ietf.dkim (thread)

RE: Re: Purpose and sequencefor DKIM specificationand deployment, Hallam-Baker, Phillip
- Re: Purpose and sequence for DKIM specification and deployment, Frank Ellermann
RE: Purpose and sequencefor DKIM specificationand deployment, Hallam-Baker, Phillip
- Re: Purpose and sequencefor DKIM specificationand deployment, Frank Ellermann
  - No centralized database is needed., Douglas Otis
RE: Purpose and sequencefor DKIM specificationand deployment, Hallam-Baker, Phillip
- Re: Purpose and sequencefor DKIM specificationand deployment, Michael Thomas
Revised threat model, Hallam-Baker, Phillip
- Re: Revised threat model, Arvel Hathcock
- RE: Revised threat model, Tim Moses
Revisiting the charter., Hallam-Baker, Phillip
RE: Purpose and sequencefor DKIM specification anddeployment, Hallam-Baker, Phillip
RE: Purpose and sequence forDKIM specificationand deployment, Hallam-Baker, Phillip
- RE: Purpose and sequence forDKIM specificationand deployment, william(at)elan.net
- Re: Purpose and sequencefor DKIM specification and deployment, Scott Kitterman
  - Re: Purpose and sequencefor DKIM specification and deployment, william(at)elan.net
    - Re: Purpose and sequencefor DKIM specification and deployment, Jim Fenton
RE: Purpose and sequence for DKIM specificationand deployment, Hallam-Baker, Phillip
- Re: Purpose and sequence for DKIM specificationand deployment, Douglas Otis
  - Forgery complexities, Dave Crocker
    - Re: Forgery complexities, Douglas Otis
    - Re: Re: Forgery complexities, Dave Crocker
    - Re: Re: Forgery complexities, Douglas Otis
    - Re: Re: Forgery complexities, Scott Kitterman
    - Re: Re: Forgery complexities, Douglas Otis
    - Re: Forgery complexities, Earl Hood
  - Re: Purpose and sequence for DKIM specificationand deployment, Earl Hood
    - Re: Purpose and sequence for DKIM specificationand deployment, Douglas Otis
    - Re: Purpose and sequence for DKIM specificationand deployment, Frank Ellermann
- RE: Purpose and sequence for DKIM specificationand deployment, Hallam-Baker, Phillip
  - Re: Purpose and sequence for DKIM specificationand deployment, Scott Kitterman
    - Re: Purpose and sequence for DKIM specificationand deployment, Earl Hood
    - Re: Purpose and sequence for DKIM specificationand deployment, Earl Hood
RE: Purpose and sequence for DKIM specification anddeployment, Hallam-Baker, Phillip
Purpose and sequence for DKIM specification and deployment, Dave Crocker
- Re: Purpose and sequence for DKIM specification and deployment, Frank Ellermann
- Re: Purpose and sequence for DKIM specification and deployment, Scott Kitterman
  - Re: Purpose and sequence for DKIM specification and deployment, Dave Crocker
    - Re: Purpose and sequence for DKIM specification and deployment, Scott Kitterman
- Re: Purpose and sequence for DKIM specification and deployment, Douglas Otis
  - Re: Purpose and sequence for DKIM specification and deployment, Dave Crocker
    - Re: Purpose and sequence for DKIM specification and deployment, Douglas Otis
    - Re: Purpose and sequence for DKIM specification and deployment, Dave Crocker
    - Re: Purpose and sequence for DKIM specification and deployment, Douglas Otis
- Re: Purpose and sequence for DKIM specification anddeployment, Arvel Hathcock
  - Re: Purpose and sequence for DKIM specificationanddeployment, Arvel Hathcock
Feedback in charter, Hallam-Baker, Phillip
- Re: Feedback in charter, Frank Ellermann
Thoughts on the DNS RR issue, Hallam-Baker, Phillip
- Re: Thoughts on the DNS RR issue, Frank Ellermann
Inclusion of RCPT TO in signed content, Jim Fenton
- Re: Inclusion of RCPT TO in signed content, Tony Finch
Apology, Scott Kitterman
- Re: Apology, Frank Ellermann
RE: Is accountability singular?, Hallam-Baker, Phillip
RE: Is accountability binary?, Hallam-Baker, Phillip
- RE: Is accountability singular?, domainkeys-feedbackbase02
  - Re: Is accountability singular?, Michael Thomas
  - Re: Is accountability singular?, Jim Fenton
    - Re: Is accountability singular?, domainkeys-feedbackbase02
- RE: Is accountability binary?, Hallam-Baker, Phillip
  - RE: Is accountability binary?, John R Levine
