------- You are receiving this mail because: -------
You are on the CC list for the bug.
http://bugs.exim.org/show_bug.cgi?id=1310
Summary: Add an option to specify the headers that should be used
for DKIM signatures
Product: Exim
Version: 4.80
Platform: All
OS/Version: All
Status: NEW
Severity: wishlist
Priority: medium
Component: DKIM
AssignedTo: tom@???
ReportedBy: tony@???
CC: exim-dev@???
The dkim_sign_headers doesn't provide the ability to include headers in the
signature if they are not also present in the message.
This means that it's not possible to use the signing to verify (a) that header
that were not present in the original message have not been added, or (b) that
additional instances of headers that were present in the original message have
not been added. These are very valuable aspects of DKIM signatures.
It would be great if there was either another option that set the headers that
should be part of the signature, or an option that controlled the behaviour of
dkim_sign_headers so that it could be toggled between the weak-security current
behaviour and the strong-security proposed behaviour.
--
Configure bugmail:
http://bugs.exim.org/userprefs.cgi?tab=email
