On 1/11/23 6:54 AM, Dave Crocker wrote:
The thing that we should go out of our texts' way to make clear is that DKIM Replay requires that the replay attack send mail that retains DKIM /validation/. Not the mere reuse of the signature, but the continued validity of that signature, for the message being sent. A signature that fails is not a replay attack.
I question that.I'd think that both are a replay. A signature that validates would be a successful replay while a signature that fails is a failed replay. But both are replays to me.
Remember, an attack doesn't need to succeed to be considered an attack. -- Grant. . . . unix || die
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Ietf-dkim mailing list [email protected] https://www.ietf.org/mailman/listinfo/ietf-dkim
