Except, as pointed out in the article, over time the ability to crack the underl... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

ChuckMcM on Nov 16, 2020 | parent | context | favorite | on: Ok Google: please publish your DKIM secret keys

Except, as pointed out in the article, over time the ability to crack the underlying key and thus forge such emails becomes very practical. By disavowing the keys it prevents someone from taking a cracked key, forging an email and then "discovering it" for nefarious purposes.

tzs on Nov 16, 2020 [–]

Disavowing also protects against key theft or leaks. I'd guess that theft or leaks are probably more likely than cracking, now that the major providers are using long keys.

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact