IETF Logo Mail Archive

[ietf-dkim] ADSP Informative Note on parent domain signing (resent)

Doug Otis <doug.mtview@gmail.com> Tue, 07 April 2009 16:13 UTC

Return-Path: <ietf-dkim-bounces@mipassoc.org>
X-Original-To: ietfarch-ietf-dkim-archive@core3.amsl.com
Delivered-To: ietfarch-ietf-dkim-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 32FC23A6877 for <ietfarch-ietf-dkim-archive@core3.amsl.com>; Tue, 7 Apr 2009 09:13:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9C7VG3t5wvfy for <ietfarch-ietf-dkim-archive@core3.amsl.com>; Tue, 7 Apr 2009 09:13:51 -0700 (PDT)
Received: from sbh17.songbird.com (mail.mipassoc.org [IPv6:2001:470:1:76:0:ffff:4834:7146]) by core3.amsl.com (Postfix) with ESMTP id CB7893A6E0B for <ietf-dkim-archive@ietf.org>; Tue, 7 Apr 2009 09:11:50 -0700 (PDT)
Received: from sbh17.songbird.com (sbh17.songbird.com [127.0.0.1]) by sbh17.songbird.com (8.13.8/8.13.8) with ESMTP id n37GBEfD007049; Tue, 7 Apr 2009 09:11:20 -0700
DKIM-Signature: v=1; a=rsa-sha1; c=simple/simple; d=mipassoc.org; s=k00001; t=1239120680; bh=7PE1FmEGkjLs4eZOz8ZUH0Vhh00=; h=Message-Id:From:To: Mime-Version:Date:References:Cc:Subject:List-Id:List-Unsubscribe: List-Archive:List-Post:List-Help:List-Subscribe:Content-Type: Content-Transfer-Encoding:Sender; b=o12Urqddwm3Y058664SGEHtGDHg624 BmRQScU3IQWN916gfJ7T8bnV/cd5vvYDojcW58IqUsLCCQd8isywwONQani/yzKhrBC mM4oaW+zNx5HV3457/SUit4A+s52J7pl0cg8r0H8GaNCsSh7Pxq2zP90fVaCmBe6+nt /zVVA4E=
Received: from rv-out-0506.google.com (rv-out-0506.google.com [209.85.198.232]) by sbh17.songbird.com (8.13.8/8.13.8) with ESMTP id n37GB7PP007043 for <ietf-dkim@mipassoc.org>; Tue, 7 Apr 2009 09:11:12 -0700
Authentication-Results: sbh17.songbird.com; dkim=pass (1024-bit key) header.i=@gmail.com
Received: by rv-out-0506.google.com with SMTP id l9so2768120rvb.51 for <ietf-dkim@mipassoc.org>; Tue, 07 Apr 2009 09:11:04 -0700 (PDT)
Received: by 10.114.125.15 with SMTP id x15mr135192wac.217.1239120664332; Tue, 07 Apr 2009 09:11:04 -0700 (PDT)
Received: from SJC-Office-NAT-219.mail-abuse.org (SJC-Office-NAT-219.mail-abuse.org [168.61.10.219]) by mx.google.com with ESMTPS id m17sm7019422waf.31.2009.04.07.09.11.03 (version=TLSv1/SSLv3 cipher=RC4-MD5); Tue, 07 Apr 2009 09:11:03 -0700 (PDT)
Message-Id: <3AB5C418-0A43-43A3-8BF8-8B4256CF559E@gmail.com>
From: Doug Otis <doug.mtview@gmail.com>
To: Jim Fenton <fenton@cisco.com>
Mime-Version: 1.0 (Apple Message framework v930.3)
Date: Tue, 07 Apr 2009 09:10:59 -0700
References: <CFEE7C04-B549-4137-851D-F5C210E422CB@mail-abuse.org>
X-Mailer: Apple Mail (2.930.3)
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.0 (sbh17.songbird.com [127.0.0.1]); Tue, 07 Apr 2009 09:11:20 -0700 (PDT)
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.0 (sbh17.songbird.com [72.52.113.70]); Tue, 07 Apr 2009 09:11:13 -0700 (PDT)
Cc: IETF DKIM WG <ietf-dkim@mipassoc.org>
Subject: [ietf-dkim] ADSP Informative Note on parent domain signing (resent)
X-BeenThere: ietf-dkim@mipassoc.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF DKIM Discussion List <ietf-dkim.mipassoc.org>
List-Unsubscribe: <http://mipassoc.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@mipassoc.org?subject=unsubscribe>
List-Archive: <http://mipassoc.org/pipermail/ietf-dkim>
List-Post: <mailto:ietf-dkim@mipassoc.org>
List-Help: <mailto:ietf-dkim-request@mipassoc.org?subject=help>
List-Subscribe: <http://mipassoc.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@mipassoc.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ietf-dkim-bounces@mipassoc.org
Errors-To: ietf-dkim-bounces@mipassoc.org

On Apr 6, 2009, at 4:36 PM, Jim Fenton wrote:

> There remains some disagreement on whether the "informative note"  
> contained in the last paragraph of the text I proposed on March 27  
> should appear in the ADSP draft.  The note said:
>
>> Informative Note:  ADSP is incompatible with DKIM signing by parent  
>> domains described in section 3.8 of [RFC4871] in which a signer  
>> uses "i=" to assert that a parent domain is signing for a subdomain.
>
> This would replace the Note in draft-ietf-dkim-ssp-09, section 2.7.

### This note is not correct.  The incompatibility is not dependent  
upon the i= value, which might be omitted.

Informative Note:  ADSP is incompatible with DKIM signing by parent  
domains described in section 3.8 of [RFC4871] when a parent domain  
signs for a sub-domain within an email-address.  ADSP requires the  
 From email-address domain (Author Domain) and the signing domain  
(SDID) to be the same.

-Doug

_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

v2.23.0 | Report a Bug | By Email