Jon Callas wrote:
The issue, then, is what happens when I have my expiration being
(e.g.) a month and I decide out of the blue to change keys. The answer
is that some messages now won't verify, which means they are
"suspicious" which interacts with SSP and other things to make it so
that some message might be flagged, filed, rejected or whatever in
ways that they would not have had I left the key there.
Just to keep the use of the term focused, "suspicious" is a possible
result of the SSP check. The way we have been using the term, a message
would become suspicious if the signature that won't verify causes the
SSP check to fail (e.g., the originating address's domain says it signs
all messages).
I'm not trying to start an SSP discussion here -- merely trying to
reserve the term "suspicious" for when we do.
-Jim
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html