[clamav-users] clamav users break dkim signed mails

Discussion:

(too old to reply)

Benny Pedersen

2016-05-29 14:56:39 UTC

so if yahoo.com users subscribe thay will later be unsubscribed as long
as clamav users break dkim

i see forward to have this solved aswell for yahoo.com users

its not a option for me to ask yahoo.com to fix there dmarc, but please
check my dmarc fail or pass, where did it break ?

hopefully mailadmins wake up
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Dennis Peterson

2016-05-30 01:30:08 UTC

Permalink

Mail list servers and dkim are generally poorly compatible. I'm not aware of a
way to send a signed message to a list then have the list resend it to all
members while preserving the dkim signature. There's been no shortage of debate
on the topic. Both yahoo and smtp are in a death spiral anyway so it probably
won't matter soon.

dp

so if yahoo.com users subscribe thay will later be unsubscribed as long as
clamav users break dkim
i see forward to have this solved aswell for yahoo.com users
its not a option for me to ask yahoo.com to fix there dmarc, but please check
my dmarc fail or pass, where did it break ?
hopefully mailadmins wake up
_______________________________________________
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml

_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Andreas Schulze

2016-05-30 06:07:26 UTC

Permalink

I'm not aware of a way to send a signed message to a list then have the list resend it to all members while preserving the dkim signature.

Yes, but exactly this is the way to go:

add 3 lines in mm_cfg.py
DEFAULT_SUBJECT_PREFIX = ""
DEFAULT_MSG_HEADER = ""
DEFAULT_MSG_FOOTER = ""

It's simply a matter of doing it.
Don't hurt: see http://dovecot.org/list/dovecot/2014-June/096547.html

--
A. Schulze
DATEV eG
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Dennis Peterson

2016-05-30 06:11:42 UTC

Permalink

That is an unacceptable hack (removes functionality) for an unacceptable hack
(DKIM).

dp

Post by Andreas Schulze

I'm not aware of a way to send a signed message to a list then have the list resend it to all members while preserving the dkim signature.

add 3 lines in mm_cfg.py
DEFAULT_SUBJECT_PREFIX = ""
DEFAULT_MSG_HEADER = ""
DEFAULT_MSG_FOOTER = ""
It's simply a matter of doing it.
Don't hurt: see http://dovecot.org/list/dovecot/2014-June/096547.html

_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Benny Pedersen

2016-05-30 14:20:12 UTC

Permalink

Post by Dennis Peterson
Mail list servers and dkim are generally poorly compatible. I'm not
aware of a way to send a signed message to a list then have the list
resend it to all members while preserving the dkim signature. There's
been no shortage of debate on the topic. Both yahoo and smtp are in a
death spiral anyway so it probably won't matter soon.

if yahoo users start asking why thay cant stay on maillists with dmarc
reject if possible there is some admins on both clamav.org and yahoo.com
that learn new things of what not to do

yahoos fault is to use dmarc reject on things that is public usage in
life

but if both parties does not care much on this prolem it will not be
fixed

i hate to see my dkim fails on maillists when its not my fault

CC: to you so you can test how bad my setup is
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Benny Pedersen

2016-05-30 14:25:48 UTC

Permalink

Post by Andreas Schulze
It's simply a matter of doing it.
Don't hurt: see http://dovecot.org/list/dovecot/2014-June/096547.html

and Timo can reject html mails in mailmanger, no need to break
dkim/dmarc
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Benny Pedersen

2016-05-30 14:28:35 UTC

Permalink

Post by Dennis Peterson
That is an unacceptable hack (removes functionality) for an
unacceptable hack (DKIM).

have you ever seen my dmarc pass ?

if there is more then one way to make it, users choice the incorrect way
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml