At 12:11 PM -0700 4/17/06, Jon Callas wrote:
x= is a good thing because many, many people will change their DKIM
keys every time they change what mail server they're using. This key
will have a years-long, if not decades-long life. Using x= lets them
blow off bit rot in messages that they are "responsible" for.
Could you be a bit less folksy in your statement here? A message that
they have claimed to be responsible for has no bit rot because, as we
have mostly all agreed, the signature checking is done once and the
result is noted and possibly stored. By putting the word
"responsible" in quotes, are you saying that they are not responsible
for it in the future at some point?
The issue, then, is what happens when I have my expiration being
(e.g.) a month and I decide out of the blue to change keys.
x= is an expiration for a particular statement of responsibility for
a message, not about key expiration. Key expiration is done in the
get-distribution part of the protocol.
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html