> On 30 Oct 2024, at 17:54, Dirk-Willem van Gulik <di...@webweaving.org> wrote: > > On 30 Oct 2024, at 17:43, Arnout Engelen <enge...@apache.org> wrote: > > .... >> If we keep the 'From', AFAICS we *have* to disable rewriting the >> `Reply-To`, right? Otherwise DKIM signatures will still be broken? >> >> In that case, how would you respond to the list? Would you have to >> type the list address each time? You mentioned in [1] that > .... >> I see only 2 solutions: >> >> 1) we could configure the list so that it changes the 'From' to the >> list address. That way the email is valid SPF-wise and could be signed >> with DKIM, since it's created on an apache.org <http://apache.org/> >> mailserver. Ideally >> this would keep the original sender somewhere as well, such as in the >> Cc. >> 2) if this is not acceptable for some reason, perhaps we could >> implement ARC[3]. It seems to be designed for exactly this scenario, >> but I'm not sure how widely supported it is by receiving mailservers. > > A third one I see on some lists (e.g. in the IETF) is where the From is > indeed changed as per 1 - but with a personal twist; so it becomes > > Dirk-Willem van Gulik (via the ACME-Discuss Mailing list) > <acme-discuss-dirkx=webweaving....@some.fully.qdn.org> > or > Dirk-Willem van Gulik (via the ACME-Discuss Mailing list) > <acme-discuss-$gibber...@some.fully.qdn.org> > > where gibberish is something that is matched back.
It’s because a mail server out there can’t send email from other domains with SPF, like my domain. Many recipients will simply throw away if the mailing list server tries sending from “edvina.net <http://edvina.net/>”. I also believe that fpr ietf.org <http://ietf.org/> mailing lists there’s a NAT-like ability to response within a short time. Other mail servers set the From to the mailing list and add the sender as a cc: so that “replay all” works. /O
