No, all it says is "we signed this mail." A signer with a good
reputation will presumably rarely sign mail where the From: address
actively misidentifies the sender, but that's a second order effect.
Right, and because the domain owner has signed the email, they can be held
responsible for abuse. At least, to a greater extent than when the mail
hasn't touched any system that they have any control over.
It is certainly reasonable to say that the signer has a good reputation,
so we will accept his mail. But that's different from saying that the
signer has a good reputation, so the From: address must be "real".
Once again, this sounds like a solution searching for a problem. I've
done the occasional bozofiltering in mailing lists, but because the
people were bozos, not spammers.
The problem is reputation assignment. Different recipients (of mail from the
same list) will have different views of the sender's reputation.
But, the problem is real, and recognised. Mailing lists break signatures.
It is certainly a fact that mailing lists break signatures. But there are
differences of opinion whether it's a problem. Although I've seen plenty
of assertions that it's a problem, we're a bit thin with real life as
opposed to hypothetical scenarios where the broken signature leads to bad
results.
The only one I've seen so far is the ADSP+list -> lost or rejected mail.
I would say that is misuse of ADSP, not a list problem, since we were
quite aware of it and in Appendix B of RFC 5617 we say not to do that.
R's,
John
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html