wayne wrote:
Straightforward case analysis:
1-a: throw message away, it's forged [for "I sign all; bad sig"]
No, don't throw it away because the lack of a valid signature may well
be due to minor and innocent changes made during transmission.
Yes, throw it away. There's no such thing as a minor innocent
change. If a mail system is misconfigured, then it's mail doesn't
go and it has to fix the problem. That's how things work now,
why should it change?
Imagine if the people who implemented VPN decided that because
there might be non-standard networking equipment that causes problems,
it should be ok sometimes to establish a VPN connection even when
the authentication didn't work.
Geez, and I thought you were all hot on not dictating receiver policy.
A domain may not be able to specifically dictate receiving policy.
But an internet standard can certainly try to.
tom
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html