Hi Arnout,
On 30.10.2024 17:43, Arnout Engelen wrote:
If we keep the 'From', AFAICS we *have* to disable rewriting the
`Reply-To`, right? Otherwise DKIM signatures will still be broken?
It depends on the signature, but probably yes. My provider (Fastmail)
signs the `Reply-To` fields by default, others might not do it.Note that
I switched to an external provider, after more than 20 years of
self-hosting. The blacklists that listed entire /24 or /16 networks,
just because a spammer used an neighboring address 5 years before,
became too much for me.
In that case, how would you respond to the list? Would you have to
type the list address each time?
It probably depends on the client. My client (Thunderbird) has a "Reply
to list" functionality. In GMail "Reply to all" includes the sender and
the list.
You mentioned in [1] that
dev@kafka.a.o is set up this way, but AFAICS that is not the case, see
e.g [2].
Sorry my mistake, I checked the "Reply" button of my client and it used
the sender address, so I didn't check the headers and assumed that the
`Reply-To` was not rewritten.
1) we could configure the list so that it changes the 'From' to the
list address. That way the email is valid SPF-wise and could be signed
with DKIM, since it's created on an apache.org mailserver. Ideally
this would keep the original sender somewhere as well, such as in the
Cc.
That is a possibility, although I personally like that my address
appears in the `From:` header.
Piotr
