On 07/19/2018 03:59 PM, Phil Stracchino wrote: > > Actually, mailing lists and other redistribution are among the places > DMARC notably breaks. The real answer, which was created for this > purpose, is ARC (Authenticated Received Chain). That is designed from > the start to pass through mailing lists unbroken.
Yes, ARC is designed for this and we are working on implementing ARC for Mailman 3 but not 2.1. ARC is a way that that I as an intermediary can say that I certify that the message I received passed DMARC, but I transformed it in a way that will cause DMARC to fail, but if my signature validates, downstream should accept that DMARC passed. The problem is downstream has to trust me. If I'm gmail.com, I'll probably be trusted. If I'm msapiro.net, probably not. Python.org, who knows. -- Mark Sapiro <m...@msapiro.net> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan ------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org https://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-users/archive%40jab.org