Invalid DKIM signatures in this list

Victor Sudakov vas at mpeks.tomsk.su
Mon Nov 26 12:53:12 UTC 2018


Dear Colleagues,

I have noticed that the Mailman which manages this list keeps the 
sender's "DKIM-Signature:" header intact but modifies the body of the 
message by adding a footer.

This behavior invalidates the sender's digital signature with
"dkim=fail (body hash mismatch; body probably modified in transit)". 

I think, according to the common sense and RFC6377, the Mailman should 
either remove the "DKIM-Signature:" when modifying the body, or 
refrain from modifying the body, or add its own valid "DKIM-Signature:" 
from scratch. What is currently happening does not make sense.

Whom do I contact about it?

An example of this behaviour can be seen in the message with 
 Message-Id: <20181126081310.026376ddcaad286971909626 at sohara.org> and others.

-- 
Victor Sudakov,  VAS4-RIPE, VAS47-RIPN
2:5005/49 at fidonet http://vas.tomsk.ru/


More information about the freebsd-questions mailing list