Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does no

ietf-dkim

Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?

2005-08-19 09:35:53

A third-party signature is a lot weaker assertion than an OA signature, 
unless you know something about the third party.


Seems to me that no signature is useful unless you know something about
the signing party.

Let's say you get a message from fred(_at_)slimy(_dot_)biz, with valid 
signatures
from slimy.biz.  Now what?  Unless you have some knowledge about slimy.biz
(or perhaps some well founded suspicions about .biz in general which
would apply equally to third party signatures), you don't have much to
go on beyond knowing that the return address isn't forged.

DKIM will be useful in the short run because we all have quite a lot of
knowledge about domains with which we exchange a lot of mail, and that
lets us get their mail out of the filtering path.

R's,
John
_______________________________________________
ietf-dkim mailing list
http://dkim.org

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, (continued) Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Jim Fenton Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Jim Fenton Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, John Levine <= Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Dave Crocker Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record doesnot exist?, Arvel Hathcock Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record doesnot exist?, Dave Crocker Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record doesnot exist?, Arvel Hathcock Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record doesnot exist?, Tony Finch Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record doesnot exist?, Arvel Hathcock Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP recorddoesnot exist?, Arvel Hathcock

Previous by Date:	Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Dave Crocker
Next by Date:	Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
Previous by Thread:	Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
Next by Thread:	Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Dave Crocker
Indexes:	[Date] [Thread] [Top] [All Lists]