Julian Mehnle wrote:
What are the main points of contention, the main points of
agreement, and what is the current status and direction
of the discussion?
Apparently there's consensus that anything that's irrelevant
for receivers is completely irrelevant.
Hector published a draft resulting in about 10 possible signing
policies. The bulk of it because he gets 3 "I sign" variants
(always/sometimes/never) times 3 "others sign" variants.
A more (IMO too) minimalistic approach is apparently "I never
sign" and "I always sign".
Unrelated to these issues Phil is more interested in questions
of _how_ folks sign (which algorithm), and what they can do if
they wish to use a new or exoctic algorithm. Issues include
downgrade attacks.
The super wildcard stuff is discussed on DNSEXT, where somebody
claimed that he already uses PTR for a different purpose. That
resulted in some flames and a PPTR and after that it was quiet.
A minority (apparently) thinks that SSP is at best experimental
if it's not completely pointless. Maybe the WG Chairs picked a
draft editor who isn't very interested in the topic (unclear).
Doug still has it clear that 2822-From is not necessarily the
same as PRA. Doug uses the acronym CAD for the right-hand side
of a PRA - I forgot what "CA" stands for, he posted a glossary.
Wayne also has this clear and proposed a third case for the
minimalistic always / never model (better than "sometimes" :-)
Hector published a third canonicalization method in addition to
SIMPLE and RELAXED (or a fourth if you count the old NOFWS).
I'd love to know what DAC is, an "a" for accreditation ?
Frank
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com