On Wed, 11 Jun 2008 13:49:08 +0100, <Bill(_dot_)Oxley(_at_)cox(_dot_)com> wrote:
"what do you want the Verifier to do? " anything he wants to with the
understanding he has the equivalent of an unsigned message.
No, that won't do. If you have an unsigned message, you want to know
whether or not it has an ADSP record that says it should have been signed.
So, in the current proposals:
if (message lacks valid signature) {
if (author domain exists &&
does not have an ADSP record || ADSP record is strict/whatever)
{
discard/mark/whatever message
} else {
let it through
}
}
Anything less than that leaves a gaping hole through which all scammers
will immediately go. "Anythjng less than that" includes hiving it off to a
separate draft.
non-SMTP domain is the same as a non tcpip domain, no records associated
with the protocol
But DNS records, where they exist, are not "associated with the protocol"
(well some of them, where there is an MX record, might be).
So all SMTP-domains are tcpip-domains, but the converse is not true.
--
Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131
Web: http://www.cs.man.ac.uk/~chl
Email: chl(_at_)clerew(_dot_)man(_dot_)ac(_dot_)uk Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9 Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html