OT: DKIM signatures on email messages from lists.gnupg.org

Alessandro Vesely vesely at tana.it
Tue Jun 13 09:49:44 CEST 2023


On Mon 12/Jun/2023 21:24:54 +0200 Konstantin Ryabitsev via Gnupg-users wrote:
> On Mon, Jun 12, 2023 at 06:45:37PM +0200, Alessandro Vesely via Gnupg-users wrote:
>>> What the list-software would need to do is to strip the original DKIM signature
>>
>> Why?  Original signatures can often be recovered.  They shouldn't be removed 
>> anyway.
>
> If list-software is doing something to make the DKIM signature no longer 
> verify, it must remove the DKIM signature or rewrite the From: header to 
> change alignment.


An invalid signature is never a reason to reject a message.  The spec states to 
treat invalid signatures as if they weren't there.  Forensic analysis and 
advanced software can use the signature even if it was invalidated.


Best
Ale
-- 












More information about the Gnupg-users mailing list