[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [bridgedb] 01/04: Don't look for X-DKIM-Authentication-Results headers

To: tor-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [bridgedb] 01/04: Don't look for X-DKIM-Authentication-Results headers
From: gitolite role via tor-commits <tor-commits@xxxxxxxxxxxxxxxxxxxx>
Date: Mon, 16 Jan 2023 12:16:02 +0000
Auto-submitted: auto-generated
Cc: gitolite role <git@xxxxxxxxxxxxxxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 16 Jan 2023 07:16:18 -0500
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=lists.torproject.org; s=2022-eugeni; t=1673871375; bh=8+i1Q/xuPDOu8W1vGR+FpPjNUB0EjQYUF5tL2HzdTag=; h=Date:To:In-Reply-To:References:Subject:List-Id:List-Unsubscribe: List-Archive:List-Post:List-Help:List-Subscribe:From:Reply-To:Cc: From; b=fFxq7Mbtlc2fVBBdx+7NMkc98j96ecc4CG7C90zXIhADtVbQRErrGQ9ZHsWkfmQw6 qzooR0zC5kptdf9kz8lp+ca28fuwl7Xy/MN6TrqbFUNtw0a6iENdEvBocO69INdw1l kwBjGtoayi/BjWCQPC1ZLF0cNOGLXnckojq7alhB6pRugO4AzXL9c8fMSX/Y8QSDnE NVqvCRu80MJBzkbUX4xpO5uMye5DPHMET0EvzCbM0Kwy9b45MJonUBnmU9bqO+qkgF 2Md0GLjUfj4qa0wwjdZ74Dz2RP+OFAqmVqtFSnJ2EjhDLEskDlSO7PN4RAn5Gl1dOw j0O4l8Od6cZ2g==
In-reply-to: <167387136134.6653.12164184341467695953@cupani.torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-commits/>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
References: <167387136134.6653.12164184341467695953@cupani.torproject.org>
Reply-to: meskio <meskio@xxxxxxxxxxxxxx>
Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>
Thread-index: AQAAEjRW8JLteBUZR6mvZe7PPLbUiA==

This is an automated email from the git hooks/post-receive script.

meskio pushed a commit to branch main
in repository bridgedb.

commit f0b0f71e5fa2b7d6048eb32ebd31f8d3a2fc4278
Author: meskio <meskio@xxxxxxxxxxxxxx>
AuthorDate: Tue Dec 13 14:58:07 2022 +0100

    Don't look for X-DKIM-Authentication-Results headers
    
    opendkim produces 'Authentication-Results' header to indicate if the
    dkim signature is valid, but nothing in our current infraestructure
    produces or reads X-DKIM-Authentication-Results. Check only for
    'Authentication-Results' so an attacker will not be able to fake an
    email without really comming from an authorized provider.
---
 bridgedb/distributors/email/dkim.py | 1 -
 bridgedb/test/test_email_dkim.py    | 8 --------
 2 files changed, 9 deletions(-)

diff --git a/bridgedb/distributors/email/dkim.py b/bridgedb/distributors/email/dkim.py
index c8b3378..1ac6508 100644
--- a/bridgedb/distributors/email/dkim.py
+++ b/bridgedb/distributors/email/dkim.py
@@ -35,7 +35,6 @@ from __future__ import unicode_literals
 import logging
 
 headers = {
-    "X-DKIM-Authentication-Results": lambda s: s.startswith('pass'),
     "Authentication-Results": lambda s: 'dkim=pass' in s
 }
 
diff --git a/bridgedb/test/test_email_dkim.py b/bridgedb/test/test_email_dkim.py
index e36657f..7966bf4 100644
--- a/bridgedb/test/test_email_dkim.py
+++ b/bridgedb/test/test_email_dkim.py
@@ -28,14 +28,6 @@ class CheckDKIMTests(unittest.TestCase):
         self.goodMessage = ["""\
 From: user@xxxxxxxxx
 To: bridges@localhost
-X-DKIM-Authentication-Results: pass
-Subject: testing
-
-get bridges
-""",
-"""\
-From: user@xxxxxxxxx
-To: bridges@localhost
 Authentication-Results: gmail.com;
 	dkim=pass (1024-bit key; secure) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=squak header.b=ZFZSqaMU;
 	dkim-atps=neutral

-- 
To stop receiving notification emails like this one, please contact
the administrator of this repository.
_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

References:
- [tor-commits] [bridgedb] branch main updated (ba694e1 -> d266794)
  - From: gitolite role via tor-commits

Prev by Author: [tor-commits] [tor] 13/15: cc: Rename function to avoid confusion
Next by Author: [tor-commits] [torspec] 01/10: tor-spec: Fix line exceeding 80 characters
Previous by thread: [tor-commits] [bridgedb] 02/04: Update dependencies
Next by thread: [tor-commits] [pluggable-transports/snowflake] branch main updated: Bump version to v2.4.3
Index(es):
- Author
- Thread