Hi Ivan, with the current implementation of dkim, no, it only compares hashs. If the hash on the headers doesn't match the hash made by the recipient server, then it fails. There is no way to know what (and where) is the difference by comparing 2 hashs, that's also the interest of a hash, it doesn't allows to reverse it, so it's safe.
2018-04-24 16:00 GMT+02:00 Ivan Kovachev via dmarc-discuss < dmarc-discuss@dmarc.org>: > Hello all, > > could someone help in troubleshooting why DKIM failed at the end recipient > due to a change in the header or body of the email? Is it possible to > figure out exactly what changed in the message that invalidated DKIM? > > For example, the reason is body hash did not verify but would I be able to > find out exactly why? > > Finally, what would be the best course of action for the sending domain if > the above cannot be avoided during transmission? > _______________________________________________ > dmarc-discuss mailing list > dmarc-discuss@dmarc.org > http://www.dmarc.org/mailman/listinfo/dmarc-discuss > > NOTE: Participating in this list means you agree to the DMARC Note Well > terms (http://www.dmarc.org/note_well.html) >
_______________________________________________ dmarc-discuss mailing list dmarc-discuss@dmarc.org http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
