ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] Re: Single Organization TXT Lookup with Multiple TXT Records Result

2007-06-04 08:18:31
from [Damon] [Permanent Link] 
What I am suggesting is a bit different.  As this label must have a
prefix, why not allow the prefix to associate with another domain via a
hash?  Check the existence of an MX record when no policy record is
found.  When policy record lookup fails and the MX record exists (we are
at two transactions), a third lookup could be for
_dkim-all.<email-address-domain> to determine whether a lack of an
association is acceptable.

This approach represents the same number of transactions as suggested by
Phillip, but also provides a means to curtail a replay-abuse and
broken-signature bounce problem.  Doing this now ensures at most one
additional transaction occurs.  This seems well worth it.



Doug,

Interesting idea. Can you provide an example of how this would work IRL?
I am confused about the "hash".

Regards,
Damon
_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: MX dot was (Re: [ietf-dkim] TXT wildcards SSP issues, Hallam-Baker, Phillip
Next by Date:  Re: [ietf-dkim] SSP issues, Damon
Previous by Thread:  [ietf-dkim] Single Organization TXT Lookup with Multiple TXT Records Result, Hector Santos
Next by Thread:  Re: [ietf-dkim] Re: Single Organization TXT Lookup with Multiple TXT Records Result, Douglas Otis
Indexes:  [Date] [Thread] [Top] [All Lists]