On Thu, May 30, 2024 at 3:30 AM Alessandro Vesely <ves...@tana.it> wrote:
> z= is a valuable tool for debugging and learning why signatures fail. For > reversing purposes, instead, Original-* fields are preferable as they can > be > individually added and possibly signed also by different operators. > Reversal > must not blindly replace altered fields so as to force verification. It > should > check whether the applied changes meet per-field acceptance criteria. > I don't understand your "preferable" claim given that an Original-* field is subject to mutation just as any other field is. It's just as fragile as any other solution. At least with "z=", you're far more likely to get back an actual original. -MSK
_______________________________________________ Ietf-dkim mailing list -- ietf-dkim@ietf.org To unsubscribe send an email to ietf-dkim-le...@ietf.org
