Re: [ietf-dkim] Re: Adding SMTP client Requirements

ietf-dkim

Re: [ietf-dkim] Re: Adding SMTP client Requirements

2007-05-26 20:57:17

from [SM]

At 16:40 26-05-2007, Douglas Otis wrote:

Mitigation might need to be better defined:

 A) the SMTP RCPT TO is within the signed portion of the message,

 B) or when a _confirmed_ SMTP client is within the DKIM domain.

Both A and B would affect DKIM verification if the message goesthrough a mailing list or a forwarder.

DKIM operates entirely on the content of the message (RFC 4686Section 1.1). Your requirement goes against that. Maybe you coulduse "revocation identifiers" as described in the Chosen MessageReplay scenario.


Regards,
-sm


_______________________________________________

NOTE WELL: This list operates according tohttp://mipassoc.org/dkim/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[ietf-dkim] RFC 4871 on DomainKeys Identified Mail (DKIM) Signatures (fwd), John Levine Re: [ietf-dkim] RFC 4871 on DomainKeys Identified Mail (DKIM) Signatures (fwd), Stephen Farrell [ietf-dkim] Adding SMTP client Requirements, Douglas Otis [ietf-dkim] Re: Adding SMTP client Requirements, Stephen Farrell [ietf-dkim] Re: Adding SMTP client Requirements, Douglas Otis Re: [ietf-dkim] Re: Adding SMTP client Requirements, Barry Leiba Message not available Re: [ietf-dkim] Re: Adding SMTP client Requirements, Barry Leiba Message not available Re: [ietf-dkim] Re: Adding SMTP client Requirements, SM <= Re: [ietf-dkim] Re: Adding SMTP client Requirements, Hector Santos Message not available Re: [ietf-dkim] Re: Adding SMTP client Requirements, SM Message not available Re: [ietf-dkim] Re: Adding SMTP client Requirements, SM Message not available Re: [ietf-dkim] Re: Adding SMTP client Requirements, SM Re: [ietf-dkim] Re: Adding SMTP client Requirements, Douglas Otis Re: [ietf-dkim] Re: Adding SMTP client Requirements, Scott Kitterman Re: [ietf-dkim] Re: Adding SMTP client Requirements, SM Re: [ietf-dkim] Re: Adding SMTP client Requirements, Barry Leiba Re: [ietf-dkim] RFC 4871 on DomainKeys Identified Mail (DKIM) Signatures (fwd), Damon

Previous by Date:	Re: [ietf-dkim] Re: Adding SMTP client Requirements, Barry Leiba
Next by Date:	Re: [ietf-dkim] Re: Adding SMTP client Requirements, Hector Santos
Previous by Thread:	Re: [ietf-dkim] Re: Adding SMTP client Requirements, Barry Leiba
Next by Thread:	Re: [ietf-dkim] Re: Adding SMTP client Requirements, Hector Santos
Indexes:	[Date] [Thread] [Top] [All Lists]