On Wed 11/May/2016 17:29:18 +0200 Kurt Andersen (b) wrote: > On Wed, May 11, 2016 at 7:00 AM, Murray S. Kucherawy wrote: >> On Wed, May 11, 2016 at 4:55 AM, Alessandro Vesely wrote:
[... assume ARC-Seal: i=0 still verifies ...] >>> ARC-0 is substantially equivalent to a weak signature. The ARC-Seal >>> field proves that the originator was involved. ARC-Message-Signature >>> is expected to be broken by forwarders. ARC-Authentication-Results may >>> contain just an auth stanza, with a possibly redacted authenticated >>> identity. >> >> Doesn't the i=1 ARC set also prove the originator was involved? No, it doesn't. > Yes, AS[1] testifies to the Authenticated-Results of receiving the message > from the originator. That only proves the first receiver was involved. A final receiver may trust its results or not. Ale _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc