On May 20, 2009, at 12:10 PM, Douglas Otis wrote: > Since email must deal with large amounts of spam and abuse, it would > be good to have provisions in DKIM that allow secured attachments to > be excluded from the DKIM hash algorithm without causing the entire > message to be considered unsigned
Why would you want to sign email as something you vouched for, while still enabling anyone to replace the content of the email with something else without invalidating that signature? A low-end, $30 x86 CPU can hash well over 100 megabytes of SHA256 a second, more than enough to saturate an OC-12, so the cost of signing cannot be the reason you want to do so. Cheers, Steve _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