  - Re: Is accountability binary?, Tony Hansen
Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
- Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
  - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Dave Crocker
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Dave Crocker
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Arvel Hathcock
- Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
RE: DKIM vs. S/MIME and OpenPGP, Hallam-Baker, Phillip
Some real world DKIM feedback, Arvel Hathcock
BCC Recipients, Hallam-Baker, Phillip
- Re: BCC Recipients, william(at)elan.net
- Re: BCC Recipients, Michael Thomas
- RE: BCC Recipients, Hallam-Baker, Phillip
- RE: BCC Recipients, Hallam-Baker, Phillip
More of a marketting plan really, Hallam-Baker, Phillip
- Re: More of a marketting plan really, Tony Finch
proposed threat analysis outline, Tony Finch
- Re: proposed threat analysis outline, Eric Allman
- Re: proposed threat analysis outline, Jim Fenton
  - Re: proposed threat analysis outline, Tony Finch
  - Re: proposed threat analysis outline, Arvel Hathcock
what DKIM is --- a personal perspective, Eric Allman
- Re: what DKIM is --- a personal perspective, Earl Hood
Focus on: Threat Analysis and Chartering, Dave Crocker
Authentication-Results: Header, Hector Santos
- Re: Authentication-Results: Header, Earl Hood
  - Re: Authentication-Results: Header, Tony Hansen
  - Re: Authentication-Results: Header, Arvel Hathcock
linkage between "originator" and "handling agent", Dave Crocker
- Re: linkage between "originator" and "handling agent", Scott Kitterman
- Re: linkage between "originator" and "handling agent", Arvel Hathcock
  - Re: linkage between "originator" and "handling agent", william(at)elan.net
  - Re: linkage between "originator" and "handling agent", Hector Santos
    - Re: linkage between "originator" and "handling agent", Michael Thomas
    - Re: linkage between "originator" and "handling agent", Hector Santos
    - Re: linkage between "originator" and "handling agent", Earl Hood
    - Re: linkage between "originator" and "handling agent", Hector Santos
    - Re: linkage between "originator" and "handling agent", Earl Hood
    - Re: linkage between "originator" and "handling agent", Arvel Hathcock
- Re: linkage between "originator" and "handling agent", Hector Santos
  - Re: linkage between "originator" and "handling agent", Dave Crocker
    - Re: linkage between "originator" and "handling agent", Scott Kitterman
    - Re: linkage between "originator" and "handling agent", Arvel Hathcock
    - Re: linkage between "originator" and "handling agent", Hector Santos
    - Re: linkage between "originator" and "handling agent", Earl Hood
- Re: linkage between "originator" and "handling agent", Douglas Otis
  - Re: linkage between "originator" and "handling agent", Scott Kitterman
    - Re: linkage between "originator" and "handling agent", Michael Thomas
    - Re: linkage between "originator" and "handling agent", Douglas Otis
    - Re: linkage between "originator" and "handling agent", Scott Kitterman
RE: dkim implementations, Hallam-Baker, Phillip
- RE: dkim implementations, Ned Freed
Just stop complaining and produce a threat analysis. RE: on the scope and necessity of threat analysis, Hallam-Baker, Phillip
- dkim implementations, Dave Crocker
Not exactly not a threat analysis, John Levine
- Re: Not exactly not a threat analysis, Jon Callas
  - Re: Not exactly not a threat analysis, Dave Crocker
    - Re: Not exactly not a threat analysis, Douglas Otis
    - RE: Not exactly not a threat analysis, James Scott
    - RE: Not exactly not a threat analysis, Dave Crocker
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Michael Thomas
    - RE: Not exactly not a threat analysis, James Scott
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, Michael Thomas
    - semantics of message signing, Keith Moore
    - Re: semantics of message signing, Jim Fenton
    - Re: Not exactly not a threat analysis, Hector Santos
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, SM
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, SM
