In an offline conversation with Bron and Tobias, they described a likely
improvement to the header signing method described 26 March 2025. The
following is my description of that proposal. The change is that all
headers fields of a given name are signed, instead of worrying about the
DKIM1 style
Stray, Sunday night thought for the working group to consider:
DKIM does not have any actual problems. Even DKIM Replay is not a
DKIM problem.
Consider:
DKIM was designed to associate a domain name to a message, with the
intent that no message will have that association without the
On Sat, Apr 5, 2025 at 10:58 AM Alessandro Vesely wrote:
>
> IMHO, the original Bron's idea of a single DKIM2-Delta-Header: per
> signature is more practical. Otherwise, it'd be nicer to have:
>
> DKIM2-Original-From: i=3; YnJvbmdAZmFzdG1haWx0ZWFtLmNvbQo="
> From: d...@lists.ietf.org
> DKIM2-Ori
Sorry for not getting back to this sooner.
On Thu, Mar 20, 2025 at 1:58 AM Bron Gondwana wrote:
>
>
> On Wed, Mar 19, 2025, at 08:24, Wei Chuang wrote:
>
>
>
> On Tue, Mar 18, 2025 at 3:51 AM Bron Gondwana 40fastmailteam@dmarc.ietf.org> wrote:
>
>
> On Sun, Mar 16, 2025, at 22:33, Wei Chuan
