Thomas Cameron <thomas.came...@camerontech.com> writes:
Yeah, the weird thing is, when I check the forwarded email on GMail, I
see in the headers that both the original sending email server (call
it mail.somedomain.com) and the relay server (call it
mail.myassociation.org) put DKIM signatures in the message.
On 1/3/24 19:45, Greg Troxel wrote:
That's more or less broken in my opinion. I think an MTA should only
DKIM-sign messages that it is responsible for in the sense of
origination, because it is from an authenticated sender.
On 03.01.24 20:36, Thomas Cameron wrote:
Fair point. But I'm guessing that because it has two DKIM signatures,
it's not passing the DKIM check.
only one of those DKIM dignatures needs to pass, with the domain in From:
GMail doesn't flag it as "passed" for DKIM. I am looking to see if
PostSRSd has any sort configuration option to delete the DKIM of the
original sending server so that it will "pass" DKIM checks.
Not sure why pass is in quotes. But again if you don't change headers
the original signature should be valid.
Well, it's not marked as failed, and it's not marked as passed, but I
am looking at the OpenDKIM headers. It's in a weird limbo where I can
see the email got marked but GMail is not marking it either way.
can we see headers From: and Authentication-Results as they were seen on
your server?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I'm not interested in your website anymore.
If you need cookies, bake them yourself.
