On 3/23/23 2:52 AM, Alessandro Vesely wrote:
On Wed 22/Mar/2023 20:31:51 +0100 Michael Thomas wrote:
On 3/21/23 8:01 PM, Murray S. Kucherawy wrote:
1. What percent of incoming email to a mailbox is through
resenders and of that what percent resign?
By "resign" you mean something that has signatures from two domains,
correct? If so, how could one tell whether the originating operator
did or did not attach one or more of them?
As in a mailing list makes a breaking change but resigns it with its
own domain. The mailing could obviously sign their auth-res which if
they have a good reputation the receiver might trust as a reasonable
proxy.
That's reinventing ARC!
No, ARC is reinventing DKIM. Needlessly.
I too used to be very skeptic about ARC (mainly because of the
conjectured assumption that ARC sealers can be trusted based on an
available reputation database, which skews usability toward global
providers). I changed my mind.
As a special flavor of DKIM designed around forwarding, ARC can bring
real means to solving this problem. Indeed, signing or sealing the
messages to be forwarded can uncover the intent and the maker of the
forwarding.
I have yet to see anything that convinces me that ARC brings anything
new and useful to the table. After much hand waving when I was trying to
figure out what ARC was about, John Levine finally said that it all
boils down to reputation. Well, guess what. The same goes from DKIM for
both originators and intermediaries. There has always been the ability
to build reputation regardless of the domain doing the signing. This
re-chartering of the DKIM wg wouldn't be happening if that were not
true. There seems to be an awful lot of magical thinking going on with it.
Mike
_______________________________________________
Ietf-dkim mailing list
Ietf-dkim@ietf.org
https://www.ietf.org/mailman/listinfo/ietf-dkim
