On 04/09/2014 05:34 PM, John R Levine wrote:
Your user subscribes to the digest version of a list. When you get
mail from it, do you unpack the messages and check each included
message for a signature, or do you just see the list's signature on
the digest and deliver it?
You have perhaps pointed to a fairly elegant way for MLMs to deal with
p=reject:
* The majority of MLMs already implement a digest mode that sends from
the list submission address and doesn't trip over any
authentication-related difficulties, including DMARC's
* So, for messages that arrive from domains that are asserting
p=reject, repackage the message as though it were a digest
containing a single message.
* The From: header shows the list name and submission address as usual.
* The message passes DMARC's authentication rules as a message from
the list's domain, the sending domain's DMARC policy doesn't get in
the way.
* The message body describes who is speaking. It may make sense to use
a simplified template for this, but the existing template would work
to begin with.
* Just hitting reply no longer works of course, but (a) the user is
being presented with a message that looks as though it's "from" the
list anyway and (b) if someone does reply they'll get a template
message that makes clear that something unusual is going on.
* You even get the opportunity to insert a jab at the Domain Owner at
the top of the message by way of explaining why this message is
packaged differently ("This message is from [email protected]. The
owner of example.com doesn't permit long-customary mailing list
mechanisms to operate on message from that domain, so this message
is being repackaged as a message from the list." or similar) without
disrupting communication.
Setting aside the already-discussed concerns about who'll incur the
implementation cost, this takes out all of the technical problems, user
behaviour change constraints, MUA From:/Reply-To: frailty, SRS0-in-From:
abuse risks, etc.
- Roland
--
Roland Turner | Director, Labs
TrustSphere Pte Ltd | 3 Phillip Street #13-03, Singapore 048693
Mobile: +65 96700022 | Skype: roland.turner
[email protected] | http://www.trustsphere.com/
_______________________________________________
dmarc-discuss mailing list
[email protected]
http://www.dmarc.org/mailman/listinfo/dmarc-discuss
NOTE: Participating in this list means you agree to the DMARC Note Well terms
(http://www.dmarc.org/note_well.html)
