[ietf-dkim] DKIM SSP: Security vulnerability when SSP record
does not exist?
Scott Kitterman
ietf-dkim at kitterman.com
Wed Aug 24 13:55:14 PDT 2005
Douglas Otis wrote:
>
> On Aug 24, 2005, at 12:10 PM, Scott Kitterman wrote:
>> As I said before, let's just agree that there is work yet to be done
>> on SSP and quite arguing about if it should be done.
>
>
>
> We are back to using the term 'it' again as if 'it' has special
> meaning. You have made wild claims without providing any
> substantiations. Please don't think of SSP as justification for yet
> another 'kitchen sink' approach where everything is stirred together
> until someone proclaims "RFC-Soup." Now is the time to be realistic.
> This should not be about selling a general concept of mom and apple pie.
>
Since you are confused, I will clarify. The antecedant of it in the
sentence above is the work yet to be done on SSP.
I don't think I'm the one making wild claims. I don't expect I'll
change your mind on that.
Question for you: Is it your view that DKIM-SSP ought to be in scope or
out of scope for the initial work of the working group?
Scott Kitterman
More information about the ietf-dkim
mailing list