Alessandro Vesely wrote in <[email protected]>: |On Mon 19/Aug/2024 07:18:19 +0200 Jan Dušátko wrote: |> 3) In case that the ARC is not signed at the beginning, the path \ |> to the first |> trusted hop is untrustworthy, and ARC is useless bunch of bytes. | |ARC is to be added on forwarding, not at "the beginning". When the \ |forwarder |is trusted, a receiver knows whether DKIM was verified at the first \ |hop. In |that case, the forwarder can omit rewriting From:, which I wouldn't \ |call "useless".
That only if the entire infrastructure uses and trusts this protocol. The DKIM signature is broken. --steffen | |Der Kragenbaer, The moon bear, |der holt sich munter he cheerfully and one by one |einen nach dem anderen runter wa.ks himself off |(By Robert Gernhardt) _______________________________________________ Ietf-dkim mailing list -- [email protected] To unsubscribe send an email to [email protected]
