>> A database is still needed of which domains will have an >> outbound mail stream with two signatures.
Sorry, no, that's completely wrong. Please reread the draft. >I have not yet taken the time to fully understand the "weak and >strong signatures" idea, but if I may be forgiven for commenting >anyway: could the above problem be solved by having "original" >signers always supply various forms of signature (without >needing to figure out if the receiver address is a list), and >having "intermediate" signers (such as mailing lists) add more >signatures as described in the draft? No, the problem is that the intermediate signer has changed the message in a way that breaks normal signatures. You wouldn't want to accept a weak signature on its own, since then any malicious third party could have rewritten the messsage, not just the intended recipient. R's, John _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
