IETF Logo Mail Archive

Re: [ietf-822] A permission to re-sign header

"Murray S. Kucherawy" <superuser@gmail.com> Fri, 18 April 2014 15:23 UTC

Return-Path: <superuser@gmail.com>
X-Original-To: ietf-822@ietfa.amsl.com
Delivered-To: ietf-822@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 15A771A0256 for <ietf-822@ietfa.amsl.com>; Fri, 18 Apr 2014 08:23:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.999
X-Spam-Level:
X-Spam-Status: No, score=-0.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FREEMAIL_REPLY=1, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O3i5g9S1pn_K for <ietf-822@ietfa.amsl.com>; Fri, 18 Apr 2014 08:23:38 -0700 (PDT)
Received: from mail-wg0-x22a.google.com (mail-wg0-x22a.google.com [IPv6:2a00:1450:400c:c00::22a]) by ietfa.amsl.com (Postfix) with ESMTP id 6BB771A01AF for <ietf-822@ietf.org>; Fri, 18 Apr 2014 08:23:34 -0700 (PDT)
Received: by mail-wg0-f42.google.com with SMTP id y10so604514wgg.1 for <ietf-822@ietf.org>; Fri, 18 Apr 2014 08:23:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=grcJ6XBotVw5Rcx18Z6wwylD7PJ/CJmb3puT5y2d7NU=; b=fiYap67aZHnUomhqvx9Sl+k6Eh61YfOC7Mp2CnIccL4GULTb7u3uT0rlH1hSmCKFcG BMo/03Kw55ZtQql1jsgulLZSMSWTFKZkHUuCiWpcdHNjbhPF6bsUkDrd1y3Z+9nTpybY qzUujCJ4R8ZWuX331wYiHzXFu2xXFRL5aNa32w8spiRP6s/dDPValUGzUnrRk6INSWKH csK9YfMetSDpYodBm/9p0YDjLlN3plCJbxncdvZY+phnpsJjlCrq3MfhjSmhVJnZV6nC PjjeAWIy8i3vW6zYMstvmAwMhG2vR1ZJdGZZbtpOsGTLUJS9fjg2TGiWUiOwZJ2svqYP 1CZA==
MIME-Version: 1.0
X-Received: by 10.194.188.68 with SMTP id fy4mr16765010wjc.30.1397834610082; Fri, 18 Apr 2014 08:23:30 -0700 (PDT)
Received: by 10.180.211.40 with HTTP; Fri, 18 Apr 2014 08:23:29 -0700 (PDT)
In-Reply-To: <20140418021925.2979.qmail@joyce.lan>
References: <20140418021925.2979.qmail@joyce.lan>
Date: Fri, 18 Apr 2014 08:23:29 -0700
Message-ID: <CAL0qLwbhw6uG=JenLLjJbDGr63NjpJ-s70z9FuwzO_LGzOM7SA@mail.gmail.com>
From: "Murray S. Kucherawy" <superuser@gmail.com>
To: John Levine <johnl@taugh.com>
Content-Type: multipart/alternative; boundary="047d7bb03f9a63881704f752bb52"
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf-822/jA09oyquyNC18_Emw2Cv-V5zw_o
Cc: ietf-822@ietf.org
Subject: Re: [ietf-822] A permission to re-sign header
X-BeenThere: ietf-822@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion of issues related to Internet Message Format \[RFC 822, RFC 2822, RFC 5322\]" <ietf-822.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-822/>
List-Post: <mailto:ietf-822@ietf.org>
List-Help: <mailto:ietf-822-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-822>, <mailto:ietf-822-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Apr 2014 15:23:39 -0000

On Thu, Apr 17, 2014 at 7:19 PM, John Levine <johnl@taugh.com> wrote:

> Since I am lazy, I will reuse DKIM key records and invent a new
> May-Resign header something like this:
>
> May-Resign: f=marissam@yahoo.com; r=ietf.org; s=foo; a=rsa-sha256; \
>    t=1397786669; b=hashhashhash
>
> This is a permission to re-sign for a message From:
> marissam@yahoo.com, to be re-signed by a mailing list at ietf.org. The
> s= and a= and t= are the same as DKIM, the b= is a signature of a hash
> of the M-R header, similar to the b= signature in a DKIM-Signature.
> [...]
>

Could the same thing be accomplished by a slight adjustment to VBR,
allowing a zone to vouch for another with the specific meaning that this
means X is authorized to generate mail for Y as long as X signs it?

-MSK

v2.23.0 | Report a Bug | By Email