations of the
current specification? guidelines for safe operation? other concerns?
each of these warrants different kinds and extent of documentation. unless we
are clear about the goals of the section, it could easily turn too much into a
generic tutorial.
d/
---
Dave Crocker
Brandenburg InternetWorking
+1.408.246.8253
dcrocker a t ...
WE'VE MOVED to: www.bbiw.net