[onionmx] Meeting?
doobry
doobry at systemli.org
Mon Apr 9 22:12:36 CEST 2018
Am 09.04.2018 um 20:30 schrieb micah via onionmx:
> micah <micah at riseup.net> writes:
>
>> ng <ng at immerda.ch> writes:
>>
>>> Hi all,
>>>
>>>> Some ML software now rewrite From to avoid such issues with DMARC.
>>>> Message came from Mailman 2.1.15 (according to headers), maybe immerda
>>>> should update to 2.1.18 where DMARC is available
>>>> (https://wiki.list.org/DEV/DMARC mailman DMARC support)
>>>
>>> As one should see in the headers, the mailman installation got updated.
>>> Although the used version back then already had patches regarding DMARC
>>> backported. Anyway for now latest upstream (in the 2 release cycle) was
>>> installed and will be tracked.
>>>
>>> Can we verify whether this mitigated the problem for now?
>>
>> Thanks for that. Your message came through as whitelisted on my side. I
>> need to check what happens with this message, because it is sent from
>> @riseup.net.
>
> It still got caught, but lets try another.
Yeah, this time with enforced DMARC mitigation, even for sender domains
without DMARC policy (or with DMARC policy=none), right? ;)
In other words, mailinglists that want to deliver mail from riseup
addresses will have to set privacy/sender/dmarc_none_moderation_action
to 'yes' (which is *not* the default, IMHO for a good reason), right?
I still think that you should disable the whole RISEUP_SPF_TRUE check
alltogether for mails with sender host == localhost. But that's just my
opinion :)
Cheers
doobry
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists-11.immerda.ch/pipermail/onionmx/attachments/20180409/a0490dec/attachment.sig>
More information about the onionmx
mailing list