On 3/2/25 3:46 PM, Bryan Fields wrote:
There are two other options:
1. Rewrite the from for all messages
2. Implement ARC https://arc-spec.org/
Option one is a bit like a shotgun approach, but it works across all
providers, and is well understood. A number of other lists in our
industry do it with little issue; the -nsp lists and outages to name a
few. A receiver can view the headers and see if it's signed/valid
along the way.
Option two is outside the scope of migration, but arguably could be
the best as it directly solves the issue. Google does implement it.
Please don't implement ARC -- it's a waste of time and doesn't do what
it purports to do. The DKIM wg has just been rechartered and one of the
work items is for the list software to annotate the changes it made for
the receiver to recover the original signature. That has a much higher
likelihood of working.
Mike
_______________________________________________
NANOG mailing list
https://lists.nanog.org/archives/list/[email protected]/message/QFTHWH5HYS5GBAMIWVQTPZRZ7EXRSBDM/
