ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] Why mailing lists should strip DKIM signatures

2010-04-23 11:43:39
from [John Levine] [Permanent Link] 
If I understand correctly, you established a private arrangement with
Yahoo.  Yahoo chooses to create a unique interpretation for the
presence of a DKIM signature, which treats it as an override to the
MailFrom.


No, of course not.  This isn't a bounce, and the user didn't press
reply.  He pressed junk.  You appear to be saying that ARF reports
about spam should be sent to the bounce address in the spam.  That
seems unlikely to be effective.


And from this, you are asserting a new, general rule about DKIM
handling?


Well, no.  Yahoo is doing exactly with DKIM what we've been saying
that they should do, and it's producing a useless result.


The problem here is that Yahoo has added some deep semantics to a
DKIM signature and probably has not even documented or discussed it
properly.  Is there some reason not to first discuss this with Yahoo?


There's no new semantics, deep or othterwise.  Yahoo is treating the
signature as an assertion of responsibility -- it has my signature,
the recipient complained about it, they have reason to think I'm not
evil, so they sent me the complaint.  All that is fine, but the
problem is that for list mail, I'm not the one who can do anything
about it.

Mike asked how one could tell whether this was a complaint about all
mail from the list, or just mail from me.  I have my suspicions, but
I have no way to tell.  The only party who can is the human or
mechanical list manager who can look the pattern of complaints and
figure out the person is complaining about all the mail from the list,
in which case they should unsub him, or he's just comnplaining about
mail from me, in which case they might want to kick me off the list
if they agree with the complaints.

If a list adds its own signature and leaves the contributor's, now
it's up to heuristics by the recipient to guess what to do.  For list
mail, the correct guess is to treat the list as responsible.  Wouldn't
it be a better idea to avoid the guessing?

R's,
John
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Jason Long
Next by Date:  Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, John Levine
Previous by Thread:  Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Michael Thomas
Next by Thread:  Re: [ietf-dkim] Why mailing lists should strip DKIM signatures, Steve Atkins
Indexes:  [Date] [Thread] [Top] [All Lists]