On Fri, 5 May 2017, David Jones wrote:
I think I would have to write a simple SA plugin to compare the
envelope-from with the DKIM signature domain to see if they matched
then I could use a meta rule to glue all of this together.
From: Matus UHLAR - fantomas
agreed but there's still one thing
From: RW
>On Sat, 6 May 2017 13:28:30 +
>David Jones wrote:
> From what I can tell, the
>> whitelist_from_dkim only works on DKIM_VALID_AU hits which means the
>> DKIM signature domain aligns with the header-from. Based on my
>> analysis of my email, if email has passed through my Postf
On Sat, 6 May 2017 13:28:30 +
David Jones wrote:
From what I can tell, the
> whitelist_from_dkim only works on DKIM_VALID_AU hits which means the
> DKIM signature domain aligns with the header-from. Based on my
> analysis of my email, if email has passed through my Postfix
> postscreen scrut
From: RW
>On Fri, 5 May 2017 22:49:43 +
>David Jones wrote:
>> From: RW
>>
>> >On Fri, 5 May 2017 19:56:27 +
>> >David Jones wrote:
>>
>> >> >I don't seen why anyone one would want a form of whitelisting
>> >> >where a DKIM pass on a trusted domain would be ignored if there'
On Fri, 5 May 2017 22:49:43 +
David Jones wrote:
> From: RW
>
> >On Fri, 5 May 2017 19:56:27 +
> >David Jones wrote:
>
> >> >I don't seen why anyone one would want a form of whitelisting
> >> >where a DKIM pass on a trusted domain would be ignored if there's
> >> >no SPF pass.
On Sat, 6 May 2017 00:32:22 +0200
Reindl Harald wrote:
> Am 06.05.2017 um 00:15 schrieb RW:
> >> This is why I only add envelope-from domains to my
> >> whitelist_auth list that is currently 2,595 entries.
> >
> >
> > That's not a good idea. When you don't feel you can just put a
> > "header f
From: RW
>On Fri, 5 May 2017 19:56:27 +
>David Jones wrote:
>> >I don't seen why anyone one would want a form of whitelisting where a
>> >DKIM pass on a trusted domain would be ignored if there's no SPF
>> >pass.
>>
>> Correct.
>I don't know why you write "correct" and then go on
>From: Matus UHLAR - fantomas
On Fri, 5 May 2017, David Jones wrote:
> I think I would have to write a simple SA plugin to compare the
> envelope-from with the DKIM signature domain to see if they matched
> then I could use a meta rule to glue all of this together.
>>>J
On Fri, 5 May 2017 19:56:27 +
David Jones wrote:
> >Alignment of the two from address is needed in DMARC so that SPF can
> >match on the same domain that the MUA displays (if it even does). It
> >doesn't do anything for DKIM.
>
> Did you read that returnpath.com link above about DMARC pas
On Fri, 5 May 2017, David Jones wrote:
I think I would have to write a simple SA plugin to compare the
envelope-from with the DKIM signature domain to see if they matched
then I could use a meta rule to glue all of this together.
John Hardin skrev den 2017-05-05 21:45:
Or file a bug to get i
>From: Benny Pedersen
>John Hardin skrev den 2017-05-05 21:45:
>> On Fri, 5 May 2017, David Jones wrote:
>>
>>> I think I would have to write a simple SA plugin to compare the
>>> envelope-from with the DKIM signature domain to see if they matched
>>> then I could use a meta rule to glue a
John Hardin skrev den 2017-05-05 21:45:
On Fri, 5 May 2017, David Jones wrote:
I think I would have to write a simple SA plugin to compare the
envelope-from with the DKIM signature domain to see if they matched
then I could use a meta rule to glue all of this together.
