Il giorno 26/ago/2011, alle ore 22:18, Murray S. Kucherawy ha scritto:
>> -----Original Message-----
>> From: opendkim-users-bounce_at_lists.opendkim.org [mailto:opendkim-users-bounce_at_lists.opendkim.org] On Behalf Of Giovanni Bajo
>> Sent: Friday, August 26, 2011 12:14 PM
>> To: Murray S. Kucherawy
>> Cc: opendkim-users_at_lists.opendkim.org
>> Subject: Re: opendkim-genkey and "r=" tag
>>
>> OK thank you for the clarification. So it looks like our setup of using
>> SenderHeaders is the correct current way of achieving mailing-list
>> support. Any reason why "Sender,From" isn't the default for that
>> option? It looks like it would make the right thing for most mailing
>> list managers and simplify supporting them with opendkim, but I might
>> be overlooking some other implications.
>
> Simply that not all lists add a Sender field, and there's nothing preventing a spammer from adding one.
> If (as it is with milter) the DKIM verdict is distilled down to a single yes/no, the preferred domain should probably be the one the user actually will see, which is almost always the From field.
Oh right, because SenderHeaders is used for both verification and signing.
What about splitting it in two, and defaulting SigningSenderHeaders to "List-Post,From", and VerifyingSenderHeaders to "From,To"?
--
Giovanni Bajo :: rasky_at_develer.com
Develer S.r.l. :: http://www.develer.com
My Blog: http://giovanni.bajo.it
Received on Sat Aug 27 2011 - 00:19:29 PST