ietf-dkim
[Top] [All Lists]

Re: [ietf-dkim] Re: 3rd party signing

2006-07-31 06:44:46

On Fri, 28 Jul 2006, John L wrote:

A) No mail has an isp.com From: address, but mail with other From: addresses may have an isp.com signature.

Consider what I believe Y! does in their MUA: if it's got a valid signature from isp.com with a From: foo(_at_)customer(_dot_)com, it doesn't get a nice little message saying that Y! believe it came from customer.com. Thus the outsourced mail will not be treated on a par with mail signed on behalf of the domain.

It makes sense that customer.com would publish an SSP record saying "my mail is all signed by isp.com".

But I still don't see what benefit it is for isp.com to say "we sign some other people's mail." If isp.com signs other people's mail, we'll know because we'll see the signatures.

The statement that I sign only my own mail makes perfect sense.

--
William Leibzon
Elan Networks
william(_at_)elan(_dot_)net
_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html