[ietf-dkim] Re: New Issue: 4.2 needs new Attack Item: Inconsistent Signa

ietf-dkim

[ietf-dkim] Re: New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks

2006-01-30 14:21:48

Tony Hansen wrote:

1) always look for the SSP, as Hector suggests;
2) add information to the DKIM DNS record to indicate that
   the SSP should always be looked for; 
3) incorporate the SSP information into the DKIM DNS record;
or 4) some other ways I'm not thinking of at the moment.


Doug proposed to copy the SSP into the signature as shortcut
for any "check SSP only for valid signatures" strategy.  If I
understood his proposal correctly.  Apparently that has the
same effect as your point (3), and if possible (3) is better.

Of the first three, I'd lean towards #2.


How does that help receivers wishing to reject unsigned mails
with a STRONG or EXCLUSIVE SSP ?  Where "unsigned" includes
"invalid" etc.
                           Bye, Frank


_______________________________________________
ietf-dkim mailing list
http://dkim.org

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Hector Santos Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Tony Hansen Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, william(at)elan.net Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: InconsistentSignature vs Policy Attacks, Hector Santos Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Dave Crocker Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: InconsistentSignature vs Policy Attacks, Hector Santos [ietf-dkim] Re: New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Frank Ellermann <= Re: [ietf-dkim] Re: New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Douglas Otis Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Stephen Farrell Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Hector Santos Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Stephen Farrell Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Jim Fenton [ietf-dkim] OT o=. (was: New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks), Frank Ellermann Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Dave Crocker Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Douglas Otis Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Hector Santos Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Stephen Farrell

Previous by Date:	[ietf-dkim] When will we know the Threat Analysis document is complete, Dave Crocker
Next by Date:	Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: InconsistentSignature vs Policy Attacks, Hector Santos
Previous by Thread:	Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: InconsistentSignature vs Policy Attacks, Hector Santos
Next by Thread:	Re: [ietf-dkim] Re: New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Douglas Otis
Indexes:	[Date] [Thread] [Top] [All Lists]