Re: Limiting the number of domains/signatures verifications
Hi SM,
thank you for your answers.
On Tue 09/Oct/2012 15:25:06 +0200 SM wrote:
> At 00:50 09-10-2012, Alessandro Vesely wrote:
>
>> One question is: Does it make sense, in your opinion, to reject
>> outright the messages that have more than, say, 100 signatures?
>
> I don't have a plausible reason for using more than 100 DKIM
> signatures in production. I'd say that you shouldn't encounter even
> half that number.
I take that as a yes :-)
>> Is it harsh to just consider the topmost, say, four signatures of
>> each signer?
>
> It depends on your usage of DKIM. Four is on the low side even though
> it covers the general cases.
Hm... yes, I'm dubious too. I think I'll only do that for unknown
domains, and only as long as signatures are still too many.
Received on Tue Oct 09 2012 - 16:54:08 PST
This archive was generated by hypermail 2.3.0
: Mon Oct 29 2012 - 23:33:36 PST