ietf-dkim
[Top] [All Lists]

Re: [ietf-dkim] Resigner Support of RFC 5617 (ADSP)

2009-10-10 13:16:31


People who contribute to mailing lists shouldn't say dkim=all.  We
argued this ad nauseam when we were hammering out ADSP, it shouldn't
come as a surprise to anyone.
That is not true at all. They shouldn't be using discardable. "All" only
says what the sender does, not what the receiver should expect.

They certainly shouldn't be using discardable.  I would advise not using
all either, due to the observed tendency of people to pay way too much
attention to DKIM and ADSP failures.


Folks,

To claim that one signs all mail is to imply that anyone receiving mail from 
them should see a valid signature.

Mail sent through list servers invites the problem of receivers getting mail 
that does not have the promised valid signature, since intermediaries are 
re-posting the message and are free to make whatever changes they see fit.

Hence, saying -all for mail that goes through intermediaries which might affect 
the signature is inviting receivers to treat the received mail with hostile 
prejudice.

d/
-- 

   Dave Crocker
   Brandenburg InternetWorking
   bbiw.net
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html