Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for dkim signing
"A. Schulze" <sca@andreasschulze.de> Thu, 07 March 2024 21:05 UTC
Return-Path: <sca@andreasschulze.de>
X-Original-To: ietf-dkim@ietfa.amsl.com
Delivered-To: ietf-dkim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E7442C14F690 for <ietf-dkim@ietfa.amsl.com>; Thu, 7 Mar 2024 13:05:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.405
X-Spam-Level:
X-Spam-Status: No, score=-4.405 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=andreasschulze.de header.b="a88EVCh8"; dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=andreasschulze.de header.b="gV37FS16"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oacXWGlb2ZTq for <ietf-dkim@ietfa.amsl.com>; Thu, 7 Mar 2024 13:05:32 -0800 (PST)
Received: from mta.somaf.de (mta.somaf.de [IPv6:2001:470:77b3:103::25]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D7C9DC14F609 for <ietf-dkim@ietf.org>; Thu, 7 Mar 2024 13:05:30 -0800 (PST)
Message-ID: <f910d312-2e4f-474a-a286-748e4627885a@andreasschulze.de>
ARC-Seal: i=1; a=rsa-sha256; d=mta.somaf.de; s=arc1; t=1709845526; cv=none; b=pDMtmDolf0eI1QPgsvDniVq/jcnicmJEx8TsZ2LdDGWDIEklw2Cqe1Hk4mWrStMdrWNFVkRdO9W2dHmgECoQzIEk+6H84xv6R08SVjlG/cXr4RTQ5A6bBZFzfwhH0uCEA/w7tlQ91LPhvrLOKqw3afb2NHEEhGY0RkI6oJ1h7y3VjsKj6PJ/46QoPOVVDiAVxFJty1n2AfhLwk4Z77FWGQRQE2v5pAzNXLMKvaFFzIBv56DlF/hlg3XYEZLUnCBGYWBr2e9vJ4I2oErkttObDvHyR/38nsV8am/7tMCBZrcxAlLIk8TXvY2HTTv5hxMGlP6u9lUmNHNt6ecK2n53Hg==
ARC-Message-Signature: i=1; a=rsa-sha256; d=mta.somaf.de; s=arc1; t=1709845526; c=relaxed/relaxed; bh=ZhFRR+uRU5CbMTs0MndZKF+cntTQoqIN2MXsj7cTlaQ=; h=Message-ID:DKIM-Signature:DKIM-Signature:Date:MIME-Version: Subject:Content-Language:To:References:From:In-Reply-To: Content-Type:Content-Transfer-Encoding; b=V0tFpg4CvTdPv5/QAuYhayohMycmuQxssOI7UrnDpsBaGi9n9CqjsJuxnSXaABkYoAP08+aS0UeABeETFeW15RJsLSwYOthEqFqR//6xm7lB0gAHZK6XtBAbwEuOCpaCVMgYnswtBzsnu2BG9Ac0hOee1s1AQpwI7ugHMeMmNI587OtqGUVjlMCrYJRYYmpyqdptUtJKGWChoczh1RqAA2IJP2bZPNbl4988MTqunsAtjv0/AtftsLdLy9Fy55Cv+U9VYdSzG3Enh2iEaNRPPWAsmIuhzBXLIfCLizc7kaOuUDgPfkK6rRguuUUMgN1P5g3OoTTX9BT+tCRqPP/knw==
ARC-Authentication-Results: i=1; mta.somaf.de
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=andreasschulze.de; s=20231120-16A668B5; t=1709845526; x=1714845526; bh=ZhFRR+uRU5CbMTs0MndZKF+cntTQoqIN2MXsj7cTlaQ=; h=Message-ID:Date:MIME-Version:Subject:To:References:From: In-Reply-To:Content-Type:Content-Transfer-Encoding:autocrypt:cc: content-transfer-encoding:content-type:date:from:in-reply-to: message-id:mime-version:openpgp:references:subject:to; b=a88EVCh8cHZgHxzkhB6gEDA0ZN4BDUaZEeTsXFLo0MwXirHeenuKyDLt574pgfkaq EEI/ZibMy+vnU4FK5kTX/pBfPuAz01DCQ66qbtJ/xbn8X8+wQ7qPEBkp3/gIM/e7NU ocYpG/9aX38Re94wLCSiEo/nhmUNoTIJmayNxgwS0ksmizBAyV7E358Q2myZjF7h2P s/439BXKXll1KELsJEllsG7b75MBrFvcORAnqKwgviwHN0HcSBuayp7weeucoF4SPb 2VRntwfXuk0uWiX7TEVAQEjWH8gNORnrOo7ftHLR6KgcevMuT6yMVmJiRYTLrijOXR J0DnMj/mqVvxQ==
