It appears that Slavko via Exim-users <[email protected]> said: >_DKIM_SIGN_HEADERS= > From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version: > Content-Type:Content-Transfer-Encoding:Content-ID:Content-Description: > In-Reply-To:References: > > =Resent-Date:=Resent-From:=Resent-Sender:=Resent-To:=Resent-Cc:=Resent-Message-ID: > > =List-Id:=List-Help:=List-Unsubscribe:=List-Subscribe:=List-Post:=List-Owner:=List-Archive
That looks reasonable. >_DKIM_OVERSIGN_HEADERS= > +From:+Sender:+Reply-To:+Subject:+Date:+Message-ID:+To:+Cc:+MIME-Version: > +Content-Type:+Content-Transfer-Encoding:+Content-ID:+Content-Description: > +In-Reply-To:+References: > > =Resent-Date:=Resent-From:=Resent-Sender:=Resent-To:=Resent-Cc:=Resent-Message-ID: > > =List-Id:=List-Help:=List-Unsubscribe:=List-Subscribe:=List-Post:=List-Owner:=List-Archive This is a theological topic on which I have had long unproductive debates. RFC 6376 says that DKIM signs mail messages, but RFC 5322 says that something with more than one Subject or From or whatever, is not allowed. So my opinion has always been that DKIM software should refuse to sign or validate something that isn't a mail message so all that oversigning is pointless. Needless to say, other people have other opinions. R's, John -- ## subscription configuration (requires account): ## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/ ## unsubscribe (doesn't require an account): ## [email protected] ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
