> The man pages describe On-SignatureMissing: > Selects the action to be taken when a message arrives unsigned > from a domain which advertises a "we sign everything" policy. > Possible values are the same as those for On-BadSignature. > The default is accept.
Missing signature is supposed to be indistinguishable from a signature which does not verify. Making a distinction opens up an opportunity for a malicious sender to choose the more favourable option for them, both are easy to fake. I think it is a bad idea to offer two separate settings. A less knowledgable mail administrator may be tempted to specify different settings. I suggest both settings to be merged. Mark ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ dkim-milter-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dkim-milter-discuss
