On Sun 10/Aug/2025 19:50:02 +0200 John Levine wrote:
We sort of tried to make DKIM per-user with the i= tag but we realized that doesn't work because there's no way to tie the non-domain part of the i= value to a key in the DNS.
How about s=johnl; d=taugh.com, just like the email address? Key rotation would be difficult, but that's how it is with PGP keys too...
DKIM overcame strong resistance to using personal keys by introducing domain-level keys. Strong resistance remained.
Best Ale -- _______________________________________________ Ietf-dkim mailing list -- [email protected] To unsubscribe send an email to [email protected]
