On Nov 18, 2005, at 11:01 AM, Jeff Macdonald wrote:
On Fri, 2005-11-18 at 02:30 -0800, Douglas Otis wrote:
o=! EXCLUSIVE (signature required, no 3rd party)
Breaks current practices.
This may be so. However, at a BoF in Montreal, Craig Spiezle said
banks
were asking Microsoft to NOT DELIVER messages that failed SenderID
checks. I do believe he said the banks understood that may mean some
legitimate mail may not be delivered.
This is meant as a simple data point and nothing more.
The desire would be to mark or refuse messages that don't meet a
binding requirement, which essentially means the same thing, avoiding
a fair amount of overhead without exposure to unfair reputation
practices. At the MDA, only those bindings that can be automatically
established would be cached for a signed message authoritative for
email-addresses within that domain. There could also be a means to
limit authority permitted a class of keys. Details are covered in
the two drafts for mass and dkim at:
http://www.sonic.net/~dougotis/id/
-Doug
_______________________________________________
ietf-dkim mailing list
http://dkim.org