Scott Kitterman writes: > Far more concerning to me is that once someone has received a > message with a valid 'weak' signature, the only protection against > replay is Message ID tracking.
I don't understand the attack you have in mind. First, do you mean the Mediator identified in the fs= tag can replay? Or a third party? What is the damage that could be inflicted by this replay? To whom? Steve _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