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, Jim Fenton
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Frank Ellermann
    - Re: Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, SM
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, John Levine
    - Re: Not exactly not a threat analysis, SM
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, George Gross
    - Re: Not exactly not a threat analysis, Tony Finch
    - rogue DNS registrars, was Re: Not exactly not a threat analysis, George Gross
    - Re: Not exactly not a threat analysis, william(at)elan.net
    - Re: Not exactly not a threat analysis, Frank Ellermann
    - Re: Not exactly not a threat analysis, Miles
    - Re: Not exactly not a threat analysis, Florian Weimer
    - Re: Not exactly not a threat analysis, Thomas Roessler
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Douglas Otis
- Re: Not exactly not a threat analysis, Eliot Lear
  - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, John Levine
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Exactly not a threat analysis, John R Levine
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Jim Fenton
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Dave Crocker
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, John Levine
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, John Levine
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Russ Housley
    - DKIM vs. S/MIME and OpenPGP, Keith Moore
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, John R Levine
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, John R Levine
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Ned Freed
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Ned Freed
    - Re: Not exactly not a threat analysis, Frank Ellermann
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, william(at)elan.net
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, John Levine
    - Re: Not exactly not a threat analysis, Ned Freed
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, Ned Freed
    - Re: Not exactly not a threat analysis, Scott Kitterman
    - Re: Not exactly not a threat analysis, Ned Freed
    - Re: Not exactly not a threat analysis, Scott Kitterman
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: SSP and DKIM, was Not exactly not a threat analysis, John Levine
    - Re: Re: SSP and DKIM, was Not exactly not a threat analysis, Arvel Hathcock
    - Re: Re: SSP and DKIM, was Not exactly not a threat analysis, John Levine
    - updated threat analysis outline, Tony Finch
    - Re: updated threat analysis outline, Douglas Otis
    - Re: updated threat analysis outline, Tony Finch
    - Re: updated threat analysis outline, Douglas Otis
    - Re: updated threat analysis outline, Tony Finch
    - Re: updated threat analysis outline, Douglas Otis
    - Re: updated threat analysis outline, Tony Finch
    - Re: updated threat analysis outline, Douglas Otis
    - Re: updated threat analysis outline, Tony Finch
    - Re: updated threat analysis outline, Douglas Otis
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, John R Levine
    - Re: Not exactly not a threat analysis, Dave Crocker
    - Re: Not exactly not a threat analysis, Scott Kitterman
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Scott Kitterman
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Dave Crocker
    - Re: Not exactly not a threat analysis, Arvel Hathcock
    - Re: Not exactly not a threat analysis, SM
    - Re: Not exactly not a threat analysis, John Levine
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, John Levine
    - Re: Not exactly not a threat analysis, Ned Freed
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, John R Levine
    - Re: Not exactly not a threat analysis, Ned Freed
    - Is accountability binary?, domainkeys-feedbackbase02
    - Re: Is accountability binary?, John Levine
    - Re: Not exactly not a threat analysis, Jim Fenton
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Jim Fenton
    - accountability, resenders, and replay, Tony Finch
    - Re: accountability, resenders, and replay, Jim Fenton
