Alessandro Vesely writes: > On Fri 28/Feb/2025 14:27:25 +0100 Douglas Foster wrote: > > The issue of ARC trust is irrelevant to the topic that Ale has > > raised. ARC is useful for an evaluator to detect forwarding, but > > it is useless for the problem of "From munging" that has consumed > > so much time in this WG. > > By transferring trust to the user, it only remains to detect > forwarding, which is what ARC is used for. From: munging can then be > omitted.
And in most cases of "wanted" forwarding, user already knows about that. When I added .forward in netbsd.org to forward my emails to me, I know I put it there, and I do trust netbsd.org enough that I can trust their ARC headers are generated correctly and if they say spf=pass, dkim=pass I can trust that even if they do not pass in my final destination. When I joined the IETF mailing-list I also did that on purpose, and I know that ietf.org is forwarding emails to me, so I can again trust ARC headers generated by ietf.org... Of course one of the problem is that ietf.org does not generate ARC header. Another problem is that my email filtering do check ARC, but spamassassin can only validate ARC signatures, I do not think there is a way to say that it should set SPF/DKIM/DMARC test results based on the valid ARC signature from trusted source, so I can't really use the ARC signatures yet. -- kivi...@iki.fi _______________________________________________ dmarc mailing list -- dmarc@ietf.org To unsubscribe send an email to dmarc-le...@ietf.org
