[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Incomplete DMARC mangling on the list (was: Re: The spiped Docker image)

To: Tim Düsterhus <tim@bastelstu.be>, spiped@tarsnap.com
Subject: Re: Incomplete DMARC mangling on the list (was: Re: The spiped Docker image)
From: Colin Percival <cperciva@tarsnap.com>
Date: Fri, 10 Apr 2020 11:54:01 -0700
Autocrypt: addr=cperciva@tarsnap.com; prefer-encrypt=mutual; keydata= mQGhBElrAAcRBACDfDys4ZtK+ErCJ1HAzYeteKpm3OEsvT/49AjUTLihkF79HhIKrCQU+1KC zv7BwHCMLb6hq30As9L7iFKG7n5QFLFC4Te/VcITUnWHMG/c3ViLOfJGvi+9/nOEHaM1dVJY D6tEp5yM1nHmVQpo9932j4KGuGFR0LhOK5IHXOSfGwCgxSFDPdgxe2OEjWxjGgY+oV3EafcD +JROXCTjlcQiG/OguQH4Vks3mhHfFnEppLxTkDuYgHZQiUtpcT9ssH5khgqoTyMar05OUdAj ZIhNbWDh4LgTj+7ZmvLhXT5Zxw8LX9d7T36aTB8XDQSenDqEtinMWOb0TCBBLbsB8EFG1WTT ESbZci9jJS5yhtktuZoY/eM8uXMD/3k4FWFO80VRRkELSp+XSy/VlSQjyi/rhl2nQq/oOA9F oJbDaB0yq9VNhxP+uFBzBWSqeIX0t1ZWLtNfVFr4TRP5hihI5ICrg/0OpqgisKsU2NFe9xyO hyJLYmfD8ebpDJ/9k30C7Iju9pVrwLm1QgS4S2fqJRcR+U4WbjvP7CgStCVDb2xpbiBQZXJj aXZhbCA8Y3BlcmNpdmFAdGFyc25hcC5jb20+iGEEExECACEFAklrALYCGwMHCwkIBwMCAQQV AggDBBYCAwECHgECF4AACgkQOM7KaQxqam6/igCgn+z2k3V5ggNppmWrZstt1U2lugsAoL7L wS9V9yLtil3oWmHtwpUqYruEuQINBElrAAcQCAD3ZLMIsP4CIDoJORg+YY0lqLVBgcnF7pFb 4Uy2+KvdWofN+DKH61rZLjgXXkNE9M4EQC1B4lGttBP8IY2gs41y3AUogGdyFbidq99rCBz7 LTsgARHwFxZoaHmXyiZLEU1QZuMqwPZV1mCviRhN5E3rRqYNXVcrnXAAuhBpvNyj/ntHvcDN 2/m+ochiuBYueU4kX3lHya7sOj+mTsndcWmQ9soOUyr8O0r/BG088bMn4qqtUw4dl5/pglXk jbl7uOOPinKf0WVd2r6M0wLPJCD4NPHrCWRLLLAjwfjrtoSRvXxDbXhCdgGBa72+K8eYLzVs hgq7tJOoBWzjVK6XRxR7AAMGB/9Mo3iJ2DxqDecd02KCB5BsFDICbJGhPltU7FwrtbC7djSb XUrwsEVLHi4st4cbdGNCWCrp0BRezXZKohKnNAPFOTK++ZfgeKxrV2sJod+Q9RILF86tQ4XF 7A7Yme5hy92t/WgiU4vc/fWbgP8gV/19f8nunaT2E9NSa70mZFjZNu4iuwThoUUO5CV3Wo0Y UISsnRK8XD1+LR3A2qVyLiFRwh/miC1hgLFCTGCQ3GLxZeZzIpYSlGdQJ0L5lixW5ZQD9r1I 8i/8zhE6qRFAM0upUMI3Gt1Oq2w03DiXrZU0Fu/R8Rm8rlnkQKA+95mRTUq1xL5P5NZIi4gJ Z569OPMFiEkEGBECAAkFAklrAAcCGwwACgkQOM7KaQxqam41igCfbaldnFTu5uAdrnrghESv EI3CAo8AoLkNMks1pThl2BJNRm4CtTK9xZeH
In-reply-to: <29612d9c-7d8c-36b9-2e19-3ff50ff03433@bastelstu.be>
References: <789113178.3327537.1586461081299.ref@mail.yahoo.com> <789113178.3327537.1586461081299@mail.yahoo.com> <29612d9c-7d8c-36b9-2e19-3ff50ff03433@bastelstu.be>

On 2020-04-09 13:45, Tim Düsterhus wrote:
> Am 09.04.20 um 21:38 schrieb Vijay Kumar via spiped:
>> Is the https://hub.docker.com/_/spiped   ; a legitimate Docker image of this spiped project?I didn't see any mention of this Docker image on the https://www.tarsnap.com/index.html    ; website. 
>>
> 
> I noticed that the 'From' of Vijay's email was mangled by the list in
> response to, what I assume, DMARC records on the sending domain. However
> the DKIM-Signature was not stripped and fails to validate (because of
> the mangled 'From'):
> 
>> Authentication-Results: chrono.xqk7.com;
>> 	dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=yahoo.com header.i=@yahoo.com header.b="q8zkdFPX";
>> 	dkim-atps=neutral
> 
> I assume that this is not intended behavior.

Indeed.  Offhand I'm not sure how to obtain the right behaviour from ezmlm
though...

-- 
Colin Percival
Security Officer Emeritus, FreeBSD | The power to serve
Founder, Tarsnap | www.tarsnap.com | Online backups for the truly paranoid

References:
- The spiped Docker image
  - From: "Vijay Kumar via spiped" <spiped@tarsnap.com>
- Incomplete DMARC mangling on the list (was: Re: The spiped Docker image)
  - From: Tim Düsterhus <tim@bastelstu.be>

Prev by Date: Incomplete DMARC mangling on the list (was: Re: The spiped Docker image)
Next by Date: Potential spiped 1.6.2 release -- please test
Previous by thread: Incomplete DMARC mangling on the list (was: Re: The spiped Docker image)
Next by thread: Potential spiped 1.6.2 release -- please test
Index(es):
- Date
- Thread