Mirrors/chatmail-core
1
0
Fork 0
mirror of https://github.com/chatmail/core.git synced 2026-04-18 14:06:29 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
6cd7296001384e2acd35a2aa188670cf8d131dca
chatmail-core/test-data/message/dkimchecks-2022-09-28/alice@outlook.com/alice@hotmail.com
Hocuri b1c6c40fa7 Check DKIM Authentication-Results (#3583) 
Fix #3507

Note that this is not intended for a release at this point! We first have to test whether it runs stable enough. If we want to make a release while we are not confident enough in authres-checking, then we have to disable it.

BTW, most of the 3000 new lines are in `test_data/messages/dkimchecks...`, not the actual code

da3a4b94 adds the results to the Message info. It currently does this by adding them to `hop_info`. Maybe we should rename `hop_info` to `extra_info` or something; this has the disadvantage that we can't rename the sql column name though.

Follow-ups for this could be:
- In `update_authservid_candidates()`: Implement the rest of the algorithm @hpk42 and me thought about. What's missing is remembering how sure we are that these are the right authserv-ids. Esp., when receiving a message sent from another account at the same domain, we can be quite sure that the authserv-ids in there are the ones of our email server. This will make authres-checking work with buzon.uy, disroot.org, yandex.ru, mailo.com, and riseup.net.
- Think about how we present this to the user - e.g. currently the only change is that we don't accept key changes, which will mean that the small lock on the message is not shown.
- And it will mean that we can fully enable AEAP, after revisiting the security implications of this, and assuming everyone (esp. @link2xt who pointed out the problems in the first place) feels comfortable with it.
2022-10-28 12:15:37 +02:00

14 lines
670 B
Plaintext
Raw Blame History

ARC-Authentication-Results: i=2; mx.microsoft.com 1; spf=pass (sender ip is
40.92.73.85) smtp.rcpttodomain=outlook.com smtp.mailfrom=hotmail.com;
dmarc=pass (p=none sp=none pct=100) action=none header.from=hotmail.com;
dkim=pass (signature was verified) header.d=hotmail.com; arc=pass (0 oda=0
ltdi=1)
Authentication-Results: spf=pass (sender IP is 40.92.73.85)
smtp.mailfrom=hotmail.com; dkim=pass (signature was verified)
header.d=hotmail.com;dmarc=pass action=none
header.from=hotmail.com;compauth=pass reason=100
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;
dkim=none; arc=none
From: <alice@hotmail.com>
To: <alice@outlook.com>
Reference in New Issue View Git Blame Copy Permalink