A discussion elsewhere surfaced a point of confusion about this topic.
On the average, when one person is unclear, so will others be.
The thing that we should go out of our texts' way to make clear is that
DKIM Replay requires that the replay attack send mail that retains DKIM
/validation/. Not the mere reuse of the signature, but the continued
validity of that signature, for the message being sent. A signature
that fails is not a replay attack.
d/
--
Dave Crocker
[email protected]
mast:@[email protected]
408.329.0791
Volunteer, Silicon Valley Chapter
Information & Planning Coordinator
American Red Cross
[email protected]
_______________________________________________
Ietf-dkim mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ietf-dkim
