Jim Fenton wrote:
we could easily add verbiage to SSP stating that domains publishing
SSP records other than "unknown" MUST additionally ensure that they
only sign messages purporting to come from themselves when the
address in the From: header field is valid. That way, we're putting
the additional burden on those who publish SSP records but are not
trying to modify the meaning of RFC 4871 at all.
Good idea, a connection to 4409, 4954, and 5068.
Frank
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html