ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] requirement for one ADSP record per DNS entry makes ADSP undeployable

2008-05-27 04:42:23
from [Eliot Lear] [Permanent Link] 
Frank Ellermann wrote:

Eliot Lear wrote:
 
  

The absence of a parent label check will mean that enterprises
must list an ADSP record for each and every DNS entry they have.
    


If they wish to publish "signing practises" they can focus on
domains actually used as "author domain", for a stupid example,
they likely don't need any ADSP for www.example.com.

There is no "requirement for one ADSP record per DNS entry", like
there is no requirement for MX or SPF records per DNS entry.
  


Absent those records, an author domain administrator cannot adequately 
or easily express the simple notion that only certain hosts are 
authorized to send from a domain.  We have thus missed the mark on what 
we are doing.

Eliot
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] why we should clearly specify domain existence, Tony Finch
Next by Date:  Re: [ietf-dkim] requirement for one ADSP record per DNS entry makes ADSP undeployable, Frank Ellermann
Previous by Thread:  Re: [ietf-dkim] requirement for one ADSP record per DNS entry makes ADSP undeployable, Frank Ellermann
Next by Thread:  Re: [ietf-dkim] requirement for one ADSP record per DNS entry makes ADSP undeployable, Frank Ellermann
Indexes:  [Date] [Thread] [Top] [All Lists]