> Am 02.02.24 um 16:08 schrieb Mark E. Jeftovic via mailop:
> > We're having a bit of a theological debate internally on whether to
> > implement DMARC on our SRS forwarder domains.
On 02.02.24 16:26, Kai Bojens via mailop wrote:
> Skip SRS and implement ARC for forwarded e-mails. This should solve
> all these problems.
On Sun, 2024-02-04 at 16:02 +0100, Matus UHLAR - fantomas via mailop wrote:
Does anyone blindly trust ARC signatures from random domains?
On 05.02.24 01:27, Byunghee HWANG (황병희) via mailop wrote:
They(DKIM/ARC) are not distinguishing whether the sender is a good
person or a bad person. They only verify that the sender has a
legitimate passport.
Instead, please use *DNSWL* to determine whether the sender is a good
person or a bad person.
But, if an ARC signer is bad person, even the ARC signature can lie about
original content, and the claimed original sender may be fake (as my example
down there shows).
So, we need to trust (apply DNSWL) to ARC signer before we can use the ARC
signature to apply DNWSL on the original sender.
or is there something I misunderstood about ARC?
I find it a huge difference between DKIM signatures (I sign this mail
being from my domain) and ARC signature (I sign that this mail was
received from whitehouse.gov properly verified and signed).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Support bacteria - they're the only culture some people have.
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
