Re: [ietf-dkim] Why mailing lists should strip DKIM signatures

ietf-dkim

Re: [ietf-dkim] Why mailing lists should strip DKIM signatures

2010-04-26 09:03:20

I'm willing to accept a signature with l= so long as it covers the

entire message.  I agree that partial coverage is not practically
distinguished from no coverage.

I note you refer to /current/ --rather than possible or commendable-- 
practice


Sorry, I don't understand what you're trying to say.

Partial body coverage allows all sorts of sneaky tricks that make the
body presented to the user completely different from that the sender
signed.  l=0 screams "phish me", attach a fake body to a genuine
signed set of headers.

We hashed all this out in excruciating detail on this list a year or
two ago, so please review the archives.

R's,
John
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, (continued) Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, John Levine Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Murray S. Kucherawy Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, John R. Levine Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Murray S. Kucherawy Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, John Levine Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Alessandro Vesely Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Tony Hansen Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Steve Atkins Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, John Levine Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Alessandro Vesely Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, John Levine <= Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, MH Michael Hammer (5304) Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, Michael Thomas Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, McDowell, Brett Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, J.D. Falk Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, Tony Hansen Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, John Levine Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, Michael Thomas Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, MH Michael Hammer (5304) Re: [ietf-dkim] list vs contributor signatures, was Wrong Discussion, John R. Levine Re: [ietf-dkim] list vs contributor signatures, was Wrong Discussion, Alessandro Vesely

Previous by Date:	Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Alessandro Vesely
Next by Date:	Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, MH Michael Hammer (5304)
Previous by Thread:	Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Alessandro Vesely
Next by Thread:	Re: [ietf-dkim] Wrong Discussion - was Why mailing lists should strip DKIM signatures, MH Michael Hammer (5304)
Indexes:	[Date] [Thread] [Top] [All Lists]