Hi everybody.
I am currently implementing DKIM features into a mailing list software
(sympa).
depending on its config, Sympa mailing list server may change subject or
add an attachement to message body nio order to ease unsubscription. So
in those cases, Sympa alter the incoming signature.
The development version allows sympa add a signature by the list server
it self. So the subsriber will received messages that look like this :
From: some(_dot_)subscriber(_at_)subscriber(_dot_)domain
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=list_domain;
i=list-request(_at_)list_domain; .......
My question is related to the interpretation of this sentence from rfc
5617 (ADSP) section 3.2 :
o If a message has a Valid Signature other than an Author Domain
Signature, the receiver can use both the Signature and the ADSP
result in its evaluation of the message.
Does this mean that teh receiver should check the "From:" domain ADSP record
assuming the signature is valid ?
What should the receiver MTA do with such message depending if the ADSP record
for subscriber.domain is "discardable" or 'all' ?
Regards
Serge Aumont
_______________________________________________
dkim-dev mailing list
dkim-dev(_at_)mipassoc(_dot_)org
http://mipassoc.org/mailman/listinfo/dkim-dev