On 5/3/19 5:51 PM, Kevin A. McGrail wrote:
If your key is compromised, generate another and publish it on DNS.
That requires knowing that the key is compromised.It really helps to know that an APT is going on to know that your key has been compromised.
The point being there are reasonable circumstances that someone else can DKIM sign messages as a victim.
-- Grant. . . . unix || die
smime.p7s
Description: S/MIME Cryptographic Signature
