" If it has a valid first party signature, it passes. If it doesn't, it doesn't." If the value of the valid signature states that 3rd party signers are not admissible it does impugn the validated first party signature. So should the first party remove 3rd party signatures? Or should the text read
>> "! All mail from the entity is signed; Third-Party >> signatures SHOULD NOT be accepted in lieu of an entity signature Bill Oxley Messaging Engineer Cox Communications, Inc. Alpharetta GA 404-847-6397 [EMAIL PROTECTED] -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Michael Thomas Sent: Friday, January 27, 2006 10:52 AM To: Hector Santos Cc: ietf-dkim@mipassoc.org Subject: Re: [ietf-dkim] Attempted summary, SSP again Hector Santos wrote: > ----- Original Message ----- > From: "Michael Thomas" <[EMAIL PROTECTED]> > >>>For the EXCLUSIVE policy? Following SSP, it would be a >>>REJECT because the policy says no 3PS should exist. >> >>That's not what it says. It says: >> >> "! All mail from the entity is signed; Third-Party >> signatures SHOULD NOT be accepted" >> >>In the context, it means that it requires a first party signature. >>It should probably be more explicit on this point. > > > In the context of the Levine's question, > > Levine: > "if a message has both a signature from the From: domain > and one from someone else, does that pass? Why or why not?" > > Following your SSP draft description as posted above, this would be an > unaccepted condition. > > What is the difference? The second clause is only trying to make explicit that a third party signatures is not an acceptible substitute for a first party signature from that domain. Which it isn't. You're making a leap that it should also cast a shadow on the first party signature. The text definitely does not say that, and it was not the intent since we were purposefully dancing around the multiple signature question. If it has a valid first party signature, it passes. If it doesn't, it doesn't. Mike _______________________________________________ ietf-dkim mailing list http://dkim.org _______________________________________________ ietf-dkim mailing list http://dkim.org
