On Mon 19/Aug/2024 07:18:19 +0200 Jan Dušátko wrote:
3) In case that the ARC is not signed at the beginning, the path to the first trusted hop is untrustworthy, and ARC is useless bunch of bytes.
ARC is to be added on forwarding, not at "the beginning". When the forwarder is trusted, a receiver knows whether DKIM was verified at the first hop. In that case, the forwarder can omit rewriting From:, which I wouldn't call "useless".
Best Ale -- _______________________________________________ Ietf-dkim mailing list -- [email protected] To unsubscribe send an email to [email protected]
