SPF and DKIM are ways of signing a message, but it's still typically up to the r... | Hacker News

HN2new | past | comments | ask | show | jobs | submit

		JoshTriplett on Dec 7, 2023 \| parent \| context \| favorite \| on: Show HN: Beeper Mini – iMessage client for Android SPF and DKIM are ways of signing a message, but it's still typically up to the recipient or the recipient's mail server to decide what to do with that signature. And they're only checkable on the recipient's mail server because email isn't properly end-to-end encrypted, and exposes metadata.

jeroenhd on Dec 7, 2023 [–]

SPF and DKIM can be checked client side no problem, assuming your mail server doesn't mangle the received-from headers. We just generally only use them as server-side filtering.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact