Unverified Commit 003b757f authored by Fabian Henneke's avatar Fabian Henneke Committed by GitHub
Browse files

Use rsa-sha256 for DKIM signatures

Sympa currently uses rsa-sha1 for DKIM signature attached to outgoing mails. It [has been shown](https://shattered.io/) that SHA-1 can no longer be considered resistant to collisions in practice, which means that it is inadequate to be used with DKIM. Since Mail::DKIM supports rsa-sha256, this is easy to fix.
parent df26e55f
......@@ -493,7 +493,7 @@ sub dkim_sign {
# create a signer object
my $dkim = Mail::DKIM::Signer->new(
Algorithm => "rsa-sha1",
Algorithm => "rsa-sha256",
Method => "relaxed",
Domain => $dkim_d,
Selector => $dkim_selector,
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment