> but the intent has always focused on the need for a > first party signature, not abhorance of multiple > signatures.
This was my understanding as well. In fact, if there's a valid first party signature our lib doesn't even make an SSP check AFAIK so it wouldn't be able to determine policy relative to third party sigs.
-- Arvel _______________________________________________ ietf-dkim mailing list http://dkim.org