I just sent you 40 torture test messages signed with sha256. They all
passed.
Arvel, I'm ready when you are to see if I can verify any sha256 messages
your reflector sends back.
Tony Hansen
tony(_at_)att(_dot_)com
Stephen Farrell wrote:
Arvel Hathcock wrote:
> That comes back to the point that Ned et al made perhaps a week ago,
> if we know that transition will occur at some point in the future,
> leaving that code unexercised until then is surely a recipe for
> disaster.
Whenever anyone is ready, send a message to dkim-test(_at_)altn(_dot_)com
with
both signatures and you should get an auto-response containing an
Authentication-Results header at the top with some detail about each
signature verification. I can also flip a switch here and start
signing with both sha1 and sha256 to test your verifier when you're
ready.
Have to say that that's the best response I've seen to all the debate!
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html