https://bz.apache.org/SpamAssassin/show_bug.cgi?id=8300
--- Comment #8 from Kent Oyer <k...@mxguardian.net> ---
This section of code seems to have a number of bugs. I am working on a rewrite
but I need help understanding the intent here. The code iterates over the ARC
headers in ascending order but quits if "$old_arc_index >
$spf_parse->{arc_index}". However, in an ascending sequence this will never be
true so it always iterates over the whole list.
Questions:
1. Do we only want to use the first ARC header?
2. Do we want to look at any Authentication-Results headers or just
ARC-Authentication-Results?
3. Instead of gathering spf & dkim results from an AAR header and then calling
$dmarc->verify, why not just gather dmarc results from an AAR header?
--
You are receiving this mail because:
You are the assignee for the bug.
