[ietf-dkim] I send nothing
Steve Atkins
steve at blighty.com
Wed Jul 26 17:06:09 PDT 2006
On Jul 26, 2006, at 5:01 PM, Douglas Otis wrote:
>
> On Jul 26, 2006, at 4:25 PM, Steve Atkins wrote:
>
>>
>> On Jul 26, 2006, at 12:58 PM, Hallam-Baker, Phillip wrote:
>>
>>> That is not true.
>>>
>>> I sign everything will still result in messages that have failed
>>> sigs due to mailing lists and such.
>>>
>>> I send nothing is much more categorical. The data can go straight
>>> to the bit bucket
>>
>> But surely if you assert "I sign everything" then any mail that is
>> unsigned (where "signature corrupted by mailing list" is identical
>> to unsigned) should go straight to the bitbucket.
>
> No. Invalid signatures are to be ignored. In the case of a
> mailing list, an invalid signature may be common for many years.
> Only when there is an assertion that mail is never sent, can mail
> be outright rejected, however scant.
If a sender asserts that all mail is signed, and you receive mail
purporting to be from that sender that isn't signed, are you
suggesting that it should be delivered anyway? If so, what's the
point of the sender asserting that all legitimate mail from them is
signed?
Cheers,
Steve
More information about the ietf-dkim
mailing list