Dave Crocker wrote in
<[email protected]>:
|Name: draft-crocker-dkim-replay
"mighty" surely means "might".
In 2.2 "Outbound filtering" -> "Outbound filtering:".
Items in 4. have no final punctuation but the last.
Vice versa in first list of 5.
No final punctuation in last list of page 10.
I want to say that, in theory, without rereading all of DKIM and
thus having a graceful understanding while i write this, in (first
list of 5.)
Include the SMTP RCPT-TO address in the DKIM signature:
...
- If a message has more than one addressee, should the signature
cover all of them, or does this require sending one message per
addressee? If it covers all of them, note that they might be
on different systems, so that upon arrival, the RCPT-TO list
will not include all of the original addresses
one could add one entry for each, with the necessity to cover all
of these in the signature. Then receivers could check all in turn
and pick one matching. ([Of course] The values of all those
should be blake2b or a MAC not plain-text.) One could say the
values are two-parted, domain name and mailbox, like that the
digest/MAC of the domain name of interest could be precalculated
and be found while parsing over the message via simple string
comparison (instead of having one precalculated for all possible
mailbox@domain to not be misunderstood).
Thank you!
--steffen
|
|Der Kragenbaer, The moon bear,
|der holt sich munter he cheerfully and one by one
|einen nach dem anderen runter wa.ks himself off
|(By Robert Gernhardt)
_______________________________________________
Ietf-dkim mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ietf-dkim
