Re: Domainkeys and ISPs

To: debian-isp@lists.debian.org
Subject: Re: Domainkeys and ISPs
From: Thomas Goirand <thomas@goirand.fr>
Date: Sat, 15 Mar 2008 10:16:32 +0800
Message-id: <47DB3180.8000700@goirand.fr>
In-reply-to: <20080314130416.GA32005@capsaicin.mamane.lu>
References: <20080312132232.GB11516@saneinc.net> <47D7FFC9.4080101@goirand.fr> <008a01c8845e$38fd0f40$9e00a8c0@D9300> <7ff145960803121144j7b4e7c52u5eb22ff5ff9467b5@mail.gmail.com> <20080313112048.GB20883@fantomas.sk> <47D94BB5.1030204@goirand.fr> <20080313214300.GA17330@capsaicin.mamane.lu> <47D9B2A2.2030606@goirand.fr> <20080314065858.GA25311@capsaicin.mamane.lu> <47DA307D.7000704@goirand.fr> <20080314130416.GA32005@capsaicin.mamane.lu>

Lionel Elie Mamane wrote:
> On Fri, Mar 14, 2008 at 03:59:57PM +0800, Thomas Goirand wrote:
>> Lionel Elie Mamane wrote:
>>> On Fri, Mar 14, 2008 at 07:02:58AM +0800, Thomas Goirand wrote:
> 
>>>> Anyway, I don't think it's based  on the return-path: field...
> 
>>> I was refering to the return path in the SMTP envelope, obviously. If
>>> the "the list of domains for which it signs mail" is not a list of
>>> domains for the return path / sender in the SMTP envelope, then it is
>>> a list of domains for *what*?
> 
>> Isn't DKIM supposed to be an auth for the From: field?
> 
> Well, then transpose my whole argument to the From: field. It doesn't
> make much of a difference.

Of course it does!

If somebody is sending with a From: with a domain installed on my
server, then it's going to be either sent from localhost, or using smtp
with auth. In that case, the mail should be signed, which will be the
case as the email is on my domain list. Any other possibility should be
blocked, as it might be some forgery. The normal postfix rules apply...

If the email is coming from another domain, then it will NOT be signed,
as it's coming from a domain that is not in our list.

Then the mail is forwarded.

What do you see that doesn't work on what I just wrote? To me,
everything is fine the way it is at the moment!

Thomas

Reply to:

Follow-Ups:
- Re: Domainkeys and ISPs
  - From: Joe Emenaker <joe@emenaker.com>
- Re: Domainkeys and ISPs
  - From: Lionel Elie Mamane <lionel@mamane.lu>

References:
- Re: Domainkeys and ISPs
  - From: Michael Sprague <mfs@saneinc.net>
- Re: Domainkeys and ISPs
  - From: Thomas Goirand <thomas@goirand.fr>
- Re: Domainkeys and ISPs
  - From: "Andrew McGlashan" <andrew.mcglashan@affinityvision.com.au>
- Re: Domainkeys and ISPs
  - From: "Jim Popovitch" <yahoo@jimpop.com>
- Re: Domainkeys and ISPs
  - From: Matus UHLAR - fantomas <uhlar@fantomas.sk>
- Re: Domainkeys and ISPs
  - From: Thomas Goirand <thomas@goirand.fr>
- Re: Domainkeys and ISPs
  - From: Lionel Elie Mamane <lionel@mamane.lu>
- Re: Domainkeys and ISPs
  - From: Thomas Goirand <thomas@goirand.fr>
- Re: Domainkeys and ISPs
  - From: Lionel Elie Mamane <lionel@mamane.lu>
- Re: Domainkeys and ISPs
  - From: Thomas Goirand <thomas@goirand.fr>
- Re: Domainkeys and ISPs
  - From: Lionel Elie Mamane <lionel@mamane.lu>

Prev by Date: Re: Domainkeys and ISPs
Next by Date: Re: Domainkeys and ISPs
Previous by thread: Re: Domainkeys and ISPs
Next by thread: Re: Domainkeys and ISPs
Index(es):
- Date
- Thread