There's nothing here about "in the absence of sufficient
trust to just accept/deliver the message"... it's pretty
clear that the check MUST be made if there is no valid
signature on behalf of the FROM address.
IMO, the SSP spec appropriately speaks to what must be done when SSP is used. In cases
where you decide not to use SSP you are naturally not bound by any of it's requirements.
It would seem odd to me if we added text along the lines of "If you're not planning
to employ this spec then you can ignore what it says" as I believe that is a given
and I've not seen it in other specs but I could be wrong.
Arvel
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html