But the protocol allows the bulk mailer to create any key records they like and
the protocol as it is written today means that they are treated by the
infrastructure as equivalent.
The only way that you can avoid this as a sender is not to delegate using NS.
-----Original Message-----
From: ietf-dkim-bounces(_at_)mipassoc(_dot_)org
[mailto:ietf-dkim-bounces(_at_)mipassoc(_dot_)org] On Behalf Of J.D. Falk
Sent: Wednesday, August 30, 2006 5:50 PM
To: DKIM List
Subject: Re: [ietf-dkim] Delegated signatures in real life
On 2006-08-29 16:41, Hallam-Baker, Phillip wrote:
Orbitz might not care about the security issues raised by allowing
doubleclick to sign messages on behalf of their CEO and other
executives. Many others will.
Then they won't delegate the record they use to sign mail
from their CEO and other executives. No problem.
--
J.D. Falk, Anti-Spam Product Manager
Yahoo! Communications Platform Team
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html