At 16:40 26-05-2007, Douglas Otis wrote:
Mitigation might need to be better defined:
A) the SMTP RCPT TO is within the signed portion of the message,
B) or when a _confirmed_ SMTP client is within the DKIM domain.
Both A and B would affect DKIM verification if the message goes
through a mailing list or a forwarder.
DKIM operates entirely on the content of the message (RFC 4686
Section 1.1). Your requirement goes against that. Maybe you could
use "revocation identifiers" as described in the Chosen Message
Replay scenario.
Regards,
-sm
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html