On Tue, Oct 02, 2012 at 11:55:23PM +0200, Vincent Lefevre wrote: > > *Any* user who chooses to reject mail based on an invalid DKIM signature > > for any reason is making a mistake and will lose legitimate mail: > > http://en.wikipedia.org/wiki/Dkim#Content_modification > > You're wrong. My mail server DOES NOT modify messages.
But if you are only corresponding with other users of your mail server, then why do you care about DKIM? DKIM signatures can be rendered invalid elsewhere along the delivery path. Similar to SPF, DKIM *cannot* be used to identify spam. The only sane way to use it is to re-enforce "hamminess" > > Ultimately, though I reset this bug's severity to 'important', I really > > think this error is entirely cosmetic and the appropriate severity is > > 'minor'. T_DKIM_INVALID does not, and should not, contribute to a > > message's spam score by default. > > It is not cosmetic. What is the default doesn't matter. The point > is that the user can have its own configuration. And if SpamAssassin > says something, the user is in his own right to use this information. > If the user shouldn't use the result of the T_DKIM_INVALID test, then > shouldn't be there in the first place. The KDIM test is not enabled by default and is clearly marked as experimental in the config. If you choose to enable it without understanding what it does or how it works and are surprised by the results, I cannot help you. You need to understand the ramifications of your configuration changes if you're going to make them. noah
signature.asc
Description: Digital signature
