[ClusterLabs] Antw: Re: Antw: [EXT] Re: @ maillist Admins ‑ DMARC (yahoo)

Andrei Borzenkov arvidjaar at gmail.com
Wed Jul 14 03:37:08 EDT 2021


On Wed, Jul 14, 2021 at 10:21 AM Ulrich Windl
<Ulrich.Windl at rz.uni-regensburg.de> wrote:
>
> What I meant is:
> The original signature confirms that the message is from the submitter
> (author).
> After mangling the message, you can't re-testify that the message is still
> from that author, but you can testify that the message is from the list.
> (And maybe the list can add a remark whether the original message looked
> authentic)
>

That is what ARC (Authenticated Received Chain) does. But

- it has to be supported by mail list software
- it has to be supported by each recipient mail server (so it is out
of control of mail list software)
- recipient server needs to trust mail list server before it can
accept this information

The latter especially looks problematic on a large scale ...


More information about the Users mailing list