    - Re: accountability, resenders, and replay, Keith Moore
    - Re: Re: accountability, resenders, and replay, John Levine
    - Re: Re: accountability, resenders, and replay, Keith Moore
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Jim Fenton
    - Re: Not exactly not a threat analysis, Dave Crocker
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Dave Crocker
    - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, Dave Crocker
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Douglas Otis
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, domainkeys-feedbackbase02
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Dave Crocker
    - DKIM Threat Analysis & Charter, Hector Santos
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Michael Thomas
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, Tony Finch
    - Re: Not exactly not a threat analysis, Earl Hood
    - Re: Not exactly not a threat analysis, John Levine
    - [THREAT] poor deployment of secure email, Tony Finch
  - Re: Not exactly not a threat analysis, Keith Moore
    - Re: Not exactly not a threat analysis, John R Levine
- RE: Not exactly not a threat analysis, Hallam-Baker, Phillip
- Re: Not exactly not a threat analysis, Scott Kitterman
  - Re: Not exactly not a threat analysis, Arvel Hathcock
- RE: Not exactly not a threat analysis, Hallam-Baker, Phillip
on the scope and necessity of threat analysis, Keith Moore
- Re: on the scope and necessity of threat analysis, Arvel Hathcock
  - Re: on the scope and necessity of threat analysis, Keith Moore
    - Re: on the scope and necessity of threat analysis, Arvel Hathcock
  - Re: on the scope and necessity of threat analysis, Dave Crocker
    - Re: on the scope and necessity of threat analysis, Keith Moore
    - Re: on the scope and necessity of threat analysis, Earl Hood
    - Re: on the scope and necessity of threat analysis, Keith Moore
    - Re: on the scope and necessity of threat analysis, Earl Hood
    - Re: on the scope and necessity of threat analysis, Michael Thomas
    - Re: on the scope and necessity of threat analysis, Keith Moore
    - Re: on the scope and necessity of threat analysis, Michael Thomas
    - Re: on the scope and necessity of threat analysis, Keith Moore
    - Re: on the scope and necessity of threat analysis, Michael Thomas
    - Re: on the scope and necessity of threat analysis, Keith Moore
    - Re: on the scope and necessity of threat analysis, Earl Hood
    - Re: on the scope and necessity of threat analysis, Michael Thomas
    - Re: on the scope and necessity of threat analysis, Earl Hood
    - Re: on the scope and necessity of threat analysis, SM
    - on DKIM as an anti-spam measure, Keith Moore
    - Re: on DKIM as an anti-spam measure, John Levine
    - Re: on DKIM as an anti-spam measure, Keith Moore
    - Re: on DKIM as an anti-spam measure, Frank Ellermann
    - Re: on DKIM as an anti-spam measure, John R Levine
    - Re: on DKIM as an anti-spam measure, Keith Moore
    - Re: on DKIM as an anti-spam measure, Dave Crocker
    - Re: on DKIM as an anti-spam measure, Michael Thomas
    - Re: on DKIM as an anti-spam measure, Keith Moore
    - Re: on DKIM as an anti-spam measure, John R Levine
    - Re: on DKIM as an anti-spam measure, Keith Moore
    - Re: on DKIM as an anti-spam measure, Douglas Otis
    - Re: on DKIM as an anti-spam measure, Tony Finch
    - Re: on DKIM as an anti-spam measure, Keith Moore
    - Re: assertions, was on DKIM as an anti-spam measure, John Levine
    - Re: assertions, was on DKIM as an anti-spam measure, Keith Moore
    - Re: on the scope and necessity of threat analysis, Earl Hood
    - Re: on the scope and necessity of threat analysis, Arvel Hathcock
    - on the suitability of the From header field, Keith Moore
    - Re: on the suitability of the From header field, domainkeys-feedbackbase02
    - Re: on the suitability of the From header field, Keith Moore
    - Re: on the suitability of the From header field, Earl Hood
    - Re: on the suitability of the From header field, domainkeys-feedbackbase02
    - Re: on the suitability of the From header field, Earl Hood
