On 2025/09/22 10:51 PM, Bron Gondwana wrote:
Current thinking is that DKIM2 will sign EVERY HEADER except a specified set of trace headers, meaning that even adding another previously unknown header without declaring that you did so in a signed delta header would break the signature.
So, an MRA (even if it successfully does a DKIM2 verification on reception) that adds some private tracking headers will result in a stored message that fails DKIM2 checking done by an MUA? -- Cheers, Jeremy _______________________________________________ Ietf-dkim mailing list -- [email protected] To unsubscribe send an email to [email protected]
