[ietf-dkim] list vs contributor signatures, was Wrong Discussion
iane at sussex.ac.uk
Fri Apr 30 02:38:42 PDT 2010
--On 30 April 2010 01:06:15 +0000 John Levine <johnl at iecc.com> wrote:
> I just don't see how you can simultaneously say "throw away unsigned
> mail" and "don't throw away unsigned mail if a list says it used to be
> signed" unless you have some way to identify trustworthy lists. But
> once you know that a list is trustworthy, why wouldn't you just accept
> all its mail? I just don't see a plausible scenario where you you
> know you trust the list but still want to accept or reject mail based
> on assertions the list itself makes.
How about you trust the list, and it says the inbound message wasn't
signed? The list has left the value judgement to the recipient.
IT Services, University of Sussex
For new support requests, see http://www.sussex.ac.uk/its/help/
More information about the ietf-dkim