On Apr 12, 2009, at 10:54 PM, Jim Fenton wrote:
But this isn't a normative note, it's an informative note. All I
want to do with it is to caution the reader that Parent Domain
Signing, as described in section 3.8 of RFC 4871, isn't a practice
that results in an Author Domain Signature as defined in ADSP, and
therefore they shouldn't plan on using it if they're saying that
they apply Author Domain Signatures to all their mail.
Consider a domain that uses sub-domains for their mailing-lists that
are signed using Parent Domain Signing. Even when a parent domain has
ADSP assertions of either an "all" or "discardable", users can still
participate in these mailing-lists using Parent Domain Signing and be
compliant with ADSP. Compliance can not be defined in terms of Parent
Domain Signing, since the i= value can contain sub-domains.
-Doug
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html