ruza on Nostr: If you use and rely on DKIM signatures, seems that it does not matter what is signed ...
If you use and rely on DKIM signatures, seems that it does not matter what is signed or verified using DKIM.
it means the email client may display email content that doesn't match the part signed by DKIM. This happens because attackers can exploit the DKIM body length tag ("l=") and the Content-Type header to modify the email content after the signed portion, resulting in the client showing altered content that still passes DKIM and DMARC checks.
https://www.zone.eu/blog/2024/05/17/bimi-and-dmarc-cant-save-you/
it means the email client may display email content that doesn't match the part signed by DKIM. This happens because attackers can exploit the DKIM body length tag ("l=") and the Content-Type header to modify the email content after the signed portion, resulting in the client showing altered content that still passes DKIM and DMARC checks.
https://www.zone.eu/blog/2024/05/17/bimi-and-dmarc-cant-save-you/