On Wed, 5 Nov 2008, Jonas Eckerman wrote: > Seeing as quite a few mailing lists alter the messages (adding footers, > tags, and sometimes even ads), stripping signatures should continue. The > alternative would be to leave the signatures even though verification is > virtually guaranteed to fail.
I disagree. The preferred solution would be to have the MLM re-sign the message on distribution. That way, when the MLM receives the message and performs DKIM verification, that verification could be recorded by the addition of an Authentication-Results: header as passing. Then the new signature added by the MLM would protect that header's content (i.e. the original "pass"), even if the MLM's modifications invalidate the author's signature. ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ dkim-milter-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dkim-milter-discuss
