ietf-asrg
[Top] [All Lists]

Re: [Asrg] 6. Proposals - DNS + PKI - Yahoo's "Domain Keys"

2003-12-12 09:37:31
At 09:17 PM 12/9/2003 +0100, Markus Stumpf wrote:
On Tue, Dec 09, 2003 at 02:46:52PM -0500, Yakov Shafranovich wrote:
Would there be a difference if the message is forwarded through a list, 
or is transfered via multiple MTAs?

No. Because MTAs add headers and zillions of maillinglists add nice
(commercial/informational) trailers or remove attachments. Same for
large companies that think adding pseudo legal disclaimers makes any
difference.
All these destroy the structure of the email. These are problems that
e.g. PGP signers noticed long ago.

If the mailing list wants to modify the body of the message or a signed header, 
the mailing list software needs to check the signature of the message before 
forwarding it, and replace the signature with one valid for the mailing list 
itself, after adding whatever it wanted to add. The signature will need to be 
associated with the envelope-from address, rather than the from address.

-Jim


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg



<Prev in Thread] Current Thread [Next in Thread>