Re: [ietf-dkim] dkim-base-01: 6.2


----- Original Message -----
From: <Bill(_dot_)Oxley(_at_)cox(_dot_)com>

2.  If the query for the public key fails to respond, the verifier
    SHOULD defer acceptance of this email.  Verifiers SHOULD track
    continuous errors and SHOULD eventually accept the message
    object after a number of tries.

If the query for the public key fails to respond, the verifier
SHOULD defer acceptance of this email. Verifiers MAY track
continuous errors and determine the message has a broken signature.


Bill,

Isn't it always the case, the signature always broken (or non-verifiable) in
step 2?

PS: The above step I wrote was basically something it should not say. I view
that as a loophole bad actors will exploit.

--
Hector Santos, Santronics Software, Inc.
http://www.santronics.com










_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

RE: [ietf-dkim] dkim-base-01: 6.2 - DNS error, Bill.Oxley

Next by Date:

Re: [ietf-dkim] Notes from DKIM jabber meeting on 20 April 2006, Hector Santos

Previous by Thread:

RE: [ietf-dkim] dkim-base-01: 6.2 - DNS error, Bill.Oxley

Next by Thread:

Re: [ietf-dkim] dkim-base-01: 6.2 - DNS error, John Levine

Indexes:

[Date] [Thread] [Top] [All Lists]