On Wed, 25 Mar 2009 11:28:52 -0000, Hector Santos
<hsantos(_at_)santronics(_dot_)com>
wrote:
- eBay and PayPal: signs non-existent Resent-From, preventing resending
Another case of BLIND signing! Read the freaking specs!!
Not necessarily. Signing a non-existent header is a valid way of
preventing it being added subsequently, and maybe that is what you want
(e.g. in this case if the mail is "for original recipient's eyes only").
Not that Ebay and Paypal were necessarily trying to do that, although they
are the sort of organisations that just might want to do it in specific
situations.
--
Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131
Web: http://www.cs.man.ac.uk/~chl
Email: chl(_at_)clerew(_dot_)man(_dot_)ac(_dot_)uk Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9 Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html