Re: [ietf-dkim] Not exactly not a threat analysis

ietf-dkim

Re: [ietf-dkim] Not exactly not a threat analysis

2005-08-15 17:24:13


On Aug 15, 2005, at 4:49 PM, SM wrote:

At 15:30 15-08-2005, Earl Hood wrote:
Care must be taken that no accountability is assumed on behalf of
the signer on the desirability of the message.  The signature just
states that a given message passed through their system.
Even if DKIM Signature does not make the signer responsible oraccountable, some people may infer it. Undesirable messages willaffect the reputation of the signing domain.

Agreed, the signer domain is where trust is established or lost.There is a positive side with assigning accountably. Should adifferent domain sign the message, then regardless of the From,Sender, Resent-From, Resent-Sender or Bounce-address domains, thesigner domain remains fully accountable.


-Doug
_______________________________________________
ietf-dkim mailing list
&lt;http://dkim.org&gt;

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] Not exactly not a threat analysis, (continued) Re: [ietf-dkim] Not exactly not a threat analysis, Jim Fenton Re: [ietf-dkim] Not exactly not a threat analysis, Keith Moore Re: [ietf-dkim] Not exactly not a threat analysis, domainkeys-feedbackbase02 Re: [ietf-dkim] Not exactly not a threat analysis, Tony Finch [ietf-dkim] Re: Not exactly not a threat analysis, Frank Ellermann Re: [ietf-dkim] Re: Not exactly not a threat analysis, Tony Finch Re: [ietf-dkim] Not exactly not a threat analysis, Earl Hood Re: [ietf-dkim] Not exactly not a threat analysis, Arvel Hathcock Re: [ietf-dkim] Not exactly not a threat analysis, Earl Hood Re: [ietf-dkim] Not exactly not a threat analysis, SM Re: [ietf-dkim] Not exactly not a threat analysis, Douglas Otis <= Re: [ietf-dkim] Not exactly not a threat analysis, Keith Moore Re: [ietf-dkim] Not exactly not a threat analysis, Keith Moore Re: [ietf-dkim] Not exactly not a threat analysis, Douglas Otis Re: [ietf-dkim] Not exactly not a threat analysis, John Levine Re: [ietf-dkim] Not exactly not a threat analysis, SM Re: [ietf-dkim] Not exactly not a threat analysis, Michael Thomas Re: [ietf-dkim] Not exactly not a threat analysis, Earl Hood Re: [ietf-dkim] Not exactly not a threat analysis, George Gross Re: [ietf-dkim] Not exactly not a threat analysis, Tony Finch rogue DNS registrars, was Re: [ietf-dkim] Not exactly not a threat analysis, George Gross

Previous by Date:	Re: [ietf-dkim] Not exactly not a threat analysis, SM
Next by Date:	[ietf-dkim] linkage between "originator" and "handling agent", Dave Crocker
Previous by Thread:	Re: [ietf-dkim] Not exactly not a threat analysis, SM
Next by Thread:	Re: [ietf-dkim] Not exactly not a threat analysis, Keith Moore
Indexes:	[Date] [Thread] [Top] [All Lists]