ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] Not exactly not a threat analysis

2005-08-23 12:42:31
from [william(at)elan.net] [Permanent Link] 

On Tue, 23 Aug 2005, Keith Moore wrote:
no, it "just" means that the MTA has to transmit multiple copies of the same message to the same SMTP server, differing only in their signature and bcc header field. 

My understanding is that BCC should not be seen in SMTP transmission,
except first hop when SMTP is used in place of SUBMIT. My understanding
is that automated signatures like DKIM are expected to be added by MTA after the message has been submitted and therefore BCC field would not be present in such a message (the address previously in BCC would be one or only address in envelope RCPT TO). Therefore I do not understand how can MTA possibly transmit multiple copies "differing in their signature and BCC heaader field". 

--
William Leibzon
Elan Networks
william(_at_)elan(_dot_)net
_______________________________________________
ietf-dkim mailing list
http://dkim.org
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Not exactly not a threat analysis, domainkeys-feedbackbase02
Next by Date:  Re: [ietf-dkim] DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
Previous by Thread:  Re: [ietf-dkim] Not exactly not a threat analysis, Keith Moore
Next by Thread:  Re: [ietf-dkim] Not exactly not a threat analysis, Tony Finch
Indexes:  [Date] [Thread] [Top] [All Lists]