Marco d'Itri, 2014-06-19 16:10+0200:
The possible solutions are:a) keep rejecting mail from these domains b) rewrite the From headers of messages from these domains c) implement a permanent and elegant solution like http://wiki.asrg.sp.am/wiki/Mitigating_DMARC_damage_to_third_party_mail#Relay_one_copy_through_author_domain_server
d) set up lists so DKIM-signed messages are not modified in any wayMailing lists break SPF and solutions to that are heavy, but DMARC relies on /either/ SPF /or/ DKIM, and mailing-lists do not necessarily break DKIM: they only do when the message is altered, often to add a footer explaining how to unsubscribe. Now, there has been a standard mail header for that for some time, which should now be recognized by all serious mail user agents, so altering messages to add such a footer could be avoided now, at least for DKIM-signed messages.
-- ,--. : /` ) Tanguy Ortolo <xmpp:tan...@ortolo.eu> | `-' Debian Developer <irc://irc.oftc.net/Tanguy> \_
signature.asc
Description: Digital signature
