Wietse:
Unfortunately, this does not solve the problem. The 8bit-MIME to
7bit conversion as required(*) in RFC 1652 replaces the entire
message body, and therefore it invalidates DKIM signatures even
when the Content-Transfer-Encoding header is not signed.
Just like other MTAs that implement 8bit-MIME according to the rules,
the Postfix SMTP client has an option to ignore the rules and send
8bit-MIME anyway.
(*) Either convert the body, or return the message as undeliverable.
Florian Sager:
Well, I thought the canonicalization would reduce the encoding problems
but I didn't check this.
I expect if a redesign of DKIM would take place an improved
canonicalization method could solve this problem?
DKIM does NOT replace the message body. It either signs messages,
or it verifies DKIM signatures and if successful reports whose
signature it found. The latter however remains a point of some
controversy, so don't take my word for it.
Wietse
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html