On 20 Jan 2025, at 16:49, Richard Clayton wrote: > not really ... the issue that had been overlooked relates to a good > sender who hires someone to send their mail. One of the destinations > fails and the report goes back to the sender not to the intermediary who > is looking after the destination list. The same issue arises with > mailing lists in that individual contributors learn of delivery failures > whereas it is in really a matter for the list owner to deal with.
Please check my understanding of this: In this situation, wouldn’t the good sender use their own address (not their client’s) as the MAIL FROM address (which presumably is signed now), and wouldn’t the bounce go to that address normally? It’s not clear to me that one needs to walk back down the chain to have the bounce go to the right place. > the back-scatter issue relates to accepting email via a chain of > intermediaries and being unable to generate a delivery failure report > because of the risk of forgery... (so related, but a different balance > of good and evil). I guess in this case the bogus sender might forge a MAIL FROM address and DKIM2 sign with that address, causing the bounce to be misdirected. Have I got those situations right? -Jim _______________________________________________ Ietf-dkim mailing list -- ietf-dkim@ietf.org To unsubscribe send an email to ietf-dkim-le...@ietf.org