    - Re: on the suitability of the From header field, Keith Moore
    - Re: on the suitability of the From header field, Earl Hood
    - Re: on the suitability of the From header field, SM
    - Re: on the suitability of the From header field, Keith Moore
    - Re: on the suitability of the From header field, Earl Hood
    - Re: on the suitability of the From header field, Arvel Hathcock
    - Re: on the suitability of the From header field, SM
    - Re: on the scope and necessity of threat analysis, SM
- Re: on the scope and necessity of threat analysis, Arvel Hathcock
  - Re: on the scope and necessity of threat analysis, Arvel Hathcock
  - a bit of philosophy on working group productivity and scope, Dave Crocker
    - RE: a bit of philosophy on working group productivity andscope, Scott Kitterman
    - RE: a bit of philosophy on working group productivity andscope, Dave Crocker
    - Re: a bit of philosophy on working group productivity andscope, Scott Kitterman
    - Re: a bit of philosophy on working group productivityandscope, Arvel Hathcock
    - RE: a bit of philosophy on working groupproductivityandscope, James Scott
    - Re: a bit of philosophy on working group productivityandscope, Arvel Hathcock
    - Re: a bit of philosophy on working group productivity andscope, Arvel Hathcock
    - Re: a bit of philosophy on working group productivity and scope, Keith Moore
- RE: on the scope and necessity of threat analysis, Hallam-Baker, Phillip
  - Re: on the scope and necessity of threat analysis, Keith Moore
Threat assement - alternative approach, Hallam-Baker, Phillip
Why we will never solve the problem completely, Hallam-Baker, Phillip
- RE: Why we will never solve the problem completely, John Glube
RE: replay, revocation, repudiation, was RE: [ietf-dkim] On per-user-keying, Hallam-Baker, Phillip
- Re: replay, revocation, repudiation, was RE: On per-user-keying, Earl Hood
RE: Design approach to MASS (was Re: On per-user-keying), Hallam-Baker, Phillip
- Re: Design approach to MASS (was Re: On per-user-keying), Earl Hood
- RE: Design approach to MASS (was Re: On per-user-keying), Hallam-Baker, Phillip
RE: What's a replay?, Paul Maddox
- Re: What's a replay?, Douglas Otis
- RE: What's a replay?, Paul Maddox
RE: DKIM Threat Analysis v0.06, Hallam-Baker, Phillip
Using PKIX certificates with dkim, Hallam-Baker, Phillip
- Re: Using PKIX certificates with dkim, Frank Ellermann
- RE: Re: Using PKIX certificates with dkim, Hallam-Baker, Phillip
  - Re: Re: Using PKIX certificates with dkim, Michael Thomas
Design approach to MASS (was Re: [ietf-dkim] On per-user-keying), Earl Hood
- Re: Design approach to MASS (was Re: On per-user-keying), domainkeys-feedbackbase02
  - Re: Design approach to MASS (was Re: On per-user-keying), Earl Hood
    - Re: Design approach to MASS (was Re: On per-user-keying), John Levine
    - Re: Design approach to MASS (was Re: On per-user-keying), domainkeys-feedbackbase02
    - Re: Design approach to MASS (was Re: On per-user-keying), Earl Hood
    - Re: Design approach to MASS (was Re: On per-user-keying), Dave Crocker
- Re: Design approach to MASS (was Re: On per-user-keying), Dave Crocker
  - Re: Design approach to MASS (was Re: On per-user-keying), Earl Hood
- Re: Design approach to MASS (was Re: On per-user-keying), Eric Allman
  - Re: Design approach to MASS (was Re: On per-user-keying), Earl Hood
    - Re: Design approach to MASS (was Re: On per-user-keying), John Levine
    - Re: Design approach to MASS (was Re: On per-user-keying), Earl Hood
    - Re: Design approach to MASS (was Re: On per-user-keying), Dave Crocker
    - Re: Design approach to MASS (was Re: On per-user-keying), Arvel Hathcock
    - Re: Design approach to MASS (was Re: On per-user-keying), Michael Thomas
    - Re: Design approach to MASS (was Re: On per-user-keying), Earl Hood
    - Re: Design approach to MASS (was Re: On per-user-keying), John Levine
    - Re: Design approach to MASS (was Re: On per-user-keying), Arvel Hathcock
    - Re: Design approach to MASS (was Re: On per-user-keying), Ned Freed
DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
- Re: DKIM SSP: Security vulnerability when SSP record does not exist?, John Levine
- Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Arvel Hathcock
  - Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Earl Hood
  - Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Dave Crocker
    - Re: DKIM SSP: Security vulnerability when SSP recorddoesnot exist?, Arvel Hathcock
- Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Jim Fenton
  - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Jim Fenton
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Jim Fenton
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Jim Fenton
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, SM
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, SM
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Douglas Otis
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Jim Fenton
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Jim Fenton
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Earl Hood
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, John Levine
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Dave Crocker
    - Re: DKIM SSP: Security vulnerability when SSP record does not exist?, Scott Kitterman
    - Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Arvel Hathcock
    - Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Dave Crocker
    - Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Arvel Hathcock
    - Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Tony Finch
    - Re: DKIM SSP: Security vulnerability when SSP record doesnot exist?, Arvel Hathcock
    - Re: DKIM SSP: Security vulnerability when SSP recorddoesnot exist?, Arvel Hathcock
How to solve replay with no specification changes, Hallam-Baker, Phillip
- Re: How to solve replay with no specification changes, william(at)elan.net
DKIM Threat Assessment v0.02 (very rough draft), Dave Crocker
- Re: DKIM Threat Assessment v0.02 (very rough draft), Earl Hood
  - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Dave Crocker
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - RE: DKIM Threat Assessment v0.02 (very rough draft), Scott Kitterman
    - RE: DKIM Threat Assessment v0.02 (very rough draft), Eric Allman
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Hector Santos
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Earl Hood
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Dave Crocker
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Eric Allman
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Earl Hood
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Eric Allman
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Jon Callas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Earl Hood
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), domainkeys-feedbackbase02
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Earl Hood
    - Re: DKIM Threat Assessment v0.02 (very rough draft), domainkeys-feedbackbase02
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Jim Fenton
    - Re: DKIM Threat Assessment v0.02 (very rough draft), domainkeys-feedbackbase02
    - Local-part and user-key risk, Douglas Otis
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Dave Crocker
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Arvel Hathcock
- RE: DKIM Threat Assessment v0.02 (very rough draft), Dan Wing
- DKIM Threat Analysis v0.06, Dave Crocker
  - Re: DKIM Threat Analysis v0.06, Douglas Otis
  - Re: DKIM Threat Analysis v0.06, SM
    - Re: DKIM Threat Analysis v0.06, william(at)elan.net
    - Re: DKIM Threat Analysis v0.06, Frank Ellermann
    - Re: DKIM Threat Analysis v0.06, Jon Callas
    - Re: DKIM Threat Analysis v0.06, SM
  - Re: DKIM Threat Analysis v0.06, Arvel Hathcock
    - Re: DKIM Threat Analysis v0.06, Hector Santos
    - Re: DKIM Threat Analysis v0.06, Dave Crocker
    - Re: DKIM Threat Analysis v0.06, Arvel Hathcock
    - Re: DKIM Threat Analysis v0.06, Arvel Hathcock
  - Re: DKIM Threat Analysis v0.06, Dave Crocker
    - Re: DKIM Threat Analysis v0.06, Arvel Hathcock
    - Re: DKIM Threat Analysis v0.06, Arvel Hathcock
