Auteur: Murray S. Kucherawy Date: À: exim-users@exim.org Sujet: Re: [exim] DKIM verification and envelope-from
> -----Original Message----- > From: exim-users-bounces+msk=cloudmark.com@??? [mailto:exim-users-bounces+msk=cloudmark.com@exim.org] On Behalf Of Robert Wysocki
> Sent: Thursday, April 26, 2012 4:08 AM
> To: exim-users@???
> Subject: [exim] DKIM verification and envelope-from
>
> I'm trying to achieve configuration that would verify DKIM signatures
> for known signers.
> Everything works fine until envelope-from address is one of known
> signers. But many spams have envelope-from set differently than From:
> header, eg. injectingy472@??? in envelope-from and
> something@??? in From: header.
> This enables them to bypass DKIM signature checks and therefor to
> bypass one of the anti-spam mechanisms.
>
> How can I instruct exim to include From: headers' content in known
> signers checks?
Why wouldn't you base the "known-signer" test on From: instead of the envelope sender?