Re: [ietf-dkim] summarizing my understanding of the errata discussion &

ietf-dkim

[Top] [All Lists]

<prev [Date] next>

<prev [Thread] next>

Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal

2009-02-04 14:36:09

from [John Levine]

[Permanent Link]

deployment experience requires a stronger warning; that absent 
additional information from the signer that is not exposed by this 
specification, verifiers SHOULD NOT rely on i= as any sort of identity, 
because the value may not be present or stable.


That's basically it.

  2. Is the above statement actually true?  Do we have practical
     experience that shows that i= is either unstable or unused?


In my limited experience it seems to be reasonably stable when it's
used, but it doesn't reliably match other fields, and there are
significant signers that don't use it.  Peeking at my inbox:

gmail  no i= (many messages)
Cisco  i=from address
my system  i= stable but doesn't match any address
linx.net no i=
sendmail two signatures, no i= in either

So in this admittedly statistically invalid sample, most of the DKIM
signatures had no i=, only Cisco had a non-opaque one.

R's,
John
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, (continued) Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Hector Santos Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Charles Lindsey Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Douglas Otis Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Jon Callas Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Douglas Otis Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Hector Santos Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Pasi(_dot_)Eronen(_at_)nokia(_dot_)com Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Suresh Ramasubramanian Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Hector Santos Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Douglas Otis Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, John Levine <= Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, SM Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Jim Fenton Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Dave CROCKER Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Eliot Lear Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Dave CROCKER Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Eliot Lear

Previous by Date:	Re: [ietf-dkim] New version - draft-ietf-dkim-rfc4871-errata-01, Dave CROCKER
Next by Date:	Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Douglas Otis
Previous by Thread:	Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, Douglas Otis
Next by Thread:	Re: [ietf-dkim] summarizing my understanding of the errata discussion & a proposal, SM
Indexes:	[Date] [Thread] [Top] [All Lists]