[Mailman-Users] mailman 2.1.10 .. yahoo says "domainkeys=fail (badsig)" ...

Mark Sapiro mark at msapiro.net
Wed Jun 4 16:12:58 CEST 2008

bob 001 wrote:
>After upgrading to mailman 2.1.10, we were hoping for resolving the issue of
>stripped keys.
>Although keys are not longer stripped, yahoo says  domainkeys=fail (bad sig)
>and gmail says "dkim=neutral (body hash did not verify)"
>Please note that, one to one email works fine and yahoo and gmail both
>confirms that signature are ok and valid. It is *only* mailman list email
>that gets invalidated :-(
>Any suggestions, how can this be resolved? How can we make sure that keys
>are considered legitimate when email is sent to list?
>We are using dkimproxy...with both signatures .. and works great on
>individual emails.

There are a couple of long threads on this at

The current situation in Mailman is sumarized in the following from

># Some list posts and mail to the -owner address may contain DomainKey or
># DomainKeys Identified Mail (DKIM) signature headers <http://www.dkim.org/>.
># Various list transformations to the message such as adding a list header or
># footer or scrubbing attachments or even reply-to munging can break these
># signatures.  It is generally felt that these signatures have value, even if
># broken and even if the outgoing message is resigned.  However, some sites
># may wish to remove these headers by setting this to Yes.

Mark Sapiro <mark at msapiro.net>        The highway is for gamblers,
San Francisco Bay Area, California    better use your sense - B. Dylan

More information about the Mailman-Users mailing list