I'm going to start a new thread on this topic.
--
Arvel
----- Original Message -----
From: "Earl Hood" <earl(_at_)earlhood(_dot_)com>
To: <ietf-mailsig(_at_)imc(_dot_)org>
Sent: Thursday, July 28, 2005 12:02 AM
Subject: Re: The cost of choices
On July 27, 2005 at 22:13, "Arvel Hathcock" wrote:
> And to extend it further, the SSP should provide the ability to
> list which domains are allowed to do third-party signing. Otherwise,
> if it is boolean switch, turning on the switch open you up to
> spoofing attacks.
Would there be enough room in 512 bytes to effectively do that?
One could not have a huge list, but something must be provided
or third-party signing support would be useless from a security
perspective. It seems 512 bytes should be sufficient.
--ewh