Re: [dmarc-ietf] Debugging and preventing DKIM failures- suggestion

Thu, 30 May 2019 19:51:22 -0700 

 Thank you for the education The IETF list processor seems to be an 
illustration of your point.
        It invalidates the orginal sender's signature   Then it adds an 
ietf.org 
signature       Then the message is relayed internally within a single IETF 
server, where the IETF signature is invalidated.        The the message is 
signed 
a second time with an valid IETF signature 
 I rather hoped that IETF would be the poster-boy for list processing done 
correctly.  Why is the message manipulation that you describe necessary or 
acceptable?
  
 Deeply puzzled,
  
 Doug Foster

  
  
  

----------------------------------------
 From: "John R Levine" <[email protected]>
Sent: Thursday, May 30, 2019 5:19 PM
To: "Murray S. Kucherawy" <[email protected]>
Cc: "IETF DMARC WG" <[email protected]>
Subject: Re: [dmarc-ietf] Debugging and preventing DKIM failures- 
suggestion   
> And as John said, there have been numerous proposals over the years of 
ways
> to annotate a message with what "standard" mutations were done so that 
at
> verification time the receiver could decide which mutations it was 
willing
> to forgive, but the community showed no interest in such complexities.

It is my impression that the proponents of this idea tended not to be very
familiar with mailing list software and imagined that most mutations were
simple, like adding a subject tag or a text footer. Those happen, but
they are the very tip of the iceberg. Modern list managers add, delete,
and reorder MIME parts, flatten HTML into text, and a huge list of other
things that no mutuation catalog could plausibly describe.

That's one of the reasons that ARC doesn't try to say what's changed, just
what the authentication results were before and after.

Regards,
John Levine, [email protected], Taughannock Networks, Trumansburg NY
Please consider the environment before reading this e-mail. https://jl.ly

_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
 


_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc

Reply via email to