DKIM Verifier Version History

39 versions

Be careful with old versions!

These versions are displayed for reference and testing purposes. You should always use the latest version of an add-on.

Version 4.0.0pre4 880.3 KiB Works with Thunderbird 78.0 and later

- now requires at least Thunderbird 78
- fixed incompatibility with Thunderbird 78 (#199)
- removed option to show DKIM result in the statusbarpanel
- Authentication-Results header: fixed parsing of version
- libunbound resolver: Don't provide a default path
- libunbound resolver: Improve options description
- added about page in options
- updated default rules and favicons (#208, #209, #210)

Changes since v4.0.0pre3:

- Don't provide a default libunbound path
- Sign rules: Special treatment of outgoing messages now supported
- Fixed relaxed ARH parsing option (#221)
- Fixed backtracking issues in parsing of from header, resulting in `InternalError: too much recursion`
- Fixed options page not correctly working if it was already open on start
- Add about page
- updated default rules and favicons (#209)

Current limitations:

- Storing of DKIM keys not implemented
- Sign rules: DMARC heuristic not implemented
- DKIM action in the header not implemented

Removed:

- Option to show DKIM result in the statusbarpanel

Version 4.0.0pre3 859.0 KiB Works with Thunderbird 78.0 and later

- now requires at least Thunderbird 78
- fixed incompatibility with Thunderbird 78 (#199)
- removed option to show DKIM result in the statusbarpanel
- Authentication-Results header: fixed parsing of version

Known issues:

- Storing of DKIM keys not implemented
- Sign rules: DMARC heuristic not implemented
- Sign rules: Special treatment of outgoing messages not implemented
- DKIM action in the header not implemented

Removed:

- Option to show DKIM result in the statusbarpanel

Version 3.1.0 865.3 KiB Works with Thunderbird 68.0 - 73.0

- fix default rules and favicons (#197)
- includes changes from 2.2.0:
- Authentication-Results header: fix relaxed parsing option and trailing ";"
- exposed option on how to treat weak keys. Default is now ignore (was warning since 2.1.0) (#174)
- fixed default text color for unsigned e-mail in dark theme if highlighting of From header is enabled (#181)
- libunbound resolver: add ability to explicitly load dependencies of libunbound (#170, #179)
- updated default rules and favicons (#165, #168, #169, #180)

Version 2.2.0 867.1 KiB Works with Thunderbird 52.0 - 60.*

- Authentication-Results header: fix relaxed parsing option and trailing ";"
- exposed option on how to treat weak keys. Default is now ignore (was warning since 2.1.0) (#174)
- fixed default text color for unsigned e-mail in dark theme if highlighting of From header is enabled (#181)
- libunbound resolver: add ability to explicitly load dependencies of libunbound (#170, #179)
- updated default rules and favicons (#165, #168, #169, #180)

Version 3.0.1 688.5 KiB Works with Thunderbird 68.0 - 73.0

- fixed incompatibility with Thunderbird 70 (#167)
- fixed DKIM status not visible when a message is opened in a new window (#172)
- fixed incompatibility with CompactHeader add-on (#177)
- JSDNS: fixed proxy support (#173)

Version 3.0.0 688.1 KiB Works with Thunderbird 68.0 - 73.0

- now requires at least Thunderbird 68
- fixed incompatibility with Thunderbird 68/69
- libunbound resolver: remove old root trust anchor (key tag 19036)

Version 2.1.0 690.4 KiB Works with Thunderbird 52.0 - 60.*

- Cryptographic Algorithm and Key Usage Update (RFC 8301)
- updated default rules and favicons
- added Hungarian translation (by Óvári)

Version 2.0.1 555.4 KiB Works with Thunderbird 52.0 - 60.*

- fixed signature verification in case the RSA key has an odd key length
- fixed DMARC heuristic
- fixed "*" not being recognized as valid Service Type in DKIM Keys
- changed update DKIM key button to now update the keys of all DKIM signatures in the e-mail
- Authentication-Results header: fixed mixed case results specified by older SPF specs resulting in a parsing error
- JSDNS: fixed a problem getting the default DNS servers on Windows
- JSDNS: reduced default DNS server timeout from 10 to 5 seconds
- updated included third-party libraries
- updated default rules and favicons

Version 2.0.0 509.3 KiB Works with Thunderbird 52.0 - 60.*

- now requires at least Thunderbird 52
- added toolbar button and menuitem for sign rules
- added option to try to read non RFC compliant Authentication-Results header
- fixed incompatibility with Thunderbird 57/59/60
- fixed favicons not being shown if the CardBook add-on is installed
- fixed "Add must be signed exception" button being disabled if wrong signer is only a warning
- updated default rules and favicons

Version 1.7.0 458.4 KiB Works with Thunderbird 17.0 - 52.*

- libunbound resolver: added ability to specify multiple DNSSEC trust anchors
- libunbound resolver: added new DNSSEC root trust anchor (key tag 20326)
- updated default rules and favicons

