On 2022-11-09 08:40, Slavko via mailop wrote:
Dňa 9. 11. o 0:34 MRob via mailop napísal(a):
... But if microsoft agree to DKIM-sign using envelope-from
(**signature including the FROM header**) shouldnt that mean it is
seeing the headers and can of course validate FROM header? For me that
show extra proof microsoft allowing free-form uncheked spoofing
DKIM doesn't validates any of signed header(s). It only digitaly signs
them to receiver can verify that they wasn't modified on transport
(from signer to receiver). Nothing more, nothing less.
Not questioning about DKIM. The point is microsoft has FROM header in
its hand so it *can* easily do validation to the user account to
disallow spoof.
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
