Re: [ietf-822] one can re-sign without a permission to re-sign header

ietf-822

Re: [ietf-822] one can re-sign without a permission to re-sign header

2014-05-02 11:44:20

On 5/2/2014 10:42 AM, John R Levine wrote:

I wouldn't bother with what you've proposed.


Neither would I.  Whitelisting solves this problem far better.

Assuming you mean a signer domain and/or list domain whitelist, no itdoesn't John. It doesn't do diddly squat about dealing with protocolfaults which is what this is all about and always have been for 9years John. That can only come from the message anchoring domain --the originating source/author domain.

What if the Signature is missing or invalid? What if the mf=y tagdoesn't exist and it was intentionally left out which will be thedefault considerations such this would be an "DKIM Add-on" concept?Are you going to continue to forward?



--
HLS


_______________________________________________
ietf-822 mailing list
ietf-822(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-822

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-822] one can re-sign without a permission to re-sign header, John Levine Re: [ietf-822] one can re-sign without a permission to re-sign header, Douglas Otis Re: [ietf-822] one can re-sign without a permission to re-sign header, Alessandro Vesely Re: [ietf-822] one can re-sign without a permission to re-sign header, Paul Smith Re: [ietf-822] one can re-sign without a permission to re-sign header, Pete Resnick Re: [ietf-822] one can re-sign without a permission to re-sign header, John R Levine Re: [ietf-822] one can re-sign without a permission to re-sign header, Hector Santos <= Re: [ietf-822] one can re-sign without a permission to re-sign header, Douglas Otis Re: [ietf-822] one can re-sign without a permission to re-sign header, Hector Santos Re: [ietf-822] one can re-sign without a permission to re-sign header, Paul Smith Re: [ietf-822] one can re-sign without a permission to re-sign header, Brandon Long Re: [ietf-822] one can re-sign without a permission to re-sign header, John Levine Re: [ietf-822] one can re-sign without a permission to re-sign header, Murray S. Kucherawy Re: [ietf-822] one can re-sign without a permission to re-sign header, John R Levine Re: [ietf-822] one can re-sign without a permission to re-sign header, Hector Santos Re: [ietf-822] one can re-sign without a permission to re-sign header, Murray S. Kucherawy Re: [ietf-822] one can re-sign without a permission to re-sign header, John R Levine

Previous by Date:	Re: [ietf-822] one can re-sign without a permission to re-sign header, John R Levine
Next by Date:	Re: [ietf-822] one can re-sign without a permission to re-sign header, Douglas Otis
Previous by Thread:	Re: [ietf-822] one can re-sign without a permission to re-sign header, John R Levine
Next by Thread:	Re: [ietf-822] one can re-sign without a permission to re-sign header, Douglas Otis
Indexes:	[Date] [Thread] [Top] [All Lists]