[ietf-dkim] DKIM SSP: Security vulnerability when SSP record
doesnot exist?
Earl Hood
earl at earlhood.com
Wed Aug 10 08:03:19 PDT 2005
On August 10, 2005 at 09:53, "Arvel Hathcock" wrote:
> What about DNS connectivity problems which do come up from time to time?
Then you will probably have other problems besides looking up SSP
records.
> Suppose you get an unsigned message and DNS lookups fail for whatever
> transient reason. If you change the current default policy you'd end up
> treating as suspicious every message that arrives during the time DNS was
> messed up.
I would think the message would be queued up for later processing
in the hopes that DNS is back online.
--ewh
More information about the ietf-dkim
mailing list