Bug 106591 - DKIM signatures
Summary: DKIM signatures
Status: RESOLVED FIXED
Alias: None
Product: freedesktop.org
Classification: Unclassified
Component: Administration (show other bugs)
Version: unspecified
Hardware: Other All
: medium normal
Assignee: fd.o Admin Massive
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2018-05-21 09:25 UTC by Dilian
Modified: 2018-05-21 10:19 UTC (History)
0 users

See Also:
i915 platform:
i915 features:


Attachments
Mail in question (6.35 KB, message/rfc822)
2018-05-21 09:25 UTC, Dilian
Details

Description Dilian 2018-05-21 09:25:14 UTC
Created attachment 139658 [details]
Mail in question

I got the attached sample over lists.freedesktop.org . As you can see in the Authentication-Results header for the libreoffice.org domain, the dkim validation performed by opendkim failed.  

Moreover calling with python3/dkimpy 0.8.8
  #!/usr/local/bin/python3
  import dkim
  print(dkim.verify(open('258620.', 'rb').read()))

also emits False.

Why don't the signature validate?  Was the mail changed on its way?

Why does DKIM-Signature h=.. contain twice from:date: and which software do you use for signing?
Comment 1 Daniel Stone 2018-05-21 10:19:38 UTC
Mailman transforms the mail in ways which break the DKIM signature. We are supposed to be stripping the signature to account for this, but it looks like a change in Mailman upstream meant this didn't always happen.

I've changed the configuration to strip more aggressively now; hopefully that takes care of it. Thanks for the report.


Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.