-
Notifications
You must be signed in to change notification settings - Fork 34
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Improve logic for showing DKIM header if replacing the verification result with ARH is disabled #148
Comments
I had a lock at the e-mail you send me. It does not include any DKIM signature, so the add-on behaves correctly (assuming you have reading of ARH disabled, or configured that the ARH result does not replace the one from the local verification). Why it also contains the But this strange behavior should have nothing to do with the add-on. |
@lieser: I have the option of reading ARH enabled, this is the problem. PS: I suppose github smtp server fail to add dkim signature because the message did contain strange chars so it report the error. PS2: Look at the sender name: |
If you have just ARH enabled, the add-on should also show DKIM: invalid. Only if you have additionally enabled in the advanced options that the ARH result does not replace the normal verification, the problem you describe should occur. because in this case only the result of the normal verification matters for deciding whether to show the header. I will make a feature request out of this issue, to improve the logic for showing the header. |
Philippe, I have enabled "Reading the Authentication-Results header replaces the add-ons verification". However, a message having a correct A-R header shows "Error connecting to the DNS server". The error is caused by a temporary network outage. The question is: Why does the add-on try to connect to a DNS server? The A-R is as follows:
Note that one of the possible results is temperror:
In that case only, the add-on should discard the A-R result and attempt verification anew. For all the other results, the add-on should not even try to reach for the network. |
The ARH you posted is not valid ( If you do not want this fallback, you can completely disable the DKIM verification (also only for specific accounts): https://github.com/lieser/dkim_verifier/wiki/Options#verify-dkim-signatures For the future, I suggest enabling debugging and locking at the output (see https://github.com/lieser/dkim_verifier/wiki/Debug). In most cases, the messages should tell also not that familiar with DKIM/the add-on that is going wrong (at least I hope so). |
Oops... Thank you. I'll fix the ARH. |
I have a message that contains:
Authentication-Results: smtp.github.com; dkim=permerror (bad message/signature format)
.But the plugin just say DKIM: None without any warning/error.
I have sent you a sample.
The text was updated successfully, but these errors were encountered: