ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] NO DKIM "POLICY"

2009-02-20 17:28:15
from [Douglas Otis] [Permanent Link] 

On Feb 20, 2009, at 1:58 PM, Franck Martin wrote:


but it can come from @example.com signed by @test.com
This could be described a third-party signature, where test.com should not be considered authoritative for example.com, just as ads.example.com should not be. While test.com may allow acceptance of example.com's email, its signature should not directly assure recipients that use of the example.com domain is not being spoofed. Socially engineered attacks can easily acquire a signature from an otherwise reputable domain. 

-Doug


_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] NO DKIM "POLICY", Franck Martin
Next by Date:  Re: [ietf-dkim] NO DKIM "POLICY", Franck Martin
Previous by Thread:  Re: [ietf-dkim] NO DKIM "POLICY", Franck Martin
Next by Thread:  Re: [ietf-dkim] NO DKIM "POLICY", Franck Martin
Indexes:  [Date] [Thread] [Top] [All Lists]