ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ietf-dkim] New Issue: Misleading figure in 1.1 (was: Attempted summary, SSP again)

2006-01-27 09:42:32
from [Frank Ellermann] [Permanent Link] 
Hector Santos wrote:
 

ProcessB() - SSP lookup

 

    - Message Arrives
    - OA SSP Policy lookup
       - EXCLUSIVE
           - Two Signers found --> REJECT

 

I would think ProcessB() is more ideal, more efficient and
100% DKIM/SSP compatible, and more importantly with a
rejection result that is mostly likely to be more correct
than ProcessA() acceptance of an OA domain policy voilation.


IBTD for your "Two Signers found --> REJECT" shortcut.  It's
enough to reject it if no signature matches the SSP domain.

BUT I think anything else you said here is correct, and this is
not reflected in the first figure of the "threats" draft.  I've
now stated this at least five time, time to get a ticket.  Bye


_______________________________________________
ietf-dkim mailing list
http://dkim.org
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Attempted summary, SSP again, Hector Santos
Next by Date:  Re: [ietf-dkim] Attempted summary, SSP again, Hector Santos
Previous by Thread:  Re: [ietf-dkim] Attempted summary, SSP again, Michael Thomas
Next by Thread:  Re: [ietf-dkim] Attempted summary, SSP again, Hector Santos
Indexes:  [Date] [Thread] [Top] [All Lists]