Jonesy wrote:
The lists.pearsoncomputing.net is re-emailing all subscribed incoming emails to the user list. Each of those emails _claims_ to be From: the original sender. But, when Gmail (or whoever) asks if the original sender (e.g. Jonesy trinity@jonz.net ) is authorized to send via that MTA, the answer is "NO".
Earlier today messages on the list prompted me to enable DKIM, now I'm regretting it. It would seem anyone posting with a DKIM header is at risk. Intersting thing is that it appears that posts from gmail.com don't have a DKIM header, but those from googlemail.com do (does gmail reject those?).
Jonesy: Authentication-Results: dalrun.com; dkim=fail reason="verification failed; insecure key" header.d=jonz.net header.i=@jonz.net header.b=UuqX8y7o; dkim-adsp=fail (insecure policy); dkim-atps=neutral
E. Liddell: Authentication-Results: dalrun.com; dkim=fail reason="verification failed; insecure key" header.d=googlemail.com header.i=@googlemail.com header.b=aeb+tpCW; dkim-adsp=none (insecure policy); dkim-atps=neutral