From: Ben L. <BL...@ch...> - 2006-07-02 15:31:29
|
Grrr... I figured it out... the extra CRLF is coming from my X-Antivirus header, which is being added by Central Command's Vexira. I recently moved this milter to be the last in the chain so that I could verify sender's messages that didn't cannonicalize with -H... so that my spurious addition of X-Antivirus wouldn't break the signatures from these few MTAs. This did what I wanted it to on the inbound/verification side, but at the cost of adding an extra CRLF on the outbound/signing side (which only some MTAs are detecting, oddly enough...). I've moved the milters back the way they were and everything is verifying on the outbound side. Of course, I can't verify on the inbound side any Domainkey-Signature that wasn't baked up with -H, which, saddly, includes the response from sa-test. Thanks, SM, for helping me troubleshoot. > Hmmm... okay. I am currently running 0.4.1... but perhaps I'm a > case where the supplied patch in 0.4.0 doesn't totally fix the > condition? > > I'm at a total loss as to why this would be happening out of > nowhere. > >> Hi Ben, >> At 07:08 02-07-2006, Ben Lentz wrote: >>>Okay, here's the file from the last message I sent. >> >> The DK verification fails because of an additional line break >> (CRLF) >> between the message headers and the body. >> >> The release notes for dk-milter 0.4.0 mentions "Remove >> spurious >> CRLFs >> injected into canonicalization when multiple body chunks >> arrive >> from >> the MTA." It might be related to that. >> >> Regards, >> -sm >> >> > > > > Using Tomcat but need to do more? Need to support web services, > security? > Get stuff done quickly with pre-integrated technology to make > your job easier > Download IBM WebSphere Application Server v.1.0.1 based on > Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > _______________________________________________ > dk-milter-discuss mailing list > dk-...@li... > https://lists.sourceforge.net/lists/listinfo/dk-milter-discuss > |