On Thu, 27 Jan 2005, David Woodhouse wrote:
On Wed, 2005-01-26 at 19:02 -0500, Stuart D. Gathman wrote:
Finally, when a domain keys client rejects a message because the
signature doesn't match - it should send a DSN.
No it shouldn't. It should reject the message; that's it. Since it
doesn't ever _accept_ the message, it's not responsible for sending a
DSN.
You are correct. My bad. I *did* say MTA. However, I was actually
thinking of MUAs checking 2822 headers. But in that case checking
SPF is more problematic - so I was confused.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.