Or file a bug to get i
From: RW
>On Fri, 5 May 2017 17:45:37 +
>David Jones wrote:
>> From: RW
>>
>> >On Fri, 5 May 2017 14:51:32 +
>> >David Jones wrote:
>>
>> >> >I know. I do not want to validate the envelope from with DKIM. I
>> >> >just want to know if the mail was DKIM-VALID signed by the DO
On Fri, 5 May 2017, David Jones wrote:
I think I would have to write a simple SA plugin to compare the
envelope-from with the DKIM signature domain to see if they matched then
I could use a meta rule to glue all of this together.
Or file a bug to get it implemented in the base DKIM plugin. I
On Fri, 5 May 2017 17:45:37 +
David Jones wrote:
> From: RW
>
> >On Fri, 5 May 2017 14:51:32 +
> >David Jones wrote:
>
> >> >I know. I do not want to validate the envelope from with DKIM. I
> >> >just want to know if the mail was DKIM-VALID signed by the DOMAIN
> >> >used in the e
On Fri, 5 May 2017 19:51:23 +0100
RW wrote:
Sorry, that was sent by accident.
On Fri, 5 May 2017 17:45:37 +
David Jones wrote:
> From: RW
>
> >On Fri, 5 May 2017 14:51:32 +
> >David Jones wrote:
>
> >> >I know. I do not want to validate the envelope from with DKIM. I
> >> >just want to know if the mail was DKIM-VALID signed by the DOMAIN
> >> >used in the e
From: RW
>On Fri, 5 May 2017 14:51:32 +
>David Jones wrote:
>> >I know. I do not want to validate the envelope from with DKIM. I
>> >just want to know if the mail was DKIM-VALID signed by the DOMAIN
>> >used in the envelopefrom.
>>
>> >So the only thing I want with the envelop from is
On Fri, 5 May 2017 14:51:32 +
David Jones wrote:
> >I know. I do not want to validate the envelope from with DKIM. I
> >just want to know if the mail was DKIM-VALID signed by the DOMAIN
> >used in the envelopefrom.
>
> >So the only thing I want with the envelop from is to extract the
> >dom
On 2017-05-05 16:00, Merijn van den Kroonenberg wrote:
> So the only thing I want with the envelop from is to extract the
> domain and test if the mail was DKIM signed (and valid) by that
> domain.
>
> This tells me the envelope from is not some random spoofed address,
> but actually controlled b
From: Merijn van den Kroonenberg
>> On 05.05.17 11:37, Merijn van den Kroonenberg wrote:
>>>I want to test in SA if the Envelope From domain is DKIM_VALID.
>>
>> the envelope from can't be DKIM-VALID. DKIM validated message content,
>> including some of its headers, not envelope from address.
> On 05.05.17 11:37, Merijn van den Kroonenberg wrote:
>>I want to test in SA if the Envelope From domain is DKIM_VALID.
>
> the envelope from can't be DKIM-VALID. DKIM validated message content,
> including some of its headers, not envelope from address.
I know. I do not want to validate the enve
On 05.05.17 11:37, Merijn van den Kroonenberg wrote:
I want to test in SA if the Envelope From domain is DKIM_VALID.
the envelope from can't be DKIM-VALID. DKIM validated message content,
including some of its headers, not envelope from address.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; h
ed and valid for a specific
domain, namely the domain from the enevelope sender.
>
>> I do some processing of SA maillogs and they contain the EnvelopeFrom
>> address (and not the From address) and I would like to know if they
>> are DKIM_VALID.
>
> envelopefrom is not par
they
are DKIM_VALID.
envelopefrom is not part of dkim
Till now I have been using DKIM_VALID_AU, but this information is no
good if HEADER_FROM_DIFFERENT_DOMAINS is hit (difference between From
and EnvelopeFrom).
this is not dkim related, dkim pass is no good ?, how can i post to you
on
Hi,
I want to test in SA if the Envelope From domain is DKIM_VALID.
I do some processing of SA maillogs and they contain the EnvelopeFrom
address (and not the From address) and I would like to know if they are
DKIM_VALID.
Till now I have been using DKIM_VALID_AU, but this information is no good
26 matches
Mail list logo