Douglas Otis wrote:
On Apr 16, 2007, at 5:34 PM, Jim Fenton wrote:
This is the first of a few issues that come in trying to rationalize
at least two of the SSP proposals, draft-hallambaker-dkimpolicy-00
and draft-allman-dkim-ssp. I'd like to keep the issues separate,
because I think they're largely independent, so please respond in
kind if at all possible.
This assumes a simple authorization scheme is not effective at
protecting a principal domain. For example, if the industry creates a
list of domains used for the purpose of registries, then this would
identify precisely which domain should be queried. As there are some
TLDs publishing MX records, such a list becomes even more important
from the prospect of limiting the scope of TLDs with respect to DKIM
sub-domain validations.
I'm not clear on specifically who "the industry" is that you're
referring to that creates and maintains the list. It sounds like you're
proposing some other kind of non-self-published database that identifies
mailing domains. It doesn't sound like the SSP of which we just
completed the last-call of the requirements document.
-Jim
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html