It appears that Jan Dušátko <[email protected]> said: >Based on my experience, I trying to enforce signing at the least those >attributes. Mostly attachments are not signet, which allow attacker to >manipulate with it.
I don't think I have ever seen a message with a DKIM signature and an unsigned attachment. Do you have some examples? I understand how one could do it, but in my experience it never happens. R's, John _______________________________________________ Ietf-dkim mailing list -- [email protected] To unsubscribe send an email to [email protected]