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=andreasschulze.de; s=20231121-B172B10B; t=1709845526; x=1714845526; bh=ZhFRR+uRU5CbMTs0MndZKF+cntTQoqIN2MXsj7cTlaQ=; h=Message-ID:Date:MIME-Version:Subject:To:References:From: In-Reply-To:Content-Type:Content-Transfer-Encoding:autocrypt:cc: content-transfer-encoding:content-type:date:from:in-reply-to: message-id:mime-version:openpgp:references:subject:to; b=gV37FS16jAsVUcncXcL0E116774UPI0k6UJbbMYq9I+yqHWeOd8O9B8WnmdOrwjrB QlMI9PP1oRF4TTSA0lRAA==
Date: Thu, 07 Mar 2024 22:05:26 +0100
MIME-Version: 1.0
Content-Language: en-US
To: ietf-dkim@ietf.org
References: <20240306215650.uXHHYo2j@steffen%sdaoden.eu> <C9EF0654-C410-46DC-B9A7-716E3ECA0B4E@kitterman.com> <20240306224151.r4D7UEwr@steffen%sdaoden.eu> <b100604b-c117-4234-a6c9-c85ec63fb715@wizmail.org> <20240306233024.6eygSGQS@steffen%sdaoden.eu>
From: "A. Schulze" <sca@andreasschulze.de>
In-Reply-To: <20240306233024.6eygSGQS@steffen%sdaoden.eu>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-dkim/U-JRZiHkaV-PvlIkfncSdaiJRmg>
Subject: Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for dkim signing
X-BeenThere: ietf-dkim@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DKIM List <ietf-dkim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-dkim/>
List-Post: <mailto:ietf-dkim@ietf.org>
List-Help: <mailto:ietf-dkim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Mar 2024 21:05:37 -0000
Am 07.03.24 um 00:30 schrieb Steffen Nurpmeso: > Interesting; i see selectors [er]202001. > Does this mean you do use Ed25519 and RSA since over four years in > regular email? It *brakes things*!? Hi, I enabled double signing years ago on my personal domain and last year at an medium scale ESP. So far, we didn't noticed negative effects. Intentionally I removed SPF on my personal domain last year, also without any delivery issues. I also validate both signatures if present but didn't any statistics. One interesting point is the signature order. Without specific reasons I sign rsa first, then ed25519. This message is the first, I send with the opposite order: ed25519 first, then rsa. Let's see, what will happen... My naive assumption: order don't matter. Andreas
- [Ietf-dkim] Fwd: Re: [..] Recommendation for dkim… Steffen Nurpmeso
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Scott Kitterman
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Steffen Nurpmeso
- [Ietf-dkim] Fwd: Re: [..] Recommendation for dkim… Steffen Nurpmeso
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Steffen Nurpmeso
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Scott Kitterman
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Steffen Nurpmeso
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Steffen Nurpmeso
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Steffen Nurpmeso
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Jeremy Harris
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Scott Kitterman
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Jeremy Harris
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … John Levine
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … A. Schulze
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Steffen Nurpmeso
- Re: [Ietf-dkim] Fwd: Re: [..] Recommendation for … Murray S. Kucherawy