Wei Chuang wrote in <caafswk2rsp0yrmmmpubtj+jy8ux+-l4-zcthxtvgaubvnpo...@mail.gmail.com>: |I agree that DKIM replay has been and still is very much a problem.[.] ... |[.] DKIM2 does this.
All proposals do this. |With that we can |more easily see abusive scenarios like replay where some message intended |for one recipient was sent to many others in an inauthentic way. We can |see that backscatter is part of this replay problem where some malicious |sender triggers an intentional error to generate a DSN bounce where the |payload carries spam. DSN are often DKIM signed since authentication is |effectively mandatory. The only alternative to not signing, is to drop the |DSN which is harmful in the benign case. |-Wei --steffen | |Der Kragenbaer, The moon bear, |der holt sich munter he cheerfully and one by one |einen nach dem anderen runter wa.ks himself off |(By Robert Gernhardt) _______________________________________________ Ietf-dkim mailing list -- ietf-dkim@ietf.org To unsubscribe send an email to ietf-dkim-le...@ietf.org
