Hi Andreas,
On 03/11/2019 11:02, A. Schulze wrote:
Am 01.11.19 um 19:24 schrieb [email protected]:
Title : Extensions to Automatic Certificate Management
Environment for end user S/MIME certificates
Author : Alexey Melnikov
Filename : draft-ietf-acme-email-smime-06.txt
Pages : 10
Date : 2019-11-01
Hello,
I'v noticed this version enhance the number of header fields MUST be covered by
DKIM.
But some of us may be are aware of "Breaking DKIM - on Purpose and by Chance"
[1] published in 2017.
To mitigate such attacks it would be helpful to REQUIRE header fields also
can't be added.
see https://tools.ietf.org/html/rfc6376#section-3.5, definition of h= and
INFORMATIVE EXPLANATION + NOTE
I should have said that I've noticed your simial comment an an earlier
email and it is still pending.
If you can suggest some specific text, that would be really great and
would speed up addressing this issue.
Best Regards,
Alexey
Andreas
[1] https://noxxi.de/research/breaking-dkim-on-purpose-and-by-chance.html
_______________________________________________
Acme mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/acme
_______________________________________________
Acme mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/acme
