1) How does any ISP (beyond a really small geek outfit) verify that I
am authorized to use *(_at_)waltdnes(_dot_)org ?
They don't. Fortunately, that's not what the ISP's signature means.
All a DKIM signature means is "you can blame us for this mail."
In your case, I'd think it'd make sense to put on a signature from
waltdnes.org to say the mail is really from your domain, and another
signature from your ISP to say it was sent through them.
We do seem to have a chronic problem of people attempting to impute
extra semantics to DKIM signatures, don't we?
If the signing domain matches the From: domain, should we take that to
mean that the From: address is real? I don't think we should assume
that unless the whole address is in the signature, maybe not even
then.
R's,
John
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg