Stephen Farrell wrote:

> Jim Fenton wrote:

>> - If broken signatures are seen as worse than the lack of a
>> signature, it will serve as a disincentive to signing
>> messages:  potential signers might not want to do so if they
>> risk having their messages downgraded if they pass through
>> an MTA that breaks the signature (or through a mailing list
>> that does so).

> Nicely put.

That's IMO the usual "you can't have your cake and eat it too".

A sender promising that all his mails are signed is OBVIOUSLY
talking about _valid_ signatures, and seriously wants that all
mails with no or invalid signatures are downgraded to /dev/null.

That's the one and only point of his signing policy.  Almost
exactly the same situation as SPF FAIL:  reject, reject, reject.

If he doesn't want that effect he should not publish a "closed"
signing policy.
                               Bye, Frank


_______________________________________________
ietf-dkim mailing list
http://dkim.org

Reply via email to