Skip site navigation (1)Skip section navigation (2)
Date:      26 Nov 2018 21:25:14 -0500
From:      "John R. Levine" <johnl@iecc.com>
To:        "Victor Sudakov" <vas@mpeks.tomsk.su>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: Invalid DKIM signatures in this list
Message-ID:  <alpine.OSX.2.21.1811262122261.73238@ary.qy>
In-Reply-To: <20181127015856.GA79319@admin.sibptus.ru>
References:  <20181126125259.GB86999@admin.sibptus.ru> <20181126172133.CDCDB2008E6098@ary.qy> <20181127015856.GA79319@admin.sibptus.ru>

next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 27 Nov 2018, Victor Sudakov wrote:
> The problem is in FreeBSD's mailing list manager which is broken IMHO.

If you are saying that it's broken because it's not deleting old DKIM 
signtures, I'm sorry, but you're simply mistaken.  I helped write the DKIM 
specs so I'm not guessing here.

> See RFC 6377
>
> "The best general recommendation for dealing with MLMs is that the MLM
>   or an MTA in the MLM's domain apply its own DKIM signature to each
>   message it forwards and that assessors on the receiving end consider
>   the MLM's domain signature in making their assessments.  (See
>   Section 5, especially Section 5.2.)"

I helped write that RFC.  It was and is just guessing.  While it would 
be a good idea for the lists to add their own signature, they're not 
broken if they don't.  And that says nothing about deleting old 
signatures.

Regards,
John Levine, johnl@iecc.com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.OSX.2.21.1811262122261.73238>