Wietse Venema wrote:
Bill(_dot_)Oxley(_at_)cox(_dot_)com:
business customers who have no clue on how to manage DNS or do
DKIM which rather slows adoption rates. Without this the only
people doing DKIM will be the spammers (most of my currently signed
mail is from spammers) and large phished entities like paypal.
Now since I have a speaking relationship with paypal I dont need
to use SSP for them.
Bill,
While time leaks away in disgreements on even simple things, may
I show an example how one DKIM private key could be used to provide
valid first-party signatures for multiple domains.
- Implement DNS DKIM records as CNAMEs to records that are shared
by multiple domains, instead of giving each domain its own. You
could share the same record with all domains, but don't have to.
This seems pretty reasonable, and I just looked up for a couple of
DNS providers and it seems that using CNAME's is pretty easy --
surely no more difficult than setting the MX record. If the same
provider runs their DNS and mail, they could easily set it up for
their customers which would be easiest of all.
Mike
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html