[ietf-dkim] draft-ietf-dkim-ssp-02.txt ASP/SSP section 2.8

[Graham Murray]

Douglas Otis <dotis at mail-abuse.org> writes:

> DKIM signatures might be damaged by various gateways.  Enterprise mail
> gateways may perform Content-Type header fix-ups which damage a
> signature, for example.

In which case they SHOULD be validating the DKIM signature before
performing the fix-ups. They are the (incoming) border, so are the best
place to perform DKIM, SPF etc checks.