[Top] [All Lists]

Re: [ietf-dkim] Re: Role of Sender header as signing domain

2006-11-29 04:05:22
On Tue, 28 Nov 2006 15:42:11 -0000, Scott Kitterman <ietf-dkim(_at_)kitterman(_dot_)com> wrote:

2822.From is the only identity that is reliably displayed to the end user.

I utterly fail to see why what is displayed to the user is of the least relevance.

Verification is going to be done mostly by MDAs, who will either drop the message, or else warn the user that it is suspicious (warnings may range from a simple Good/Bad to a long essay on exactly what is wrong). It is only when the user suspects he has a false positive that he might be interested in examining the headers himself. More usually, if he is sure it is a false positive, he will just accept it and get on with life.

The occasional sophisticated user who elects to do the verification himself will naturally provide himself with tools which display all headers of interest.

Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131     Web:
Email: chl(_at_)clerew(_dot_)man(_dot_)ac(_dot_)uk      Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9      Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5
NOTE WELL: This list operates according to

<Prev in Thread] Current Thread [Next in Thread>