>Handled by whom? If we're talking about telling MUAs "Don't render the >unsigned part of the content the same way as the signed content", then a >bunch of additional complexities begin to appear:
We went over all of this ages ago when DKIM was young. It should all be in the DKIM WG archives. >- We're wandering into conversations about how MUAs should interact with >users, which this community typically avoids like a terrible allergy No kidding. I see no reason to expect that mail recipients would do anything useful with differently colored parts of the message. Punting security decisions to users usually seems to train the users to push whatever button makes the warning go away. Also, when we went down this rathole before, we noted that MIME provides an enormous range of ways to make both malicious and benign changes to a message body, and l= doesn't begin to scratch the mites on the dust on the surface. R's, John _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
