Heho, This is indeed--to a degree--an issue. In general, I'd argue that MLs should pretty much behave like mail-op; I.e.: Rewrite sender; In addition, one might also want to strip existing DKIM and/or re-sign the message with one's own key.
Alternatively, you can also investigate whether there are ways to not break DKIM upon ML posting; I had my own endeavor with the implications of DMARC/DKIM/SPF and MLs recently: https://doing-stupid-things.as59645.net/email/mailinglists/dmarc/2022/05/19/sending-an-email.html Ultimately, DMARC, DKIM, and SPF will not be going away, and if you want to deliver to 'the big ones' you essentially must have it in place. So, if you want to keep providing a working service (and no judgement on the implications and interrelations there, and whether this makes sense; I have a ton of opinions on that, but that goes way beyond the scope of this ML), I guess there is no path that does not go through deploying SPF/DKIM/DMARC yourself and finding ways to make your MLs play along with sender domains that have it deployed as well. With best regards, Tobias _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
