Suppose for example that a site signs all messages with only one of the algorithms (DK for example). A receiver that is DKIM capable would end up using the senders DK policy and fail the mail.
This assumes the sending site has a policy of "I sign all messages" of course. But what such a site _really_ means is "I sign all messages *with DK*". Yet a DKIM verifier wouldn't know the difference. Isn't this correct?
-- Arvel
<Prev in Thread] | Current Thread | [Next in Thread> |
---|---|---|
|
Previous by Date: | Re: SSP - policy location compatibility with DK, Arvel Hathcock |
---|---|
Next by Date: | Re: SSP outbound signing policy, Hector Santos |
Previous by Thread: | Re: SSP - policy location compatibility with DK, Arvel Hathcock |
Next by Thread: | Re: SSP - policy location compatibility with DK, Jim Fenton |
Indexes: | [Date] [Thread] [Top] [All Lists] |