In article
you write:
>Here's the headers they're signing: h=to:cc:from:subject:reply-to:Date
>
>The forensic data samples I have show that a number of the messages that
>fail seem to have injected different reply-to addresses, some of which
>clearly belong to mailing lists. I suspect what's
On Fri, 2018-07-20 at 16:20 -0700, Autumn Tyr-Salvia wrote:
> What I'm thinking is that the situation might improve if they can stop
> signing the reply-to: and possibly even the to: and cc: headers. Am I on
> the right track? Any other recommendations?
While minimal header signing might get