Let's say you have '@example.com' in whiteListedDomains, because it is an important partner of your company. A spammer abuses a known good address, eg. charly....@example.com - so, the mail will be processed as whitelisted and passes assp.
But - the domain owner of 'example.com' has configured a valid DKIM environment. Assuming that the DKIM-identity used in a DKIM-signature by 'example.com' is 'charly....@example.com', you can now define the following in 'DKIMWLAddresses' (and remove '@example.com' from whiteListedDomains) charly....@example.com or *@example.com or *@example.com=>*@a_local_domain.org In this case, whitelisting is done only if - the mail is DKIM signed and the DKIM-identity (and localDomain if defined) is verfied and matches any defined entry. This makes it impossible for spammers to successfully abuse the defined entries (make an email passing assp, because a domain/address is simply whitelisted) An example domain for such a scenario is sourceforge.net - this domain DKIM-signs (IMHO) every mail. The same way it works for 'DKIMNPAddresses' and noProcessingDomains Thomas Von: "Daniel Miller via Assp-test" <assp-test@lists.sourceforge.net> An: assp-test@lists.sourceforge.net Kopie: "Daniel Miller" <dmil...@amfes.com> Datum: 07.06.2019 22:21 Betreff: Re: [Assp-test] DKIMpassAction use case? On 6/6/2019 6:53 AM, K Post wrote: > Now that DKIMpassAction is no longer just a hidden option, can you > explain use scenarios again? I understand what the GUI is saying, I > just can think of reasons why anyone would want anything other than the > (newly) 0 default. > > DKIMWL and DKIMNP has been life changing for us. Really incredible. I'm > just not sure how DKIMpassAction would be beneficial above that. Can you give some examples of how you use those that are "life changing"? -- Daniel _______________________________________________ Assp-test mailing list Assp-test@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-test DISCLAIMER: ******************************************************* This email and any files transmitted with it may be confidential, legally privileged and protected in law and are intended solely for the use of the individual to whom it is addressed. This email was multiple times scanned for viruses. There should be no known virus in this email! *******************************************************
_______________________________________________ Assp-test mailing list Assp-test@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-test
