On Fri, Apr 3, 2015 at 7:42 PM, John Levine wrote:
> In answer to someone else's question, libdkim is inded the Alt-N
> library which as far as I can tell hasn't been touched since 2008.
> It still seems to work OK, and it checks the v= in the signature
> to be "1" or some old 0.x test versions.
In article
you write:
>-=-=-=-=-=-
>-=-=-=-=-=-
>
>Looks like we require v to exist and be either 1 or DKIM1, otherwise you'll
>get a "bad format" or "bad version" in the AuthRes header. Wonder how old
>the DKIM1 is and whether we should remove that now...
The DNS key record has to say v=DKIM1
* Murray's opendkim C library... the code in the milters that
sendmail and postfix use, and I believe it's the library that
everyone else with custom C code (including me) uses or adapts. It
replaces the older libdkim.
... Alt-N's open source DKIM/ADSP library was a pure C/C++ portable
pac
On 4/2/2015 9:25 PM, John R Levine wrote:
So receipt of a message signed in the new form will likely produce an
incorrect signature validation, ...
I wondered about that, too, so before I proposed a version bump, I
took a look at the code that people use:
* Murray's opendkim C library: checks
