ietf-dkim
[Top] [All Lists]

Re: [ietf-dkim] protecting domains that don't exist

2008-04-15 04:52:11
On Mon, 14 Apr 2008 19:06:05 +0100, Douglas Otis 
<dotis(_at_)mail-abuse(_dot_)org>  
wrote:

RFC 2822 does not depend upon SMTP as being the message exchange
protocol.  In addition, future message exchange protocols may depend
upon different address resolution protocols, such as PRNP.  PPNP
avoids any reliance upon DNS, for example.  Any protocol that might
replace DNS may also adopt a strategy of DNS independence.  Unless
ADSP specifies policies are limited to SMTP, it would be incorrect to
conclude existence checks can or should depend upon DNS resource
records.

But how do you know which protocol the message was written for?

If it arrives at your site via SMTP, then you should apply the ADSP rules  
appropriate to SMTP. If it actually started life being transported by  
XXTP, then you just have to assume that the XXTP to SMTP gateway had fixed  
it up (e.g by not letting it through at all if it was going to violate  
someone's policy).

Conversely, if it arrives at your site via XXTP, then it may or may not be  
worth trying ADSP on it (depending on whether or not you have DNS access).  
It is again really a matter for any earlier SMTP to XXTP to have sorted  
the matter out (e.g. by verifying it and not passing it on if it failed).

Just think in terms of "XXTP" == "Carrier pigeon" :-) .

-- 
Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131                       
   Web: http://www.cs.man.ac.uk/~chl
Email: chl(_at_)clerew(_dot_)man(_dot_)ac(_dot_)uk      Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9      Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

<Prev in Thread] Current Thread [Next in Thread>