ietf-dkim
[Top] [All Lists]

Re: [ietf-dkim] Not exactly not a threat analysis

2005-08-23 11:53:01
On Tue, 23 Aug 2005, Keith Moore wrote:

I don't think DKIM should preclude MUA signing of authored content.

Agreed.

However the submission server cannot trivially include the list of
recipients in the message signature and remain compatible with BCC (which
is one of our requirements).

Sure it can.  Any recipient in the envelope but not in the message header gets
a separate signature.  Easiest thing to do is to sign outgoing traffic rather
than incoming traffic.

This doesn't help for BCC recipients at the same domain.

Tony.
-- 
f.a.n.finch  <dot(_at_)dotat(_dot_)at>  http://dotat.at/
BISCAY: WEST 5 OR 6 BECOMING VARIABLE 3 OR 4. SHOWERS AT FIRST. MODERATE OR
GOOD.
_______________________________________________
ietf-dkim mailing list
http://dkim.org