On Thu, 29 Apr 2010 21:12:02 +0100, SM <sm(_at_)resistor(_dot_)net> wrote:
At 11:12 29-04-10, Michael Thomas wrote:
With respect to DKIM, anybody who filters based on broken signatures
without
any (or little) other input pretty much deserves the false positive
rate they're
complaining about.
This mailing list removes the DKIM signature of the poster. ...
and that is precisely the cause of the problem. Nobody should EVER remove
a signaturre (unless it was one they wrote themselves).
The correct procedure is to add an Authentication-Results to say that the
signature was good on arrival (assuming it was).
Ideally, it should then be resigned (with the A-R included in the
signature).
Then the recipient has some evidence to assist in his evaluation. In fact,
the changes made by this list are easily reversible, if someone wants to
try to reverse them and check the original signature. But he cannot do
that with a signature that has been removed.
--
Charles H. Lindsey ---------At Home, doing my own thing------------------------
Tel: +44 161 436 6131
Web: http://www.cs.man.ac.uk/~chl
Email: chl(_at_)clerew(_dot_)man(_dot_)ac(_dot_)uk Snail: 5 Clerewood Ave, CHEADLE, SK8 3JU, U.K.
PGP: 2C15F1A9 Fingerprint: 73 6D C2 51 93 A0 01 E7 65 E8 64 7E 14 A4 AB A5
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html