Michael Thomas wrote in
<[email protected]>:
|On 3/6/25 1:22 PM, John Levine wrote:
|>
|> It would be reasonable to design DKIM2 to make signing multiple messages \
|> fast,
|> e.g., if messages only have different headers, reuse the body hash. \
|> But that's
|> just an optimization.
|>
|I think this appeal to "efficiency" is something of a red herring. I was
|pretty concerned back in the day that the cost of RSA operations would
|be significant, but it turns out that they weren't. That was 20 years
|ago and lots of Ticks and Tocks have happened in the mean time. This is
|especially true if you're doing spam filtering which is expensive and
|ought to be done both sending and receiving.
|
|But I looked at this message's source and it has 4 signatures from
|google: 2 ARC signatures, 1 DKIM, and one Google DKIM signature which I
|have no idea what it is. Gmail is probably the largest mailbox provider
|in the world and they didn't seem to be too resistant to running
|experiments that incur RSA signing operations.
RSA aside (i will not add encryption to ACDC due to this; if ACDC
would make it and the group who does it does it, that is another
thing; it is easily possible to add a key to the DNS record, and
make encryption optional even; like for ACDC2).
Just last month the FreeBSD operating system changed their NFS
server to provide handshake parallelism via threads ("to handle
a situation when a server reboots and it has several hundred or
thousands of TLS/TCP connections from clients").
That was because ~"starting a thread is factors cheaper than
crypto operations". Now they "are processing the TLS handshakes
in separate threads, one per handshake" due to that (scaled to an
algorithm). Off-topic, but only a bit.
Btw i decided to be pissed now; if this specific IETF group is of
the opinion that they have all rights in the world to mutilate
SMTP for braggy reasons: yes, they can.
It fits the bill of anything we see, hey, even the ex-boss of the
american National Rifle Association Charlton Heston played in
Soylent Green, and "Soylent Green is people!"
I like my VERP SMTP extension idea, and i have seen plenty of
emails which fit that bill; maybe Elon Musk would buy me out to be
able to send letters of discharge even more efficiently even???
DKIM2 plugging SMTP makes for another "board in front of the head"
for anyone to run against.
Like Dave Crocker always says, "email is I/O bound", and i like the
confident and responsible attitude this group of very intelligent
engineers shows regarding paving the way for improving the
accompanying situation.
Ha.
--steffen
|
|Der Kragenbaer, The moon bear,
|der holt sich munter he cheerfully and one by one
|einen nach dem anderen runter wa.ks himself off
|(By Robert Gernhardt)
_______________________________________________
Ietf-dkim mailing list -- [email protected]
To unsubscribe send an email to [email protected]
