Re: Limiting the number of domains/signatures verifications

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Alessandro Vesely <vesely_at_tana.it>
Date: Tue, 09 Oct 2012 18:53:59 +0200

Hi SM,
thank you for your answers.

On Tue 09/Oct/2012 15:25:06 +0200 SM wrote:
> At 00:50 09-10-2012, Alessandro Vesely wrote:
>
>> One question is: Does it make sense, in your opinion, to reject
>> outright the messages that have more than, say, 100 signatures?
>
> I don't have a plausible reason for using more than 100 DKIM
> signatures in production. I'd say that you shouldn't encounter even
> half that number.

I take that as a yes :-)

>> Is it harsh to just consider the topmost, say, four signatures of
>> each signer?
>
> It depends on your usage of DKIM. Four is on the low side even though
> it covers the general cases.

Hm... yes, I'm dubious too. I think I'll only do that for unknown
domains, and only as long as signatures are still too many.
Received on Tue Oct 09 2012 - 16:54:08 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:33:36 PST