Re: nowsp considered harmful


Thomas Roessler wrote:

nowsp, when combined with the length parameter, can enable
attackers to completely replace the e-mail content displayed
by mail user agents, without invalidating the DKIM signature.


[...nice example snipped...]

So far for "nowsp", assuming that you got it right.  What is
[XINDX] in the draft ?

This problem should be solved on the level of the
canonicalization mechanism


Yes, MIME boundaries are very critical.

whatever canonicalization method is going to be used by DKIM
ought to protect semantics of full MIME parts, including
multipart delimiter lines and individual bodies' headers.


Not protecting the top level final boundary could make sense,
if mailing lists try to add their own crap^WMIME part.  In your
example that could be a length up to "<CRLF>--foobar" instead
of the real "<CRLF>--foobar--<CRLF><epilogue>".

                              Bye, Frank

<Prev in Thread]	Current Thread	[Next in Thread>
nowsp considered harmful, Thomas Roessler Re: nowsp considered harmful, Frank Ellermann <= XINDX, Dave Crocker Re: XINDX, Frank Ellermann Re: nowsp considered harmful, Tony Hansen Real use cases for justify nowsp? (was Re: nowsp considered harmful), Earl Hood Re: nowsp considered harmful, Eric Allman Re: nowsp considered harmful, Frank Ellermann Re: nowsp considered harmful, Nathaniel Borenstein Re: nowsp considered harmful, Jim Fenton Re: nowsp considered harmful, Earl Hood Re: nowsp considered harmful, Hector Santos

Previous by Date:	draft-allman-dkim-base-00 6.6: Advice given would invalidate the DKIM signature., Thomas Roessler
Next by Date:	dkim-base-00: misc. comments, Thomas Roessler
Previous by Thread:	nowsp considered harmful, Thomas Roessler
Next by Thread:	XINDX, Dave Crocker
Indexes:	[Date] [Thread] [Top] [All Lists]