[ietf-dkim] Not exactly not a threat analysis
earl at earlhood.com
Wed Aug 17 11:27:46 PDT 2005
On August 17, 2005 at 11:44, Keith Moore wrote:
> IMHO, these are a useful start, but I think they need work. For
> example, the MUST NOT prohibition against verifiers using the z= field
> seems a bit overstated.
The z= is not designed well, IMHO. I'd be concerned about the 998
octet line length limit, and as DKIM defines it now, it has no,
to very little value.
I think saved header fields can have some uses, especially in
validation, but something better than the z= should be devised.
More information about the ietf-dkim