On Tue 20/Aug/2024 20:46:39 +0200 Steffen Nurpmeso wrote:
Alessandro Vesely wrote in
<[email protected]>:
|On Mon 19/Aug/2024 07:18:19 +0200 Jan Dušátko wrote:
|> 3) In case that the ARC is not signed at the beginning, the path \
|> to the first
|> trusted hop is untrustworthy, and ARC is useless bunch of bytes.
|
|ARC is to be added on forwarding, not at "the beginning". When the \
|forwarder
|is trusted, a receiver knows whether DKIM was verified at the first \
|hop. In
|that case, the forwarder can omit rewriting From:, which I wouldn't \
|call "useless".
That only if the entire infrastructure uses and trusts this
protocol. The DKIM signature is broken.
In order to use ARC, all forwarding setups, be they dot-forwards or mailing
list subscriptions, have to be agreed between the sender and the target.
Best
Ale
--
_______________________________________________
Ietf-dkim mailing list -- [email protected]
To unsubscribe send an email to [email protected]
