ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [ietf-dkim] Can vendor's really say they have DKIM support yet?

2006-02-01 13:44:04
from [Bill.Oxley] [Permanent Link] 
Without a policy statement DKIM asserts that the sending MTA sent this
particular signed message. That is a benefit of itself to clearly
identify the sending party. A policy statement that is

1 I sometimes sign
2 I don't care who signs this
3 I always sign and don't want anyone else to sign

Is interesting to some, but unless the policy is number 3 is less that
useful to others  

Bill Oxley 
Messaging Engineer 
Cox Communications, Inc. 
Alpharetta GA 
404-847-6397 
bill(_dot_)oxley(_at_)cox(_dot_)com 

-----Original Message-----
From: ietf-dkim-bounces(_at_)mipassoc(_dot_)org
[mailto:ietf-dkim-bounces(_at_)mipassoc(_dot_)org] On Behalf Of Hector Santos
Sent: Wednesday, February 01, 2006 2:57 PM
To: Jeff Macdonald
Cc: ietf-dkim(_at_)mipassoc(_dot_)org
Subject: Re: [ietf-dkim] Can vendor's really say they have DKIM support
yet?


----- Original Message -----
From: "Jeff Macdonald" <jmacdonald(_at_)e-dialog(_dot_)com>
To: <dcrocker(_at_)bbiw(_dot_)net>


Dave,
Thanks for the response. So just implementing
http://mipassoc.org/dkim/specs/draft-allman-dkim-base-00-10dc.txt
without SSP is considered a valid DKIM implementation?


For the list IETF record, If true, I believe quite strongly, with the
hat of a senior software engineer, find this highly irregular premature
promotion of an unsafe non-standard.

If Steve Atkins assertion is true and early adopters will be bulk
mailers and distributors,  just consider the impact that it will impose
of SMTP receivers who will undoubtedly find issues with guaranteed to
occur mix policy exploits with no SSP verification protection.  Systems
will take matters into their own hands, ignore it or use DKIM signed
mail against the bulk mailers thus reducing DKIM to yet another wasted
bandwidth contribution to the net.  Worst, advanced derivatives that
secure DKIM protocol will surely emerge.

In my opinion, any good actor member of the bulk mail community or DMA
will be risking their reputation and mail distribution operations with a
DKIM only concept.

--
Hector Santos, Santronics Software, Inc.
http://www.santronics.com






_______________________________________________
ietf-dkim mailing list
http://dkim.org

_______________________________________________
ietf-dkim mailing list
http://dkim.org
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Can vendor's really say they have DKIM support yet?, Hector Santos
Next by Date:  Re: [ietf-dkim] Can vendor's really say they have DKIM support yet?, Stephen Farrell
Previous by Thread:  Re: [ietf-dkim] Can vendor's really say they have DKIM support yet?, Arvel Hathcock
Next by Thread:  Re: [ietf-dkim] Can vendor's really say they have DKIM support yet?, Dave Crocker
Indexes:  [Date] [Thread] [Top] [All Lists]