On Thu, Mar 26, 2015 at 2:57 PM, Doug Montgomery <[email protected]> wrote: > For any set of aliases that are manually configured, publishing a key, or > CNAME for each of those is of the same order of complexity as establishing > the alias itself. > > When I try to validate the sig for [email protected] I will look that up.
<name>+<list> is not configured. They're magic... if your MTAs are configured so anyways. These uses exist precisely because they were a) permitted, b) handy. So now we have to deal with them. > I still fail to see what inbound fuzzy match of local parts has to do with > the problem. It's true that we don't have to specify a lookup service to deal with fuzzy matching. However, the <name>+<list> users will have start manually publishing those. That seems like a pain. Also, using DNS for this opens mail domains to zone walking to find mailboxes, whereas a proper lookup service wouldn't (it would still be an oracle, but there would be no NSEC* to facilitate discovery of all email addresses at the domain). Nico -- _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
