Closed listerr closed 2 months ago
Thank you very much for the PR / issue report. Unfortunately I think the fix for the arc=none result is not in the correct place (and too specific for arc only) as I don't think we should ignore/remove information from the authentication result.
A better fix would probably be to account for self::STATUS_NOSIG
in this block: https://github.com/pimlie/authres_status/blob/master/authres_status.php#L477-L502, more specifically I think we only have to check on L483 whether status = PASS or status = PASS + NONE :)
Agreed. I thought this would be better somewhere else, but didn't manage to unpick all the nested if.. elseif .. else ..
logic, and wasn't sure if changing it there would break something else. :)
I notice some other fixes have been merged overnight. I've submitted a new PR against current master. Tested it and it seems to do the trick.
https://github.com/pimlie/authres_status/pull/72
A better fix would probably be to account for
self::STATUS_NOSIG
in this block: https://github.com/pimlie/authres_status/blob/master/authres_status.php#L477-L502, more specifically I think we only have to check on L483 whether status = PASS or status = PASS + NONE :)
When ARC verification is enabled in Exim 4.96, it always adds
arc=none
to theAuthentication-Results:
header if the message is not ARC signed, along with the spf and dkim results:Example:
This causes authres_status to always report an invalid signature.
This patch ignores
arc=none
, so if the message does not contain any ARC signature but is otherwise valid DKIM etc. It will report a valid signature.