On Thu, Aug 15, 2024 at 08:26:06AM +0100, Julian Bradfield via Exim-users wrote:
> > No. Alignment, etc., is DMARC not DKIM. Absent a DMARC policy for
> > the "From:" domain, any the DKIM signature allows the receiving system
> > to use the "d=" value as a key into a reputation system, but questions
> > of "forgery" do not arise.
>
> DKIM simply says "this message has been signed by this domain". An
> Identity Asessor is trying to work out what, if anything, it knows
> about the message. If it sees a message signed by a non-aligned
> domain, then it knows nothing useful, and might indeed choose to infer
> that the message is a forgery.
Certainly no more so than a message that has no DKIM signature at all,
and in either case, absent DMARC "p=(reject|quarantine)" the receiving
system SHOULD NOT infer forgery, which would constitute an implicit
unwarranted "p=(reject|quarantine)".
--
Viktor.
--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscr...@lists.exim.org
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
