Hi Steve,
On 8/15/16 5:30 PM, Steve Atkins wrote: >> On Aug 14, 2016, at 10:11 PM, Eliot Lear <[email protected]> wrote: >> >> >> >> On 8/14/16 6:46 AM, Steve Atkins wrote: >>> If there were a protocol that said "if you receive mail signed by this >>> domain / this key and the recipient isn't in the To: or Cc: field, >>> block it", or some similar protocol that signed the envelope >>> recipient, that would pretty much eliminate DKIM replay as a threat in >>> some cases. >> That would be a DKIM flag, right? > Yes, part of the DKIM-Signature header, probably (though that's not a > requirement, just one obvious implementation). Ok. > >> And you don't want to block- you just >> want the signature treated as invalid. > That's one option, and likely the more useful one. Ok. Then the next question is if we do such an option would it help fastmail.fm, especially in conjunction with ARC? Eliot
signature.asc
Description: OpenPGP digital signature
_______________________________________________ mailop mailing list [email protected] https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
