On Thu, Aug 29, 2024 at 04:02:49PM -0400, Kevin A. McGrail via mailop wrote:
> And reading some of the other responses, because the emails are being
> forwarded, I'm assuming that DKIM wouldn't pass [...]
The most signficant benefit of DKIM message content authentication over
SPF is precisely that it is end-to-end and survives SMTP relaying.
The spammer is not "forwarding" the message by interpolating a rendition
of its content into a new different message. They are sending the exact
same message as received. This does not break DKIM signatures.
> so I don't think this is about the DKIM signatures.
It very probably is.
> subject change like Fwd:? Are you DKIM signing anything like the To and Cc
> headers?
The "To:" and "Cc:" headers in a message to a list just mention the
list, in any case, you seem to be confusing the message headers with
the SMTP envelope. Reinjecting verbatim messages to new recipients
does not involve changing the headers in any way.
--
Viktor.
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
