On Sat, 1 Oct 2005, [EMAIL PROTECTED] stated:
> Which begs the question I don't remember anybody asking: "What the
> <censored> is "DomainKeys" and why should it experience a special
> exception to sane ordering if header information with time of
> application ordered message tags?
It's a scheme whereby the headers get cryptographically signed, as a
body, with a key derived from a DNS lookup; another anti-forgery
scheme, like SPF, only hopefully more forwarding-friendly.
The idea is that relays sign the headers from a given Received: line on
down, thus validating the path a mail has taken without breaking the
ability for further relays to add Received lines. So adding things
above Received lines is safe: adding them below invalidates the DK
signature.
(Yes, I think it looks ugly, too.)
--
`Next: FEMA neglects to take into account the possibility of
fire in Old Balsawood Town (currently in its fifth year of drought
and home of the General Grant Home for Compulsive Arsonists).'
--- James Nicoll
