Am 27.03.21 um 15:29 schrieb Hans-Martin Mosner: > Forwarding is most often used by recipients to achieve their > preferred way of handling mail, so rejecting mails that they want to > receive would mean you ignore their wishes as recipients in > favor of the wishes of the senders who often don't take these > machanisms into account.
The recipient should be in control of the rules. If a recipient wants to bypass any spam controls for mail coming from an IP from which they forward, they should be able to. Or to let [email protected] receive known-malicious mail. It's all fair game. The problem is that mail providers (that I know of) don't allow that granularity to the customers and instead end up second-guessing if the customer would want to override it or not, which weakens the ecosystem. On 2021-03-27 at 15:43 +0100, Hans-Martin Mosner via mailop wrote: > I just noticed that the mails in this mailing list are such an > example. Apparently the mailing list system does not > perform DMARC mitigation on mails, so the original sender's DKIM > signatures become invalid. If you had a DMARC policy of > "reject" and our mail system would strictly adhere to the policy, > your mail would be rejected. Is that your (the > sender's) will? > > Cheers, > Hans-Martin What's your plan for handling mailing lists? Even if you leave them in a spam folder, that will surely upset some of your customers. Also, are you going to expose the reason to the user? Thinking how to design a system like this, I would probably add a banner when viewing those spamboxed mails: > Marked as spam because it falsely claims to come from example.com, > and example.com explicitly requested all such mail to be > [quarantined|discarded] <More info> And, if the mail has mailing list headers, add a second link: > Skip this check for mail from «For mail operators <mailop.mailop.org>» Obviously, <More info> would lead to a page explaining in more detail (but still in layman terms) that a sender requests that using DMARC and the mail wasn't signed by example.com nor came from any of the servers stated are the only ones sending legitimate mail on behalf of them. And 'Skip this check' would add it to a per-recipient list of mailing lists he is subscribed to, which provides a direct pass to the inbox (assuming alignment for the mailing list itself). If the list went rogue or the user wanted to unsubscribe, he could remove that exception from his account preferences. Best regards _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
