[ietf-dkim] Configuring "unacceptable" domains
Douglas Otis
dotis at mail-abuse.org
Wed Feb 21 11:36:04 PST 2007
On Feb 21, 2007, at 11:17 AM, <Bill.Oxley at cox.com>
<Bill.Oxley at cox.com> wrote:
> Are you suggesting a methodology should be applied to a form of
> blacklist that DKIM would/should reject?
The accepted DKIM base draft included text where "unacceptable" or
"unlikely" parent domains are to be excluded as part of a verifier's
configuration. I assume this is to exclude domains used by
registries. If "co.uk" is "unacceptable", then other domains also
"unacceptable" as signing parents should be listed. This list should
be documented to permit reliable interchange. Such a list could
prove useful for qualifying valid domains as well, as presumably all
valid top, second, and third level domains would be defined by such a
list.
My preference would have been to define a method where originating
domain explicitly authorizes the signing domain when they differ,
which can be accomplished while also providing policy related
information. The DOSP was such an effort.
-Doug
More information about the ietf-dkim
mailing list