J.D. Falk wrote: > Michael Thomas wrote: > >> There is *NO* *REASON* to strip signatures. NONE. >> >> In fact it is HARMFUL. > > You are clearly *VERY* *PASSIONATE* about this, but would you care to share > the logic you used to come to this conclusion?
Well for starters, RFC4871 section 3.5: The DKIM-Signature header field SHOULD be treated as though it were a trace header field as defined in Section 3.6 of [RFC2822], and hence SHOULD NOT be reordered and SHOULD be prepended to the message. And from RFC2822 section 3.6: More importantly, the trace header fields and resent header fields MUST NOT be reordered, and SHOULD be kept in blocks prepended to the message. See sections 3.6.6 and 3.6.7 for more information. And then RFC4871 section 4.2 goes on to say: Verifiers SHOULD ignore failed signatures as though they were not present in the message. So the better question is why you choose to violate the SHOULD's of rfc4871 and rfc2822? SHOULD does not mean, "if I don't feel like it". Mike _______________________________________________ NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html