On Fri, May 21, 2004, Nico Erfurth wrote: > Tony Finch wrote: > >You seem to have missed the fact that SPF breaks existing working
> >legitimate setups. > DomainKeys also does. If I read the proposal right, a server isn't
> allowed to add any header after the DomainKeys-Signature: header.
Read the draft again :-)
There's some ordering in the headers, so if your MTA adds the new
stuff before the signature, you're ok. If DK would break forwarding
it would be useless.
