On Fri, Sep 16, 2022 at 3:36 PM John Levine via mailop <mailop@mailop.org> wrote:
> It appears that Gellner, Oliver via mailop <oliver.gell...@dm.de> said: > > > >> Am 16.09.2022 um 19:22 schrieb Grant Taylor via mailop < > mailop@mailop.org>: > >> The mailing list is the terminus of the message that I'm typing. The > mailing list is also a origination point of a new message substantively > based on the contents of my message. But it is not my email. As such, I > fully believe that the emails that the mailing list sends should be > >wholly from the mailing list, perhaps with my name in the human friendly > part of the from address while the actual email address reflects the mailop > mailing list. > > Yeah, that's the lousy workaround most people use to avoid DMARC breakage. > > For thirty years we all used mailing lists that didn't mess with the > author's name or address, so you could easily reply eiher to the > authors or the list (and please don't mansplain to me what Reply-To > does.) That stopped working when AOL and Yahoo repurposed DMARC to > outsource the support costs of incoming spam due to their own security > failures. > For 30 years, we allowed mailing lists to modify messages and take partial "ownership" of them (the mailing list gets the bounces), without modifying who the message was "from". When digital signatures were introduced and then linking them to the sender, it made that untenable... but the reason we added the signature and linkage was because of bad actors, and the number of "we always did it this way" things that have fallen to our fight with bad actors has been quite large. So, while AOL & Yahoo were the vanguard for mass consumer providers, the problems were already being experienced by many corporate domains before that, and even more since. Brandon
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
