Jonesy wrote:
The
lists.pearsoncomputing.net is re-emailing all
subscribed incoming
emails to the user list. Each of those emails _claims_ to be From:
the
original sender. But, when Gmail (or whoever) asks if the original
sender (e.g. Jonesy <trinity(a)jonz.net> ) is authorized to send via
that
MTA, the answer is "NO".
Earlier today messages on the list prompted me to enable DKIM, now I'm
regretting it. It would seem anyone posting with a DKIM header is at
risk. Intersting thing is that it appears that posts from
gmail.com
don't have a DKIM header, but those from
googlemail.com do (does gmail
reject those?).
Jonesy:
Authentication-Results:
dalrun.com; dkim=fail
reason="verification failed; insecure key"
header.d=jonz.net header.i=(a)jonz.net header.b=UuqX8y7o;
dkim-adsp=fail (insecure policy); dkim-atps=neutral
E. Liddell:
Authentication-Results:
dalrun.com; dkim=fail
reason="verification failed; insecure key"
header.d=googlemail.com header.i=(a)googlemail.com header.b=aeb+tpCW;
dkim-adsp=none (insecure policy); dkim-atps=neutral