ietf-mailsig
[Top] [All Lists]

Re: The cost of choices

2005-07-27 22:07:22

On July 27, 2005 at 22:13, "Arvel Hathcock" wrote:

And to extend it further, the SSP should provide the ability to
list which domains are allowed to do third-party signing.  Otherwise,
if it is boolean switch, turning on the switch open you up to
spoofing attacks.

Would there be enough room in 512 bytes to effectively do that?

One could not have a huge list, but something must be provided
or third-party signing support would be useless from a security
perspective.  It seems 512 bytes should be sufficient.

--ewh

<Prev in Thread] Current Thread [Next in Thread>