Email or username:

Password:

Forgot your password?
Top-level
Jeroen Massar

@hanno @vidister nice writeup! (and full agree on the BIMI comments ;) )

one quick Q: for "By scanning the Tranco Top 1 Million list, I collected 355,055 TXT records" how did you guess/find the selectors, unless you walked dnssec RRs or otherwise was able to dump the RRs?

2 comments
hanno

@jeroen @vidister There's a sub-page with some explanations: 16years.secvuln.info/scandkim. Essentially: I took the most common selectors that I manually collected from emails, and removed some that I considered uninteresting (e.g. gmail's, as scanning the same gmail key a few thousand times isn't interesting)

hanno

@jeroen @vidister I had this at the top of the page originally, but got feedback that I'm diving into technical details ("selector") that are uninteresting for an audience that aren't email nerds, so I moved it into its own page, it's linked in the text.

Go Up