    - Re: DKIM Threat Analysis v0.06, Scott Kitterman
    - Re: DKIM Threat Analysis v0.06, Arvel Hathcock
    - Re: DKIM Threat Analysis v0.06, Scott Kitterman
    - Re: DKIM Threat Analysis v0.06, SM
    - Re: DKIM Threat Analysis v0.06, Scott Kitterman
    - Re: DKIM Threat Analysis v0.06, Jim Fenton
- Re: DKIM Threat Assessment v0.02 (very rough draft), Andrew Newton
  - Re: DKIM Threat Assessment v0.02 (very rough draft), Ned Freed
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Andrew Newton
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Michael Thomas
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Ned Freed
  - Re: DKIM Threat Assessment v0.02 (very rough draft), Hector Santos
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Andrew Newton
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Hector Santos
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Andrew Newton
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Hector Santos
    - Re: DKIM Threat Assessment v0.02 (very rough draft), SM
    - Re: DKIM Threat Assessment v0.02 (very rough draft), Jim Fenton
RE: Replay isn't the problem, spam is the problem, Hallam-Baker, Phillip
Re: MASS/DKIM BOF Summary, Dave Crocker
- RE: MASS/DKIM BOF Summary, Hallam-Baker, Phillip
  - RE: MASS/DKIM BOF Summary, Tony Finch
Re: Replay attacks and ISP business models, Douglas Otis
- Re: Re: Replay attacks and ISP business models, John R Levine
  - Re: [ietf-dkim] Re: Replay attacks and ISP business models, Douglas Otis
    - Re: [ietf-dkim] Re: Replay attacks and ISP business models, John R Levine
    - Re: [ietf-dkim] Re: Replay attacks and ISP business models, Douglas Otis
    - Re: [ietf-dkim] Re: Replay attacks and ISP business models, Amir Herzberg
    - Re: Re: Replay attacks and ISP business models, John R Levine
    - DKIM implementations SHOULD support replay protection (was: Re: Re: Replay attacks and ISP business models, Amir Herzberg
    - Replay isn't the problem, spam is the problem, John R Levine
    - Re: Replay isn't the problem, spam is the problem, Douglas Otis
    - What's a replay?, Jon Callas
    - Re: What's a replay?, Douglas Otis
    - Re: What's a replay?, Dave Crocker
    - Re: What's a replay?, Douglas Otis
    - Re: What's a replay?, Eric Allman
    - Re: What's a replay?, Douglas Otis
    - Re: What's a replay?, Tony Finch
    - Re: What's a replay?, Eric Allman
    - Re: What's a replay?, Douglas Otis
    - Re: Replay isn't the problem, spam is the problem, Amir Herzberg
    - Re: Replay isn't the problem, spam is the problem, John R Levine
    - Re: Replay isn't the problem, spam is the problem, Amir Herzberg
    - Re: Replay isn't the problem, spam is the problem, John R Levine
    - Re: Replay isn't the problem, spam is the problem, Douglas Otis
    - Re: Replay isn't the problem, spam is the problem, Amir Herzberg
    - Re: Replay isn't the problem, spam is the problem, Douglas Otis
    - Re: Replay isn't the problem, spam is the problem, Michael Thomas
    - Re: Replay isn't the problem, spam is the problem, Hector Santos
    - Re: Replay isn't the problem, spam is the problem, Douglas Otis
    - Re: DKIM implementations SHOULD support replay protection (was: Re: Re: Replay attacks and ISP business models, Dave Crocker
    - Re: Re: Replay attacks and ISP business models, Amir Herzberg
- Re: Replay attacks and ISP business models, Douglas Otis
Re: DoS and Replay protection for message signatures, Douglas Otis
- Re: DoS and Replay protection for message signatures, Earl Hood
Re: Replay attacks, what's that?, Douglas Otis
- Re: Re: Replay attacks, what's that?, Tony Finch
  - Re: Re: Replay attacks, what's that?, Douglas Otis
On per-user-keying, Jon Callas
- RE: On per-user-keying, Hallam-Baker, Phillip
  - Re: On per-user-keying, John Levine
    - Re: On per-user-keying, Douglas Otis
  - replay, revocation, repudiation, was RE: [ietf-dkim] On per-user-keying, Tony Finch
- RE: On per-user-keying, Hallam-Baker, Phillip
Re: One space proposal, Tony Hansen
Re: ] Replay attacks and ISP business models, Douglas Otis
- re: ] Replay attacks and ISP business models, Douglas Otis