Yes this is one of the other options to do. The last one is to do Original Authentication Header, but transitive trust on email is complicated.

To be noted, the procedure, in this patch, to find the policy record in the DNS, is not in line with the best current practice specified in the DMARC spec, far from it.

Also, what about p=quarantine?

----- Original Message ----- From: "Jim Popovitch" jimpop@gmail.com To: Mailman-Developers@python.org Sent: Sunday, October 20, 2013 3:17:17 PM Subject: [Mailman-Developers] Mailman DMARC Support (it's not what you think!)

Hello,

Having read the archives, I see that (at least 6 of) you are aware of DMARC, or as I like to call it YAPFS. (Yet Another Panacea For Spam) :-)

Earlier this year Mark asked me to run by MM-Dev a patch that Phil Pennock and I collaborated on. Mark, thank you for your valuable feedback, I have addressed all but 1 of those issues.

Phil's and my take is that mailing lists, like MTAs, have no business modifying the From header; nor should mailing lists accept mail that they knowingly can't reflect. To that end, we have added support for testing the From domain for a DMARC p=reject policy, and if it exists, allowing lists to Accept/Hold/Reject/Discard the message.

Here is the LP diff for your perusal: http://bazaar.launchpad.net/~jimpop/mailman/dmarc-reject/revision/1379?remem...

I will soon be porting this to 3.0, and I will return here for input on that as well.

Thank you everyone for your valued opinions,

-Jim P. _______________________________________________ Mailman-Developers mailing list Mailman-Developers@python.org https://mail.python.org/mailman/listinfo/mailman-developers Mailman FAQ: http://wiki.list.org/x/AgA3 Searchable Archives: http://www.mail-archive.com/mailman-developers%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-developers/franck%40peachyma...

Security Policy: http://wiki.list.org/x/QIA9