With PKIX validation the certificate should match the hostname.
With SMTP, the hostname should match the reverse IP though often it does
not.
Using subdomains gives you flexibility.
with DANE validation, it is DNSSEC that validates the fingerprint to the
hostname so I do not believe there is
On 2/10/19 3:46 PM, Michael A. Peters via dovecot wrote:
On 2/10/19 3:42 PM, Noel Butler via dovecot wrote:
On 10/02/2019 12:49, Benny Pedersen via dovecot wrote:
fixing mailman will be the fail, solve it by letting opendkim and
opendmarc not reject detected maillist will be solution,
A
On 2/10/19 3:42 PM, Noel Butler via dovecot wrote:
On 10/02/2019 12:49, Benny Pedersen via dovecot wrote:
fixing mailman will be the fail, solve it by letting opendkim and
opendmarc not reject detected maillist will be solution,
A general broad mailing list whitelist will be problematic, d
On 2/9/19 11:13 AM, Michael A. Peters via dovecot wrote:
On 2/9/19 10:48 AM, Juri Haberland via dovecot wrote:
*snip*
Honestly I was sort of tempted to try and create my own DMARC validator
(I was thinking one daemon that does both DKIM and DMARC - for postfix,
Exim has DKIM native but I
On 2/9/19 10:48 AM, Juri Haberland via dovecot wrote:
On 09/02/2019 10:44, Aki Tuomi via dovecot wrote:
For some reason mailman failed to "munge from" for senders with dmarc policy ;(
It's now configured to always munge to avoid this again.
I'd say, let Mailman throw all people off the list t
