[ietf-dkim] Re: Concerns about DKIM and mailiing lists, etc.

> > Oh, OK, then your trusted signer list includes cisco.com. 
> Not really, unless you consider SSP to be a "trusted signer list".
Oh, wow, are you really planning to reject all mail that fails SSP?  I 
guess we should have a pool on how long that will last until some VP blows 
up because it rejected some piece of real mail she really, really wanted. 
I'll bid on two hours.
> > How many phishes have you ever seen that were sent through mailing lists?
> Irrelevant. Spoofs/phishes and mailing lists corruption are
> indistinguishable to a verifier.
Unfortunately, they are quite different to human beings.  Like I said, if 
you want to toss the baby out with the bathwater, it's your network, but 
you might want to check with some of your users to see if everyone's 
priorities are the same.
If you expect anyone other than you to start blanket rejecting list mail 
with signature problems, I think you will be rather disappointed.  As it 
is, I expect your support desk will have lots of fun explaining to your 
users why everyone outside Cisco sees the list mail they sent, but they 
and the people down the hall didn't get it.
> > Mail from this list won't validate, you know, and I doubt that many others 
> > will, but I know I'm not going to make any headway in that direction.
> Every piece of mail I've sent this morning has validated. Really.
That's because it was all Re: and already had the subject line tag.  It's 
your lucky day.
Regards,
John Levine, johnl(_at_)iecc(_dot_)com, Primary Perpetrator of "The Internet for 
Dummies",
Information Superhighwayman wanna-be, http://iecc.com/johnl, Mayor
"I dropped the toothpaste", said Tom, crestfallenly.
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html