IIRC, an SSP check is done against the "Originator Address". This is
either the rfc2822.from or rfc2822.sender.
That's not correct. It's only From.
Look, it's not acceptable for DKIM to change the semantics of From.
From can contain multiple addresses, From can contain an address other
than that of the Originator, and if a Sender field is present From has
no implied relationship with the party that originated the message.
These semantics are well-established and have been in use for around 25
years.
If you want to define a way for DKIM to say "the party who sent this
message has permission to make statements on behalf of these From
addresses" that's all well and good. What's not appropriate is to
define DKIM in such a way as to wire in an assumption that From is
always the party who originated the message.
Keith
_______________________________________________
ietf-dkim mailing list
http://dkim.org