Re: Domainkeys and ISPs

To: debian-isp@lists.debian.org
Subject: Re: Domainkeys and ISPs
From: Lionel Elie Mamane <lionel@mamane.lu>
Date: Mon, 17 Mar 2008 11:54:51 +0100
Message-id: <20080317105451.GA18823@capsaicin.mamane.lu>
Mail-followup-to: Lionel Elie Mamane <lionel@mamane.lu>, debian-isp@lists.debian.org
In-reply-to: <47DB3180.8000700@goirand.fr>
References: <008a01c8845e$38fd0f40$9e00a8c0@D9300> <7ff145960803121144j7b4e7c52u5eb22ff5ff9467b5@mail.gmail.com> <20080313112048.GB20883@fantomas.sk> <47D94BB5.1030204@goirand.fr> <20080313214300.GA17330@capsaicin.mamane.lu> <47D9B2A2.2030606@goirand.fr> <20080314065858.GA25311@capsaicin.mamane.lu> <47DA307D.7000704@goirand.fr> <20080314130416.GA32005@capsaicin.mamane.lu> <47DB3180.8000700@goirand.fr>

On Sat, Mar 15, 2008 at 10:16:32AM +0800, Thomas Goirand wrote:
> Lionel Elie Mamane wrote:

>>> Isn't DKIM supposed to be an auth for the From: field?

>> Well, then transpose my whole argument to the From: field. It
>> doesn't make much of a difference.

> Of course it does!

> If somebody is sending with a From: with a domain installed on my
> server, then it's going to be either sent from localhost, or using
> smtp with auth.

I don't see why this implication would hold. A domain "installed on
your server" is a domain for which you are MX; that means that mail
*to* that domain goes to your server, not that mail *from* that domain
originates from your server. For a concrete example, I host the
conuropsis.org domain, and various users have various email addresses
in that domain. If they send email to your users, using their
@conuropsis.org address in the "From:" header, why would my server be
involved? They don't need to SMTP-auth send it to me, they can send it
directly to *your* machine, or their ISP's smarthost (which will send
it to your machine).

Now, if one of my users send email to another @conuropsis.org address,
and they use their ISP's smarthost to send all their mail, obviously
this ISP's outgoing SMTP server will not have an SMTP-auth
relationship with my MX; in this case, I do get an email with a domain
"installed on my server" in the "From:" field, that comes in from a
foreign IP address (not localhost), and not with SMTP-auth.

-- 
Lionel

Reply to:

Follow-Ups:
- Re: Domainkeys and ISPs
  - From: Matus UHLAR - fantomas <uhlar@fantomas.sk>

References:
- Re: Domainkeys and ISPs
  - From: "Andrew McGlashan" <andrew.mcglashan@affinityvision.com.au>
- Re: Domainkeys and ISPs
  - From: "Jim Popovitch" <yahoo@jimpop.com>
- Re: Domainkeys and ISPs
  - From: Matus UHLAR - fantomas <uhlar@fantomas.sk>
- Re: Domainkeys and ISPs
  - From: Thomas Goirand <thomas@goirand.fr>
- Re: Domainkeys and ISPs
  - From: Lionel Elie Mamane <lionel@mamane.lu>
- Re: Domainkeys and ISPs
  - From: Thomas Goirand <thomas@goirand.fr>
- Re: Domainkeys and ISPs
  - From: Lionel Elie Mamane <lionel@mamane.lu>
- Re: Domainkeys and ISPs
  - From: Thomas Goirand <thomas@goirand.fr>
- Re: Domainkeys and ISPs
  - From: Lionel Elie Mamane <lionel@mamane.lu>
- Re: Domainkeys and ISPs
  - From: Thomas Goirand <thomas@goirand.fr>

Prev by Date: synchroniser
Next by Date: Re: Domainkeys and ISPs
Previous by thread: Re: Domainkeys and ISPs
Next by thread: Re: Domainkeys and ISPs
Index(es):
- Date
- Thread