ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] RFC4871bis - whether to drop -- k: Key type

2009-06-02 04:01:30
from [Eliot Lear] [Permanent Link] 
On 6/1/09 9:43 PM, Dave CROCKER wrote:


Let's make sure everyone is in synch about what is being proposed:

     The suggestion is to drop a tag from the *DNS record*, /not/
     from the *DKIM-Signature* header field.

What is the benefit of having the DNS record list possible algorithms?


It's not a matter of possible algorithms, but which algorithm is to be 
used to interpret p=.  This having been said, I think your major point 
is that you do not see a benefit in stating the algorithm in the key 
record when it has already been stated in the header, that perhaps there 
is some nebulous potential downgrade attack.  Is that right?

Eliot
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] RFC4871bis - whether to drop -- SHA1 support, Suresh Ramasubramanian
Next by Date:  Re: [ietf-dkim] RFC4871bis - whether to drop -- x: Signature expiration, John Levine
Previous by Thread:  Re: [ietf-dkim] RFC4871bis - whether to drop -- k: Key type, Wietse Venema
Next by Thread:  Re: [ietf-dkim] RFC4871bis - whether to drop -- k: Key type, Dave CROCKER
Indexes:  [Date] [Thread] [Top] [All Lists]