Re: [spf-discuss] SPF, DKIM, and NIH

On Mon, 12 Oct 2009 09:14:22 -0700 (PDT) Michael Deutschmann 
<michael(_at_)talamasca(_dot_)ocis(_dot_)net> wrote:
> On Mon, 12 Oct 2009, Scott Kitterman wrote:
> > OK, then what is the sender signing?
> The signature will lock down the same things as in DKIM/ADSP -- the
> entire body and the sender's choice of headers.  Only the d= values of the
> signatures of interest to the validator will be different.
>
> Not that it matters.  Traditional forwarders send the message verbatim, so
> they don't need to care.  Mailing lists can freely break the original
> envelope-signature since they do not assert the original envelope.
So I still need to accept the message body to determine if it passed?

For the 80 percent of mail that has the same mail from and from domain, 
what would be the difference between this and a standard first party DKIM 
signature?  

For the remainder, what would be the difference between this and a standard 
3rd party signature?

Scott K


-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/735/=now
RSS Feed: https://www.listbox.com/member/archive/rss/735/
Powered by Listbox: http://www.listbox.com