However, these ACLs only apply to specific domains. Is it possible to
construct a general-purpose DKIM ACL?
E.g. for every incoming message such an ALC would check if 1) the
sender domain has a DKIM policy record, and if so 2) whether the
message headers includes a DKIM signature, and if so 3) whether this
DKIM signature is valid. A warning would be issued if a DKIM policy
record was present, but a DKIM signature in the message headers was
absent or invalid.
This message was posted to the following mailing lists: