Thomas Cameron <thomas.came...@camerontech.com> writes: > Yeah, the weird thing is, when I check the forwarded email on GMail, I > see in the headers that both the original sending email server (call > it mail.somedomain.com) and the relay server (call it > mail.myassociation.org) put DKIM signatures in the message.
That's more or less broken in my opinion. I think an MTA should only DKIM-sign messages that it is responsible for in the sense of origination, because it is from an authenticated sender. > GMail doesn't flag it as "passed" for DKIM. I am looking to see if > PostSRSd has any sort configuration option to delete the DKIM of the > original sending server so that it will "pass" DKIM checks. Not sure why pass is in quotes. But again if you don't change headers the original signature should be valid.
