ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] detecting header mutations after signing

2010-10-19 15:46:42
from [Dave CROCKER] [Permanent Link] 


On 10/19/2010 1:33 PM, John R. Levine wrote:

Re Security Considerations, it's better than nothing,


Not necessarily.

The current issue is part of a much larger one.  We will not be dealing with 
that larger set of security details because it is out of scope.  Dealing with a 
narrow piece of it, in a very narrow specification, gives the patina of dealing 
with something, without the substance.

So it establishes a false sense of resolving a security issue.

d/
-- 

   Dave Crocker
   Brandenburg InternetWorking
   bbiw.net
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] detecting header mutations after signing, John R. Levine
Next by Date:  [ietf-dkim] Comments on draft-ietf-dkim-rfc4871bis-02, SM
Previous by Thread:  Re: [ietf-dkim] detecting header mutations after signing, John R. Levine
Next by Thread:  [ietf-dkim] double header reality check, John R. Levine
Indexes:  [Date] [Thread] [Top] [All Lists]