On Sun, Mar 30, 2025 at 2:34 PM Murray S. Kucherawy <superuser@xxxxxxxxx> wrote:
On Fri, Mar 28, 2025 at 3:16 PM Rob Sayre <sayrer@xxxxxxxxx> wrote:On Fri, Mar 28, 2025 at 2:26 PM Dave Crocker <dhc@xxxxxxxxxxxx> wrote:First explain why there needs to be any text at all about DKIM in the SMTP spec, where SMTP has literally nothing to do with DKIM and DKIM ha literally nothing to do with SMTP.
The acronym "SMTP" appears numerous times in the DKIM RFC, and it is a normative reference.As far as I can tell, it's a normative reference because RFC 6376 imports ABNF from RFC 5321. We also said that you could reject a verification failure inline, which has SMTP implications. But that's it. If not for those, though, it probably could've/should've been informative.
Well, if you have a MUST NOT, it's normative, right? That's not about the ABNF, but about the protocol, which you refer to with "We also said...".
"In particular, cryptographic signature verification failures MUST NOT provoke 4xx SMTP replies."
thanks,
Rob
-- last-call mailing list -- last-call@xxxxxxxx To unsubscribe send an email to last-call-leave@xxxxxxxx
