nanog mailing list archives
Re: Microsoft O365 labels nanog potential fraud?
From: Mel Beckman <mel () beckman org>
Date: Wed, 29 Mar 2017 15:17:27 +0000
Bill, If that's the case, then Microsoft appears to be at fault here. I'll try opening a ticket (I know. Windmills :) -mel On Mar 29, 2017, at 8:13 AM, William Herrin <bill () herrin us<mailto:bill () herrin us>> wrote: On Wed, Mar 29, 2017 at 3:04 AM, DaKnOb <daknob.mac () gmail com<mailto:daknob.mac () gmail com>> wrote: Usually mailing lists act like e-mail spoofers as far as SPF and DKIM is concerned. These two systems above try to minimize spoofed e-mail by doing the following: SPF: Each domain adds a list of IP Addresses that are allowed to send e-mail on their behalf. DKIM: Each email sent by an "original" mail server is cryptographically signed with a key available, again, in the DNS. When you send an e-mail to a list, you send it to the mailing list mail server. After that, of the server forwards that e-mail to the recipients, its original address is shown, therefore if Outlook checks for SPF records, that check will fail. An easy way to get around this is for the list to change the From field to something else, like "Mel Beckman via NANOG" and a local email address. However, when you send that email, it may also be signed with DKIM: any change in subject (say "[NANOG]" is added) or the body (say "You received this email because you subscribed to NANOG" is appended) will also cause that check to fail. Hello, Both SPF and DKIM are meant to be checked against the domain in the envelope sender (SMTP protocol-level return address) which the NANOG list sets to nanog-bounces () nanog org<mailto:nanog-bounces () nanog org>. Checking against the message header "from" address is an incorrect implementation which will break essentially all mailing lists. Regards, Bill Herrin -- William Herrin ................ herrin () dirtside com<mailto:herrin () dirtside com> bill () herrin us<mailto:bill () herrin us> Dirtside Systems ......... Web: <http://www.dirtside.com/>
Current thread:
- Microsoft O365 labels nanog potential fraud? Mel Beckman (Mar 28)
- Re: Microsoft O365 labels nanog potential fraud? DaKnOb (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Mel Beckman (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Grant Taylor via NANOG (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Leo Bicknell (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Brad Knowles (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Florian Weimer (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Mel Beckman (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? DaKnOb (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? William Herrin (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Mel Beckman (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Grant Taylor via NANOG (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? William Herrin (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? DaKnOb (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Carl Byington (Mar 29)
- RE: Microsoft O365 labels nanog potential fraud? Keith Medcalf (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Alan Hodgson (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? William Herrin (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Carl Byington (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Alan Hodgson (Mar 29)
- Re: Microsoft O365 labels nanog potential fraud? Mark Andrews (Mar 29)