On Sat, 16 Jan 2016 08:00:49 PM Erik Christiansen via luv-main wrote:
On 15.01.16 19:01, Russell Coker via luv-main wrote:
It cares about what the user sees. The purpose of DKIM is not to ensure that only Paypal can have an envelope sender saying paypal.com, it's purpose is to ensure that only Paypal can have a From: field with paypal.com.
If that is the goal, do we not evilly abuse it by using it to ensure that list members _cannot_ have a genuine From: field? The reason that mutt's ~(~P) pattern no longer identifies my posts is that the header munge munges them as authored by the list server. Faking the From: field is what spammers do, innit?
The user visible From field is to tell the user where the message came from. In this case it came from a mailing list. The list server verifies the message it receives, processes it, and sends a new message out. One could argue that Mailman should create a new Message-ID when doing so, but it is convenient to have the same Message-ID through the process. -- My Main Blog http://etbe.coker.com.au/ My Documents Blog http://doc.coker.com.au/