On Sat, 2006-09-09 at 23:54 -0400, Thomas A. Fine wrote: > wayne wrote: > >> Straightforward case analysis: > >> > >> 1-a: throw message away, it's forged [for "I sign all; bad sig"] > > > > No, don't throw it away because the lack of a valid signature may > > well be due to minor and innocent changes made during transmission. > > Yes, throw it away. There's no such thing as a minor innocent > change. If a mail system is misconfigured, then it's mail doesn't > go and it has to fix the problem. That's how things work now, > why should it change?
A system is not misconfigured that asserts all messages are initially signed and that non-compliant services are also used. In this case, one should expect a signature may be damaged or not added by such services. Sending a message to virtually any mailing list such as this one will cause messages to be lost when following your advice. In the case of a mailing list, the change may not be minor, but at the same time, it is not nefarious either. This attitude confirms John's concerns are valid. : ( -Doug _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
