Hector Santos skrev den 2023-04-18 20:47:
So your verifier see Benny’s as suspicious because of arc=fail?
it does imho not fail on my own arc ?
Benny is telling the world “ietf.org [1] is authorize to resign on my behalf” via DNS. No headers required. No delayed learning necessary.
if all maillist did arc on incomming mails before mailman scrapled dkim then all will be good, only left is dmarc is not in all places tests arc results
its more waste that ietf add one more dkim signed keys, its not used at all in spamassassin unless one do welcomelist_from_dkim *@* ietf.org
What more is needed?
more dokument on dkim fails, basicly dkim should not defined any reject reasons, eg it should not be possible to reject in opendkim at all, this should be in opendmarc policy, not just random chain rejects
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc