Re: SSP - policy location compatibility with DK

ietf-mailsig

Re: SSP - policy location compatibility with DK

2005-07-31 15:06:45


Arvel Hathcock wrote:

Suppose for example that a site signs all messages with only one ofthe algorithms (DK for example). A receiver that is DKIM capablewould end up using the senders DK policy and fail the mail.
This assumes the sending site has a policy of "I sign all messages" ofcourse. But what such a site _really_ means is "I sign all messages*with DK*". Yet a DKIM verifier wouldn't know the difference. Isn'tthis correct?


Arvel,

Is anyone publishing and/or using the DK signing policy? If so, thenour attempts at compatibility have backfired.


-Jim

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
SSP - policy location compatibility with DK, Arvel Hathcock Re: SSP - policy location compatibility with DK, Hector Santos Re: SSP - policy location compatibility with DK, Arvel Hathcock Re: SSP - policy location compatibility with DK, Arvel Hathcock Re: SSP - policy location compatibility with DK, Arvel Hathcock Re: SSP - policy location compatibility with DK, Jim Fenton <= Re: SSP - policy location compatibility with DK, Arvel Hathcock Re: SSP - policy location compatibility with DK, william(at)elan.net Re: SSP - policy location compatibility with DK, Michael Thomas

Previous by Date:	RE: The cost of choices, James Scott
Next by Date:	Re: Comments on draft-allman-dkim-base-00.txt, Ned Freed
Previous by Thread:	Re: SSP - policy location compatibility with DK, Arvel Hathcock
Next by Thread:	Re: SSP - policy location compatibility with DK, Arvel Hathcock
Indexes:	[Date] [Thread] [Top] [All Lists]