According to Richard Clayton <[email protected]>: >-----BEGIN PGP SIGNED MESSAGE----- >Hash: SHA1 > >In message <[email protected]>, John Levine ><[email protected]> writes > >>It appears that Richard Clayton <[email protected]> said: >>>>> +------------+-------------------------------------------------+ >>>>> | ds= | Signing key identifier (domain & selector) | >>>> >>If you combine them into one field how do you tell what's the selector and >>what's >>the domain? My DKIM setup uses selectors like 670e67f41a6d.k2504 so you >>can't >>just >>pick off the label before the first dot. > >You could use a separator character which was not permitted to occur in >domain names ... I expect @ might confuse people :-) as would, from the >positioning, underline, but colon might be suitable...
Hey, how about using this separator: ; d= I think the answer to why d= and s= are different is "so you can tell what's the selector and what's the domain." RFC 6376 says that selectors are sequences of LDH strings separated by dots, i.e. hostnames. But I have seen people try to put underscores in selectors which is wrong but I would prefer not to punish them for that more than necessary. R's, John -- Regards, John Levine, [email protected], Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly _______________________________________________ Ietf-dkim mailing list -- [email protected] To unsubscribe send an email to [email protected]
