ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] small question in draft-ietf-dkim-base-00.txt on TXT record

2006-02-21 08:32:43
from [Michael Thomas] [Permanent Link] 
Douglas Otis wrote:

By just specifying the hash used in signature header, once  a
hash algorithm is later discovered compromised, there is no means to keep bad actors from using this compromised hash algorithm for spoofing messages. It would appear the DKIM draft is not ready. 


[page 21 allman-01:]

h=   Acceptable hash algorithms (plain-text; OPTIONAL, defaults to
      allowing all algorithms).  A colon-separated list of hash
      algorithms that might be used.  Signers and Verifiers MUST support
      the "sha1" hash algorithm.

What exactly is the problem?

                Mike
_______________________________________________
NOTE WELL: This list operates according to http://dkim.org/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Re: New Issue: TLD key publication and signing, Michael Thomas
Next by Date:  Re: [ietf-dkim] Supporting alternate algorithms, Dave Crocker
Previous by Thread:  Re: [ietf-dkim] small question in draft-ietf-dkim-base-00.txt on TXT record, Douglas Otis
Next by Thread:  Re: [ietf-dkim] small question in draft-ietf-dkim-base-00.txt on TXT record, Douglas Otis
Indexes:  [Date] [Thread] [Top] [All Lists]