This still seems to happen on bugs.debian.org mails, for example I
got RUF reports like:
Authentication-Results: mail.susi-moog.de;
dkim=fail reason="signature verification failed" (1024-bit key;
unprotected) header.d=voyager.hr header.i=@voyager.hr header.b=jhX0w52b;
dkim-atps=neutral
It is really problematic, because if person reporting bug uses DKIM,
and MTA of package maintainer (or other subscribed persons) verifies
it, then the bug report might never reach the maintainer /
interested subscribers.
This is especially likely to happen if DMARC is also used with
policy different than "none".
Could some solution/workaround (like #500965 for similar problems in
lists.debian.org) be adopted?
--
Opinions above are GNU-copylefted.
