Yes, we intend to drop Content-Length.
Elizabeth Zwicky
From: Scott Kitterman via dmarc-discuss <[email protected]>
To: dmarc-discuss <[email protected]>
Sent: Monday, October 6, 2014 11:01 AM
Subject: [dmarc-discuss] Yahoo! DKIM Signing Practices Produce Fragile
Signatures
With obvious implications for DMARC failures. See the postfix-users thread
that starts here:
http://archives.neohapsis.com/archives/postfix/2014-10/0138.html
It would be helpful if Yahoo! were to dial this back a bit and stick with the
recommended fields to sign (i.e. drop Received and Content-Length). Signing
those fields inevitably makes the signatures more fragile.
Scott K
_______________________________________________
dmarc-discuss mailing list
[email protected]
http://www.dmarc.org/mailman/listinfo/dmarc-discuss
NOTE: Participating in this list means you agree to the DMARC Note Well terms
(http://www.dmarc.org/note_well.html)
_______________________________________________
dmarc-discuss mailing list
[email protected]
http://www.dmarc.org/mailman/listinfo/dmarc-discuss
NOTE: Participating in this list means you agree to the DMARC Note Well terms
(http://www.dmarc.org/note_well.html)
