https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6155
--- Comment #84 from Mark Martinec <[email protected]> 2009-10-08 06:50:37 PDT --- > These are all legitimate looking paypal mail delivered to a Yahoo account from > mid-2008 through recently. Thanks Warren for your out-of-band mail. Apart from some general comments from my previous posting, there is a real problem regarding your method of fetching mail for a Yahoo account. You are using the FetchYahoo to download these messages from the Yahoo webmail interface. The FetchYahoo has to jump hoops to be able to retrieve a message as close to its original form as possible, but there are some real obstacles there. Glancing at its source code, it has to pull attachments separately and splice them back together into a message, necessarily reinventing the MIME boundaries. This is enough to render DomainKeys and DKIM signatures invalid. Apart from this, it also converts QP and base64 encoded messages into UTF-8 binary, which again is a sufficient reason for signature breakage. Moreover, it has to repair some damage to header field folding and empty lines, which are broken either due to bugs in Yahoo HTML rendering (indicated by comments in the FetchYahoo code), or details are simply lost because of a conversion to HTML and back to mail. This method of fetching mail is bound to cause trouble. It may quite easily cause some other low-level SpamAssassin rules to misfire or to fail triggering, not just the signature verification failures. -- Configure bugmail: https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.
