SM wrote:
You are looking at this header as attaching a trust assertion to the message instead of a way for the MUA to receive the results from an upstream MTA that perform the tests.
This is nicely written and exactly captures the key point of distinction about this kind of authentication. It might even be worth adding this exact text to Security Considerations. d/ -- Dave Crocker Brandenburg InternetWorking bbiw.net _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html