It appears that Stephane Bortzmeyer <bortzmeyer@xxxxxx> said: >On Sun, Mar 30, 2025 at 02:34:24PM -0700, > Murray S. Kucherawy <superuser@xxxxxxxxx> wrote > a message of 78 lines which said: > >> To wit: A message sitting in a message store can be DKIM-verified. > >Only if the message store keeps the message *and* the keys. Otherwise, >if the message has been in the store for a long time, the keys may no >longer be in the DNS. That is of course a feature, not a bug, since DKIM wasn't intended for long-term verification, but I don't see why it's much different from anything else. If you want to verify an old S/MIME signature, you need a list of equally old CA certs. R's, John -- last-call mailing list -- last-call@xxxxxxxx To unsubscribe send an email to last-call-leave@xxxxxxxx
