On Tue, 31 Mar 2009 17:30:33 +0100, Jim Fenton <fenton(_at_)cisco(_dot_)com>
wrote:
So where is your problem?
My problem is that the semantics of the signature that the mailing list
applies shouldn't depend on whether the original author happens to be in
the same domain as the list.
BUT IT DOESN'T!
I am perpetually amazed that people on this list still seem to have no
idea of how ADSP is supposed to work. They seem to think that the ADSP
record is somehow related to the domain in the d= of the signature. IT
ISN'T!
It is primarily related to the domain in the From: header.
The existence of an ADSP record states that "If you see this domain in the
From: header of any email, you should expect to see also a valid signature
with this same domain in its d= (and maybe we also invite you to discard
it if such a signature is absent)".
So if a particular mail happens to have foo.example in its From: header,
and has also been forwarded to a list by that same domain, then WHO CARES
whether the signature was put there by the mailing list expander, or by
the normal signing machine for that domain (maybe it had even acquired two
signatures, one from each and both using the same key)? IT DOESN'T MATTER,
since it is amply proved to be a genuine message vouched for by that
domain.
Whether smart Assessors or smart humans choose to look at any i= that may
be present and may indicate whether the actual signature was put there by
the mail-list machinery or not is a minor secondary issue. Again, WHO
REALLY CARES?
So I still don't see that you have raised an actual problem.
--
Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131
Web: http://www.cs.man.ac.uk/~chl
Email: chl(_at_)clerew(_dot_)man(_dot_)ac(_dot_)uk Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9 Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html