SA Bugzilla – Bug 6009
Add support for DKIM's ADSP
Last modified: 2009-08-06 12:29:45 UTC
Currently the DKIM part in SA can't be used to reject mail that's not signed that looks like it's coming from a domain that does sign all the mail. The domain can indicate that all mail should be signed by using ADSP. For the latest draft on that please see http://tools.ietf.org/html/draft-ietf-dkim-ssp It has an option to say that all mail should be signed and one that says if it's not signed it can be discarded. You could then have different scores depending what the domain owner indicated with ADSP. Kurt
Done. The DKIM plugin in 3.3.0 now handles ADSP. To get the NXDOMAIN handling right, one needs to use the version 0.36_5 of Mail::DKIM or later.