Ahoj, Dňa Sun, 4 Feb 2024 16:02:31 +0100 Matus UHLAR - fantomas via mailop <[email protected]> napísal:
> Does anyone blindly trust ARC signatures from random domains? How one can trust that, if one don't know how (or if at all) original was checked? If i will blindly trust to that, i don't need to check SPF, DKIM, DMARC nor ARC at all and save world... > I find it a huge difference between DKIM signatures (I sign this mail > being from my domain) and ARC signature (I sign that this mail was > received from whitehouse.gov properly verified and signed). Yes, DKIM is slightly more reliable, as one sign own mails, ARC signs others/foreign mails... The only one, who is worst to trust (for me) am i, or perhaps partially trust on per-user base, in mean to trust particular ARC signer for particular recipient (user's own forwarded mails), but my environment is not prepared to this. rspamd has allows to define trustworthy ARC signers, but built-in system is on per ARC's domain only, to get it per user, one have to develop something own (IMO not as complicated as it can sound, but i never try that). regards -- Slavko https://www.slavino.sk
pgpIUjfv9XZpM.pgp
Description: Digitálny podpis OpenPGP
_______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
