On 16.08.21 17:21, Ken N wrote:
I was reading this blog posting:
https://www.alexblackie.com/articles/email-authenticity-dkim-spf-dmarc/
But I am confused that, what content should DKIM signature for?
any content you don't want to be nodified
The message body or headers? what headers should be signed?
body and headers that should not be modified (some are modified in transfer,
don't sign those)
It's a bit tricky with mailing lists. Some add signature to body, that
should be handled by the mailing lists.
From/To/Cc/Subject/Date/Message-Id should be safe.
Sender is unsafe with mailing lists.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The only substitute for good manners is fast reflexes.
