Re: [dmarc-ietf] From: munging, was Ratchets - Disallow PCT 1-99

[Benny Pedersen]

On 2021-07-23 12:08, Alessandro Vesely wrote:


https://mailarchive.ietf.org/arch/msg/dmarc/KvSFv66Mz8UipXQ0477UgO5WKio/


all this is solved if maillists stop dkim signing of non origination 
postings and only do the arc sealing so all dmarc testers can see 
originating spf, dkim pass


take sendgrid, thay forwarded netflix phishing emails, and thay belived 
dmarc protected there ignorance to some kind out off there services


never trust a forwarding server that does there own dkim signing, period

dmarc needs openARC testing to all above to work, then maillist can 
break maillists to there own stupid needs without breaking dkim cant be 
verified on dmarc recipient servers


hope the best for the future

___
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc

Re: [dmarc-ietf] From: munging, was Ratchets - Disallow PCT 1-99

[Alessandro Vesely]

On Thu 22/Jul/2021 21:51:25 +0200 John R Levine wrote:

On Thu, 22 Jul 2021, Alessandro Vesely wrote:

 However, I'm not sure whether to actually RECOMMEND to do so.

That's simple: no.
Yet, From: munging itself resulted from cooperation between dmarcers and MLM 
people, didn't it?


No, it came from AOL and Yahoo unilaterally using DMARC to outsource the cost of 
their security breaches, with the entirely predictable (and predicted) effect 
of breaking every mailing list in the world.  List operators had to scramble 
and come up with some hack to mitigate the damage when I became clear that AOL 
and Yahoo did not care.



That certainly was the efficient cause of the trouble.  But you must remember 
that the possible solutions were discussed on this list with MLM participants a 
few years ago.  For example:


https://mailarchive.ietf.org/arch/msg/dmarc/KvSFv66Mz8UipXQ0477UgO5WKio/


Best
Ale
--











___
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc