Re: Any benefit to individual keys for subdomains?

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Scott Kitterman <ietf-dkim_at_kitterman.com>
Date: Thu, 25 Apr 2013 13:15:06 -0400

On Thursday, April 25, 2013 10:13:33 AM Murray S. Kucherawy wrote:
> On Thu, 25 Apr 2013, Scott Kitterman wrote:
> > 4) If a key were ever broken/compromised it would only compromise
> > signatures on part of the mail stream, not all of it (so it would
> > mitigate the scope of the damage).
>
> True, and all of the abuse would appear in the damaged half. But that
> detail is almost certain to be lost on receivers, who will just punish the
> "d=" domain.

Right, but the question was about subdomains which, I assumed would use their
own d= domain.

Scott K
Received on Thu Apr 25 2013 - 17:15:19 PST

This archive was generated by hypermail 2.3.0 : Thu Apr 25 2013 - 17:18:02 PST