Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=

ietf-dkim

Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=

2009-06-02 19:30:11

Your point about some assessors requring a signed subject is a good 
example. It tells me that 4871 section 5.4 is underspecified, and 
4871bis should strengthen it to say that you MUST sign the headers that 
every message is supposed to have.

Subject: isn't a mandatory header per RFC5322, if you're using that as a 
specific example.


Remember that a header doesn't have to be present to be signed. It'd be an 
egregious spamability hole to let people add signatures and replay without 
breaking the signature.


Ahem, add a subject and replay ...

Time for bed.
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] RFC4871bis - whether to drop -- x=, (continued) Re: [ietf-dkim] RFC4871bis - whether to drop -- x=, Paul Russell Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, John Levine Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Murray S. Kucherawy Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, John Levine Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Murray S. Kucherawy Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, John R. Levine Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Murray S. Kucherawy Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, John Levine Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Murray S. Kucherawy Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Douglas Otis Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, John Levine <= Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Doug Otis Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Murray S. Kucherawy Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Michael Thomas Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Paul Russell Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Murray S. Kucherawy Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Doug Otis Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Michael Thomas Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Jon Callas Re: [ietf-dkim] RFC4871bis - whether to drop -- x: Signature expiration, Jon Callas Re: [ietf-dkim] RFC4871bis - whether to drop -- x: Signature expiration, Murray S. Kucherawy

Previous by Date:	Re: [ietf-dkim] RFC4871bis - whether to drop -- k: Key type, Jon Callas
Next by Date:	Re: [ietf-dkim] RFC4871bis - whether to drop -- k: Key type, Douglas Otis
Previous by Thread:	Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Douglas Otis
Next by Thread:	Re: [ietf-dkim] RFC4871bis - whether to drop -- l= and x=, Doug Otis
Indexes:	[Date] [Thread] [Top] [All Lists]