Version 1.6.5 443.7 KiB Works with Thunderbird 17.0 - 52.*

- added Japanese translation (by SAKURAI Kenichi)
- updated default rules

Version 1.6.4 435.3 KiB Works with Thunderbird 17.0 - 52.*

- fixed saving of result with DNSSEC lock enabled
- fixed incompatibility with Thunderbird 52 and libunbound
- updated default rules and favicons

Version 1.6.3 430.3 KiB Works with Thunderbird 17.0 - 52.0

- fixed incompatibility with Thunderbird 52
- updated default rules and favicons

Version 1.6.2 423.3 KiB Works with Thunderbird 17.0 - 46.*

- fixed incompatibility with Silvermel/Charamel
- fixed Problem with copied header fields
- updated default rules and favicons

Version 1.6.1 422.4 KiB Works with Thunderbird 17.0 - 46.*

- fixed problem with old Thunderbird versions and sign rules

Version 1.6.0 422.4 KiB Works with Thunderbird 45.0 - 46.*

- added option to indicate successful DNSSEC validation with a lock (enabled by default)
- added option to show the favicon of some known signing domains (enabled by default)
- added option to show the ARH result alongside the add-ons, instead of replacing it
- JSDNS: differentiate between a server error and an non existing DKIM key
- sign rules: ignore must be signed for outgoing messages
- sign rules: updated default rules
- fixed updating a DKIM key or marking it as secure via the "Other Actions" button

Version 1.5.1 185.1 KiB Works with Thunderbird 17.0 - 46.*

- fixed verification for external messages
- sign rules: updated default rules

Version 1.5.0 184.9 KiB Works with Thunderbird 17.0 - 46.*

- added option to enable/disable DKIM verification for each account
- JavaScript DNS library: added support to use a proxy
- sign rules: updated default rules (added firefox.com)
- DKIM key: empty, but existing DNS record is now treated as a missing key instead as an ill-formed one
- fixed installing problem if extensions.getAddons.cache.enabled is set to false (https://bugzilla.mozilla.org/show_bug.cgi?id=1187725)

Version 1.4.1 183.6 KiB Works with Thunderbird 17.0 - 46.*

- fixed incompatibility with Thunderbird 46
- Authentication-Results header: fixed trusting all authentication servers

Version 1.4.0 183.5 KiB Works with Thunderbird 17.0 - 40.*

- simplified shown error reasons and added advanced option for detailed reasons
- Authentication-Results header: reading of the ARH can now be set for each account
- Authentication-Results header: added option to only trust specific authentication servers
- Authentication-Results header: continue verification if there is no DKIM result in the ARH header
- Authentication-Results header: allow also unknown property types to be compliant with RFC 7601
- Authentication-Results header: fixed bug if ARH header exists, but no message authentication was done
- JavaScript DNS library: no longer get the DNS servers from deactivated interfaces under windows
- libunbound resolver: no longer blocks the UI of Thunderbird
- libunbound resolver: changing preferences no longer needs a restart

Version 1.3.6 173.2 KiB Works with Thunderbird 17.0 - 40.*

- fixed error in parsing of Authentication-Results header
- added additional debugging calls

Version 1.3.5 173.1 KiB Works with Thunderbird 17.0 - 40.*

- fixed bug if a header field body started with a ":"

Version 1.3.4 172.8 KiB Works with Thunderbird 17.0 - 40.*

- added compatibility for Thunderbird 40

Version 1.3.3 172.8 KiB Works with Thunderbird 17.0 - 38.*

- fixed bug in the sorting of the results of multiple DKIM signatures

Version 1.3.2 172.7 KiB Works with Thunderbird 17.0 - 31.*

- updated default sign rules

Version 1.3.1 172.5 KiB Works with Thunderbird 17.0 - 31.*

- DNS errors in DMARC heuristic are now ignored (previously this resulted in an internal error)
- fixed error resulting in incompatibility with Thunderbird 36

Version 1.3.0 172.4 KiB Works with Thunderbird 17.0 - 31.*

- added option to treat ill-formed selector tag as as error/warning/nothing (default warning; previous behavior was error)
- added support for multiple signatures
- added option to read Authentication-Results header
- added French translation (by Christophe CHAUVET)

- fixed problem with JavaScript DNS Resolver and long DKIM keys, resulting in error "Key couldn't be decoded"
- fixed incompatibility with compact headers add-on

Version 1.2.2 154.6 KiB Works with Thunderbird 17.0 - 31.*

- added Chinese (Simplified) translation (by YFdyh000)
- fixed the showing of a wrong error reason in some cases of a bad RSA signature

Version 1.2.1 141.1 KiB Works with Thunderbird 17.0 - 32.*

- added option for sign rules to allow also subdomains of the SDIDs (enabled by default)
- fixed comparison of domains (was case sensitive)
- fixed an issue in formated strings ("%S" was not replaced)
- updated default sign rules

Version 1.1.2 140.6 KiB Works with Thunderbird 17.0 - 32.*

- fixed error if e-mail is from a domain on the public suffix list (like "googlecode.com")
- updated default sign rules