-
Notifications
You must be signed in to change notification settings - Fork 35
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
DKIM - Internal Error, SPAM email with DKIM && 'Header does not contain address' #238
Comments
did a little digging... {From Debug Watch - walkthrough} Which then throws the error at Ln 165 >> throw new Error("From header does not contain an address"); Issue here is email address formatting and valid/invalid chars used within. From wiki: Three local-part of the email address may use any of these ASCII characters:
From that article char ] is allowed but only in a quoted string. Note that a valid quoted email "MonogamousForLife]"@survivalpro.guru would also throw an invalid message too. Maybe a bug issue to add on that derived issue. |
Thanks for reporting, and nice debugging. Like you already found out, the problem is the
I noticed that Thunderbird seem to silently fix the from address by adding quotes. I will have to think about what I will do about it. Current options I consider:
|
Hi,
where
and
From my point of view I've got just two things:
Thank you, |
@hawran Can you please post the from header (or send via mail if you don't want to post it here)? Without the From header it is impossible to tell if it has an invalid format, or if it is a bug in the parsing.
I will probably do that for 4.1.0
The add-on is failing to parse the from header. The DKIM signature itself could still be valid. |
Hi @lieser , sorry for the delay, my reactions in lines...
Thank you.
OK, point taken. |
@hawran Your issue seems to be a duplicate of #235. The version I posted in #199 (comment) should work with it. The problem is the dot in the name (without the name being in quotes). This is an obsolete syntax, which should no longer be used in newly created mails. |
Hi @lieser , thank you for info. |
The next version will show a proper error message ( Note that Thunderbird's fix for the from address in this case seems to only apply to the shown address. The API provided for add-ons still exposes the original invalid value. |
- ignore ill-formed list-id (lieser#262)
- ignore ill-formed list-id (lieser#262)
Enhancement suggestion to improve handling of SPAM emails using malformed DKIM
Receiving SPAM/Malware email that result in a DKIM display of "Internal Error" which IMO is not ideal may cause user to accept the email as valid.
Email Header contents:
From - Thu Feb 11 18:45:15 2021
X-Account-Key: account2
X-UIDL: 391443
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
X-Mozilla-Keys:
Return-Path: 27746-54067-153460-7271-pobrien=tadpolesoftware.com@mail.survivalpro.guru
Received: from roger.survivalpro.guru (Unknown [72.19.13.70])
by mail.arrecifal.com with ESMTP
; Thu, 11 Feb 2021 18:44:57 +0000
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=k1; d=survivalpro.guru;
h=Mime-Version:Content-Type:Date:From:Reply-To:Subject:To:Message-ID; i=MonogamousForLife]@survivalpro.guru;
bh=ANTXinVMsIzERuFn3WU5p62J8fU=;
b=rhJ487321NYzCMOIdz6qU/Htpf9r4VWcw+/vP1HsVuJ1v045+M52vTpnA41Cul/HBWpFqPiKrZiS
BqrUTIgmh4LBIb4GrdHXMeVZZQ/h+nkqeyLGsk/tJzxr//V5l56fYAPgz06GThr9+7dpKD5whbNk
SlesHJtNrvwt4ziKOsE=
DomainKey-Signature: a=rsa-sha1; c=nofws; q=dns; s=k1; d=survivalpro.guru;
b=EWWygvzcUlvoDN/GTh1O46gIgwziANFLpMWX3yQEhzN841UtD7+mIuRRVzCCaeUhT6jPyNQgJduJ
usPlCYOHx4txwBYkNDrix44BYDanHg0mkTMEcafH8QM4GkP18VST0lS5UbRKTc3KWxlCCNYM9EHB
p+ydNVU6pFJWTFFrIHo=;
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="cdd82547f1c4f9f8a56081d7cd03af14_d333_25774"
Date: Thu, 11 Feb 2021 13:34:58 -0500
From: "Get Your Mans Attention" <MonogamousForLife]@survivalpro.guru>
Reply-To: "Amazing Technique" <AmazingTechnique]@survivalpro.guru>
Subject: How to make a man OBSESSED with you . . . even if you’re overweight
To: pobrien@tadpolesoftware.com
Message-ID: vedqqrod793dzq92-ytsut8ifp1z8pyxs-d333-25774@survivalpro.guru
X-EsetId: 37303A299D832D67617161
I'll need to run though the code to identify code block throwing the internal error, but likely related to Received: from roger.survivalpro.guru (Unknown [72.19.13.70]), unknown source mail server domain perhaps with no rDNS.
From the debug log side:
A generic root error of "Invalid" or "E-mail is not correctly formatted" (maybe better mapping available) would provide a better response while utilizing existing locale mappings to reduce change overheads.
Problem i feel is the current error would indicate to users that its an internal fault of the DKIM plugin causing the issue, and they may then proceed to ignore the DKIM check.
The text was updated successfully, but these errors were encountered: