ietf-mailsig
[Top] [All Lists]

Re: CircleID on DomainKeys

2004-10-27 14:40:21

On Wed, 27 Oct 2004, David Woodhouse wrote:

The real problem with DK is that it doesn't survive existing mailing
lists though -- it is common practice to add a few lines to the bottom
of a mail as it's sent to a list, and that practice isn't going to
change any time soon. We really need to use an algorithm which allows
the recipient to locate the original content and verify it, rather than
just breaking.

We should think non-spoofable ways around this , but in the long run, if
the mailing list changes the message it should re-sign.  Hell I'm in favor
of the mailling list re-signing just because I want to be able to reliably
whitelist the mail list and not have to whitelist every single person who
might post to it.

-Rand


<Prev in Thread] Current Thread [Next in Thread>