From: jon(_at_)callas(_dot_)org
To: mike(_at_)mtcc(_dot_)com
Subject: Re: [ietf-dkim] Re: ISSUE 1525 -- Restriction to posting by first
Author breaks email semantics
Date: Wed, 16 Jan 2008 16:52:03 -0800
CC: dcrocker(_at_)bbiw(_dot_)net; ietf-dkim(_at_)mipassoc(_dot_)org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Please translate your grouchiness into concrete suggestions on what
if anything should change in draft. There are so many different issues
being discussed here that your +1 one is essentially useless because
it doesn't track to anything actionable.
I think we should fall back to a minimal SSP that contains only the "I-
SIGN-ALL" policy, and we let the real-world deployment and desires for
additions control more in SSP than that. SSP2 can start in a year or
two, and then we see what is needed in the real world. We can even
have experimental things in the field to test them.
Jon
I don't think I'd have a problem with only have a "I sign everything" policy. I
think the bigger issue is, as a verifier, who is the "I" who I should be
looking for that assertion from when I have an unsigned message. The options
appear to be, check the domain of the Sender, check the domain of the first
address in the From: (the currently defined behavior), or check all addresses
in the From: .
My personal preference would be the latter for the entirely selfish reason
that, if any domains can make that assertion it immediately becomes useful. The
same does not appear to me (at least yet) to be true for the Sender.
Robert
-----BEGIN PGP SIGNATURE-----
Version: PGP Universal 2.6.3
Charset: US-ASCII
wj8DBQFHjqa2sTedWZOD3gYRAoZhAKCCalYvImeJrhB07fv6jS59s8l3LACeM7TS
v7K/BLZqwg76skcocMPmaUk=
=LHa/
-----END PGP SIGNATURE-----
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html
_________________________________________________________________
Helping your favorite cause is as easy as instant messaging. You IM, we give.
http://im.live.com/Messenger/IM/Home/?source=text_hotmail_join
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html