----- Original Message -----
From: "Earl Hood" <earl(_at_)earlhood(_dot_)com>
Vandalism can have some value against DKIM. If DKIM serves as an
effective basis in combating spam and phishing, spammers may want
to attack the reliability of DKIM to discredit it and prevent its
adoption. With various business ventures arising that will utilize
or extend DKIM, such types of attacks increase in value.
I agreed. The last thing DKIM needs is for its results to be ignored by
users because it becomes common place to expect it.
A recommendation can be included in the DKIM spec that if a signer
encounters such messages, they either reject it and send an error to
the sender, or MIME encode it (e.g. using base64 or quoted-printable
CTE) before signing.
I agreed that some organizations with high value email may want to know when
their DKIM mail fails verification.
--
Hector Santos, Santronics Software, Inc.
http://www.santronics.com