On Apr 21, 2006, at 5:57 AM, John R Levine wrote:
DKIM lets anyone sign any message, with no necessary connection
between
the signing domain and the domain in any other header such as From: or
Sender:. By third-party signatures we mean signatures that don't
match
the From: or don't match the Sender:, or don't match something else.
The semantics as well as definition of third party signatures are,
to put
it mildly, somewhat unclear. Some thought or actual experiments
with such
signatures could be helpful.
Pat Peterson and Doug Otis expressed interest in this item.
Here is a description of an approach that could be used to associate
third-party signatures with signing-domains. This draft describes the
technique.
http://www.ietf.org/internet-drafts/draft-otis-smtp-name-path-00.txt
This technique is intended to provide a comparison with other testing.
-Doug
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg