On Thursday 10 August 2006 11:00, Frank Ellermann wrote: > Maybe <http://article.gmane.org/gmane.ietf.dkim/4943/> helps > > with lists (last paragraph): > | I think there is some value in distinguishing between "I > | sign everything and never send to mailing lists and other > | known mungers", "I sign everything, but also send to known > | mungers", and "I know I don't sign everything". > > Apparently the requirements don't include the last two cases > yet. If "I sign sometimes" is the default for no SSP, then > "I know I don't sign" is relevant. > For first two cases listed, I think we've organized around a different paradigm:
1. I sign everything and anything without a signature from me should be treated as suspicious (I'm willing to suffer the consequences from message rejection due to signature breaking). 2. I sign everything. For the munger/non-munger approach, how would then domain owner know if it's users sent to mungers or not? I don't see how that's possible. For I know I don't sign, is there a special action a receiver can take if they get a message with a signature (maybe claranet started signing and you missed the message)? If not, do we need to include it? Scott K Scott K _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
