Philip Paeps via mailop skrev den 2024-02-09 10:56:
You are not wrong.
+1, maybe #metoo
But you should treat ARC signatures in exactly the same way you treat
DKIM signatures
no not at all unless world like to step on own foots
: as one signal.
what ever this means
Blindly trusting ARC signatures is not going to go well for you.
there is 2 ways to see it:
1: aligned mails
2: unaligned mails
for this 2 there is 2 catagories for trustness that is important:
a: maillists with List-ID header and arc signed/arc sealed should not
seen as unaligned, becurse origin sender is aligned
b: mails that is sent to another non maillist with then is forwarded
should be handled like a: imho
the rest is imho aligned and untrusted dkim untrusted arc, if dmarc says
reject plese do
sadly opendmarc does not yet use openarc results, i dont know if rspamd
does all well here, but i think what i write above is the way to go, or
atleast debate
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
