John Levine wrote:
Associating the signature with the signing host (or listname(_at_)host) is
what I expect a mailing list would do. But the reputation decision is
required to really know that it's a list. It's not sufficient to see a
list-id or any other header field to know its role.
I don't understand why you need to know it's a list. If phoo.com has
a good reputation, why does it matter whether it's signing list mail
or individual love letters?
I wasn't asserting that you need to know it's a list. I was responding
to William who had said that determining the role of the signer was
useful, and I was describing the problems associated with determining that.
Anyway, on my system the lists all live in separate subdomains to make
them easier to manage, the signature would likely be in its own domain
separate from the one that love letters use anyway, so if the lists
were notably better or worse than the individual messages, they'd have
a separate reputation domain anyway.
R's,
John
PS: Now I'm REALLY going to get back to the threats doc.
REALLY good.
-Jim
_______________________________________________
ietf-dkim mailing list
http://dkim.org