On Thu, 28 Oct 2004, David Woodhouse wrote:
On Thu, 2004-10-28 at 12:18 -0400, John Dennis wrote:
Just a note of caution on that assumption, Mailman offers a fair amount
of flexibility on "content filtering", plain text to HTML conversion,
mime encapsulation, attachment stripping, etc.
True. I was at one point pondering if we should sign each MIME part
separately, so that it would survive attachment-stripping,
alternative-stripping, etc.
I did that as an option in MTA Signatures. In addition to main signature
(for entire email message) each MIME part's hash is also added as signed
attribute. The idea is to do add separate MIME part signatures only at the
MSA (or first MTA) but not any subsequent MTAs to reduce extra processing.
I suspect that the number of messages which would be lost by this
particular problem is _far_ fewer than the number which would be lost if
we don't handle the normal addition of a few lines of text though.
I'm not subscribed to any mail list myself where this would have been usefull
and to check it I had to similate it myself after initial mimedefang
processing. I've suspicion that checking separate mime parts may be
usefull in very very few cases - but maybe I'm just on the wrong list
and I also don't have experience with all those wieird gateway devices
that some email may endup coming through.
--
William Leibzon
Elan Networks
william(_at_)elan(_dot_)net