[ietf-dkim] Delegated signatures in real life
pbaker at verisign.com
Wed Aug 30 19:57:14 PDT 2006
But the protocol allows the bulk mailer to create any key records they like and the protocol as it is written today means that they are treated by the infrastructure as equivalent.
The only way that you can avoid this as a sender is not to delegate using NS.
> -----Original Message-----
> From: ietf-dkim-bounces at mipassoc.org
> [mailto:ietf-dkim-bounces at mipassoc.org] On Behalf Of J.D. Falk
> Sent: Wednesday, August 30, 2006 5:50 PM
> To: DKIM List
> Subject: Re: [ietf-dkim] Delegated signatures in real life
> On 2006-08-29 16:41, Hallam-Baker, Phillip wrote:
> > Orbitz might not care about the security issues raised by allowing
> > doubleclick to sign messages on behalf of their CEO and other
> > executives. Many others will.
> Then they won't delegate the record they use to sign mail
> from their CEO and other executives. No problem.
> J.D. Falk, Anti-Spam Product Manager
> Yahoo! Communications Platform Team
> NOTE WELL: This list operates according to
More information about the ietf-dkim