Re: [Exim] Yahoo DomainKeys...

Top Page
Delete this message
Reply to this message
Author: Andre Grueneberg
Date:  
To: exim-users
Subject: Re: [Exim] Yahoo DomainKeys...
--
Matthew Byng-Maddick wrote:
> As far as I'm concerned, http://antispam.yahoo.com/domainkeys#a12 is a
> show-stopper.


AFAICS supporting 8bit-clean transmission on all transit systems is
necessary or the signing party has to convert the mail to
quoted-printables (I don't see the necessity of 8BITMIME on all
participating systems, as stated in the draft). This makes Exim unable
to be the signing party.

> The use of 384-bit keys worries me, especially following his claim about
> authentication of the domain.


I had a closer look at it this morning. I assume spammers will be able
to factorize RSA384 in less than a week. (Let's assume 1000 MIPS years
being necessary, a modern PC CPU does about 8000 MIPS, 20 PCs -- this is
today and a rather conservative calculation). This would require daily
rekeying, which is impracticle.

Andre
--
Mein ZyXEL laeuft und laeuft und laeuft ...
--
Content-Description: Digital signature

[ signature.asc of type application/pgp-signature deleted ]
--