[Top] [All Lists]

Re: cert-03 - signature validation failure

1998-04-07 11:12:59
Does anyone feel we can make configurability mandatory?

I certainly don't. We can suggest it, but even making it a SHOULD is too
strong for a protocol such as this.

* The validation module MUST return the status of the validation and, for any
failure, the reason for the failure. 

Return to whom? We can't specify an API for the receiving agent. I would be
OK with this as a SHOULD.

To accomplish this, I propose that we define a status return for the
validation module...

I disagree. This should be up to the implementation.

--Paul Hoffman, Director
--Internet Mail Consortium