> -----Original Message----- > From: Michael Thomas [mailto:[email protected]] > Sent: Thursday, May 06, 2010 9:48 AM > To: Murray S. Kucherawy > Cc: Michael Ströder; [email protected] > Subject: Re: [ietf-dkim] Clarification needed for "Computing the > Message Hashes" > > You're computing two hashes. The first is a hash over the signed > header fields (which gets stored in the "bh="), and the second is over > the body followed by the (incomplete) DKIM-Signature header field. > > Did you write that correctly, Murray? The *body* hash gets stored into > bh. I think you mean
Sorry, yes. That was my pre-coffee answer. It's: 1) Compute the body hash. Store that in "bh=". 2) Compute a hash over all the header fields to be signed, in order, including the partial DKIM-Signature header field at the end without a trailing CRLF. 3) Encrypt that. Store that in "b=". _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
