|
|
|
|
|
|
by denton-scratch
1772 days ago
|
|
|
DKIM signatures are required, if you want to exchange mail with Google. Consequently just about all mailservers nowadays append DKIM signatures. A DKIM signature attests that some subset of the headers (typically including the From: header) are "authentic". The mailserver cannot attest the authenticity of the sender; it cannot attest more than it knows, which is that the logged-in account is allowed to send mail using that sender address. It can't attest who was using the account. DKIM is a spam-prevention scheme. It doesn't provide non-repudiability. |
|
|