Re: other domains forging dkim sig

From: A. Schulze <>
Date: Thu, 06 Nov 2014 20:44:09 +0100


> from time to time i see google passing multiple other external domains
> for dkim
> is the domain purported to have dkim signed from one of my
> domains
> how is that possible other than a private key compromise or a mistake by
> google ?

could also be a message signed by, send to
where it's forwarded to where it's forwarded to Google.
Both forwarder don't modify the content so the dkim signature is still valid.

If is unsure about compromised keys they could immediately
use new key.

Received on Thu Nov 06 2014 - 19:44:30 PST

This archive was generated by hypermail 2.3.0 : Thu Nov 06 2014 - 19:54:00 PST