On 10/9/2024 3:47 PM, Al Iverson via mailop wrote:
I love the idea of the X tag with DKIM to set an expiration date after which the signature should no longer be considered valid.
That feature is intuitively appealing. And I don't recall there being any controversy about it when DKIM was developed.
However... how likely is it to actually be useful, for real-world application of DKIM?
Remembering that DKIM is design for transit-time use, rather than long-term message validation, DKIM validation ought to work for no more than a few -- well, ok, let's say 5 -- days. After that, validation really has moved beyond the intended scope of use.
So, within this intended model, how does an X= feature matter? It seems better-suited for a longer-term model of use.
One reason for my asking -- beyond the general one of attending to scope-creep -- is that features add complexity and complexity breeds errors.
No? d/ -- Dave Crocker Brandenburg InternetWorking bbiw.net mast:@dcrocker@mastodon.social
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
