-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On May 30, 2009, at 10:15 AM, Dave CROCKER wrote:
Folks,
In:
<http://mipassoc.org/pipermail/ietf-dkim/2009q2/011959.html>
Steve Atkins posted a list of suggested DKIM features to drop.
This note is intended to anchor a discussion thread for discusses
one of those
features, namely:
TXT RR tags
h: Acceptable hash algorithms
The spec needs to define the supported set of hash algorithms. There
may be some value in a signer being able to state that they're using
an algorithm that isn't supported, perhaps.
But unless there is a viable attack such that an attacker can craft a
message that validates correctly against the domain owner public key
using a hash supported by the spec (sha1 or sha256), without access
to
the domain owners private key, then there's no need for this to be in
the TXT record.
I agree that there's no need for that to be in a TXT record.
Jon
-----BEGIN PGP SIGNATURE-----
Version: PGP Universal 2.6.3
Charset: US-ASCII
wj8DBQFKJFINsTedWZOD3gYRAla4AJ9yvw+h7dMYit+zrvp3zTuDdJc6PACghYJd
ns+FvzyHgSeT03feHK6kyuY=
=Jxxh
-----END PGP SIGNATURE-----
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html