[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: nowsp considered harmful
- To: Nathaniel Borenstein <nsb@xxxxxxxxxxxxx>
- Subject: Re: nowsp considered harmful
- From: Jim Fenton <fenton@xxxxxxxxx>
- Date: Fri, 22 Jul 2005 16:37:32 -0700
- Cc: ietf-mailsig@xxxxxxx
- Iim-sig: v:"1.1"; h:"imail.cisco.com"; d:"cisco.com"; z:"home"; m:"krs"; t:"1122075338.950453"; x:"432200"; a:"rsa-sha1"; b:"nofws:555"; e:"Iw=="; n:"sQYarK2E51MdcTiUqeif3F7cWdxIfoCiXhdfb9vD5ee/j0jXL15gbFxF2p" "XIweAblu0N6XAgK7k+wrbr7bQDJaCDqOmzqpRUBjIRQAXQ7NzadpmR3pUL6wxaRUtW+c43sl9jC" "50Qg1sXHpPjt8Y+Y16ioyQAQAdSunM4YhevURc="; s:"i/5UGHf6A2BO8geZe0YdSij27iTmlZfTG18i3ZDf3ntVWCQg187zlJxEski79jdvMaDZE6dL" "1hbLRZKVgm0Ww4/AeLgWOUCBYGAnq/69toWx/UfAaEQhVdmVyT0dEB5YyJ2/p4aypcrfIpG1eg4" "dHbM09dB88AbV4T4E9s8ELjs="; c:"Date: Fri, 22 Jul 2005 16:37:32 -0700"; c:"From: Jim Fenton <fenton@cisco.com>"; c:"Subject: Re: nowsp considered harmful"
- Iim-verify: s:"y"; v:"y"; r:"60"; h:"imail.cisco.com"; c:"message from imail.cisco.com verified; "
- In-reply-to: <>
- List-archive: <http://www.imc.org/ietf-mailsig/mail-archive/>
- List-id: <ietf-mailsig.imc.org>
- List-unsubscribe: <mailto:ietf-mailsig-request@imc.org?body=unsubscribe>
- References: <> <>
- Sender: owner-ietf-mailsig@xxxxxxxxxxxx
- User-agent: Mozilla Thunderbird 1.0 (Windows/20041206)
Nathaniel Borenstein wrote:
A side note: I absolutely can't bring myself to care if DKIM is
vulnerable to "vandalism" in the form of corrupting sabotage of real
messages, because there's no money in it for the vandal. Nearly every
protocol on the Internet is subject to horrific vandalism in the form
of DOS attacks. Why worry more about it here? -- Nathaniel
I have been in somewhat the same camp, but I think the argument here is
that it's much easier to judge whether a given canonicalization or
feature permits a semantic change in the message contents than it is to
judge what can be exploited to make money for vandals. It's a higher
but better defined bar.
-Jim