On 2025-02-03 at 19:00 -0500, Zeffie wrote: > I wanted to bring to your attention that the bash-bug mailing list > messages are being marked as spam by our spam filtering. The debug > headers indicate an "Invalid DKIM signature" which appears to be > causing the posts to be flagged.
As you have been running mail servers since the 1990s, you are surely familiar with the paragraph in the DKIM spec that says: > Survivability of signatures after transit is not guaranteed, and > signatures can fail to verify through no fault of the Signer. > Therefore, a Verifier SHOULD NOT treat a message that has one or more > bad signatures and no good signatures differently from a message with > no signature at all. https://www.rfc-editor.org/rfc/rfc6376.html#section-6.1 A spam filtering solution that flags messages as spam merely for containing an invalid DKIM signature would be blatantly against the spec, and reveal an ignorance of the working of DKIM and mail infrastructure. It is thus not surprising that it would cause false positives for such a solution. I expect you to take this issue seriously and take the needed measures to ensure their wrong ways are fixed. Regards ☺
