[ietf-dkim] Re: Responsibility vs. Validity
mike at mtcc.com
Wed Nov 28 04:59:38 PST 2007
Frank Ellermann wrote:
> Jim Fenton wrote:
>> we could easily add verbiage to SSP stating that domains publishing
>> SSP records other than "unknown" MUST additionally ensure that they
>> only sign messages purporting to come from themselves when the
>> address in the From: header field is valid. That way, we're putting
>> the additional burden on those who publish SSP records but are not
>> trying to modify the meaning of RFC 4871 at all.
> Good idea, a connection to 4409, 4954, and 5068.
So the implication here is that that sort of domain could never run a
list that resigns messages? That doesn't seem right to me.
More information about the ietf-dkim