On May 2, 2023, at 8:27 AM, Philip Prindeville
<philipp_s...@redfish-solutions.com> wrote:
Is there a way to add scoring that says, "If the sending domain has DKIM
records, but there's no DKIM signature on this message, then attach a
high score to it?"
We seem to attach negative scores when DKIM is present and valid, but
what about the opposite direction?
If it's absent, but it shouldn't be?
On 02.05.23 08:37, Thomas Johnson wrote:
If there’s no dkim signature, you can’t check for dkim records in dns.
The selector for a dkim signature is arbitrary - there’s no one dns lookup
you can do to see all possible dkim records for a domain.
a trick: if _domainkeys.example.com exists (returns anything but NXDOMAIN),
we may assume that at least DKIM records exist.
I just have no idea how to test this in SA (at least not within rule).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Atheism is a non-prophet organization.
