chatmail icon indicating copy to clipboard operation
chatmail copied to clipboard

Published 20 hours ago verified publisher icon deltachat

Reject messages with partial DKIM signatures

Open link2xt opened this issue 1 month ago • 0 comments

Messages with DKIM-signatures that have l= tag are not fully protected. We should reject such signatures.

See opendkim-lua man page, there a functions odkim.sig_bodylength and odkim.sig_canonlength that can help with this. If sig_canonlength is less than sig_bodylength, then signature should be rejected.

link2xt avatar May 18 '24 02:05 link2xt