John Levine wrote: >> Associating the signature with the signing host (or [EMAIL PROTECTED]) is >> what I expect a mailing list would do. But the reputation decision is >> required to really know that it's a list. It's not sufficient to see a >> list-id or any other header field to know its role. >> > > I don't understand why you need to know it's a list. If phoo.com has > a good reputation, why does it matter whether it's signing list mail > or individual love letters? > I wasn't asserting that you need to know it's a list. I was responding to William who had said that determining the role of the signer was useful, and I was describing the problems associated with determining that. > Anyway, on my system the lists all live in separate subdomains to make > them easier to manage, the signature would likely be in its own domain > separate from the one that love letters use anyway, so if the lists > were notably better or worse than the individual messages, they'd have > a separate reputation domain anyway. > > R's, > John > > PS: Now I'm REALLY going to get back to the threats doc. > REALLY good.
-Jim _______________________________________________ ietf-dkim mailing list http://dkim.org
