At 05:32 06-10-2008, Florian Sager wrote: >Yes, it *may* be, depending on the content of From. Anything wrong about >that?
I was only pointing out how we refer to such signatures. I won't call it wrong. The value of such signatures depend on what kind of assertion we make from them. >The i= description in the RFC was too unprecise for me but I can fill it >with the [EMAIL PROTECTED]: how can I instruct dkim-milter >to set a certain local-part in i= ? The identity in the i= tag was explicitly not defined so that signers can apply their own semantics to it. I don't think we can set the i= in dkim-filter currently. That's doable with a patch. >I thought an own header (that can be removed before signing) might be >appropriate for that. You can file a request for enhancement for the above. It would work along the same lines as _FFR_SELECTOR_HEADER. >Offtopic but DKIM-related: there is a programme fixcr for qmail that >adds CRs to emails that don't use RFC conforming LFCR at line ends. DKIM >relaxed header+body canonicalization don't meet this problem: >fixcr-rewritten mails wouldn't DKIM validate. Do you know why this was >not considered in the canonicalization algorithms? (I see no problem in >adding a preventing canon. rule in general). There is a FixCRLF setting in dkim-milter. If you are signing, that should fix such problems. The canonicalizations algorithms expect well-formed messages as that's the only way to ensure that any "fix ups" in transit won't invalidate the DKIM signature. If we DKIM sign messages "as-is" (prevent any canonicalization rule) and the message goes through sendmail, the MTA will fix any bare CRs. To avoid that, we normalize the message to prevent such transport conversions. Regards, -sm ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ dkim-milter-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dkim-milter-discuss
