[ietf-dkim] "I sign everything" is not a useful policy
MarkD+dkim at yahoo-inc.com
Sun Aug 6 05:38:01 PDT 2006
> If I choose to deliver unsigned mail that purports to be from a domain that says
> it signs everything, but I mark it up with flashing lights that say "spoofed" do
> you want that to be a protocol violation? What about my choosing to send it to
> my sysadmin for special handling for spoofed mail? What about...
Well sure, but how about treating it the same as an IP checksum
You may divert it to some port for analysis - especially in the early
days - but what sort of stack delivers a known damaged packet to the
end point when the transmitter/protocol says to discard known damaged
DKIM+SSP is defining "damaged".
More information about the ietf-dkim