It's that, in order to get the marking, she can't spoof a trusted person's
sender address.
DKIM makes no statement about the validity of a "sender" address.
Nor the validity of anything else other than the d= domain. So I am
having trouble figuring out how come people think we can give any advice
to MUA developers.
Regards,
John Levine, johnl(_at_)iecc(_dot_)com, Primary Perpetrator of "The Internet
for Dummies",
Please consider the environment before reading this e-mail. http://jl.ly
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html