... > 1. Do we want to reduce the DKIM broken signature rate or do we want to > make ADSP less vulnerable to it. Or both, I guess. > > 2. If we want to reduce the DKIM broken signature rate, do we need to > rework DKIM at all, or do we need to make operational recommendations to > the generator and signer of the mail, or do we need to provide > operational advice to forwarders and mailing list managers. For any of > those we need to balance the improvement against the reduction in > deployment and reduction in correct deployment the increased complexity > will cause. The history of SPF-all and SRS is likely relevant there. ...
I'm curious what level of reliability you think DKIM signatures have currently? And are you measuring at a border MTA or somewhere later in the delivery chain? Scott K _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
