cuttlefish icon indicating copy to clipboard operation
cuttlefish copied to clipboard
verified publisher icon mlandauer

Cuttlefish should scream when DKIM signing can't be done

Open athoune opened this issue 9 years ago • 5 comments

Or at least logging.

When domain mismatch (from and dkim), sending unsingned mail, silently, is just a treason.

athoune avatar Apr 06 '16 12:04 athoune

@athoune that doesn't sound good :frowning:

To make this easy to fix can you clearly describe what it does now and what it should do instead?

henare avatar Apr 08 '16 06:04 henare

Hum, it should an error. The mail is not sent, SMTP scream. If you wont to use strange domain, just use an "app" without DKIM.

athoune avatar Apr 08 '16 08:04 athoune

So you expect Cuttlefish to reject the message if DKIM signing can't be done :+1:

henare avatar Apr 11 '16 02:04 henare

yes.

athoune avatar Apr 11 '16 08:04 athoune

It's intentional that it falls back to not signing mails if the domains don't match. This way at least emails will go out even if they're sent from the wrong domain and cuttlefish will do its best to deliver them.

However, I agree that it is absolutely wrong that it does this completely silently. It should log warnings/errors. This could use #307.

mlandauer avatar Aug 18 '18 03:08 mlandauer