home bbs files messages ]

Forums before death by AOL, social media and spammers... "We can't have nice things"

   alt.comp.software.seamonkey      Not a bad little Mozilla fork      9,710 messages   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]

   Message 9,304 of 9,710   
   Adam H. Kerman to Nuno Silva   
   Re: Email rejecting messages   
   12 Oct 25 02:09:25   
   
   From: ahk@chinet.com   
      
   Nuno Silva  wrote:   
   >On 2025-10-11, Adam H. Kerman wrote:   
   >>Barryedwin1  wrote:   
      
   >>>>. . .   
      
   >>>Yes, that was my problem too.   
   >>>DKIM on my ISP's email server, requires the email sender's 'From'   
   >>>address to agree with the email user's email identity for authentication   
   >>>(claims all other 'From' usage is 'spoofing', even though it is my real   
   >>>gmail address.   
   >>>If I want too, I can get the ISP to accept the gmail sender-address, by   
   >>>dancing through hoops with gmail to authenticate that usage for the   
   >>>local ISP, which involves some sort of permit-token for the local ISP's   
   >>>email server (presumably within DKIM), but as I can just switch to the   
   >>>SeaMonkey browser to send gmail messages, I haven't bothered. HTH   
      
   >>It's not within DKIM. DKIM comes after From has been set.   
      
   >>In my case, I authenticate, then can use any From address I like, even   
   >>from a foreign domain. That does not mean the message will be delivered.   
      
   >>For instance, a friend I do business with will send me email via his   
   >>ISP's MX but with the domain he controls on From. My MX rejects it   
   >>because the TXT record associated with the domain he controls is set to   
   >>strict and not loose. That's an instruction to everyone else that if the   
   >>message with that domain on From isn't sent via the the domain's default   
   >>MX to reject the connection.   
      
   >The initial section of the English Wikipedia article on SPF [1]   
   >indicates that SPF validation would (should?) look at *Envelope* From,   
   >not the header "From:"?   
      
   That is correct. SPF is specific to authorizing ENVELOPE FROM.   
      
   DKIM authenticates From and other designated headers with the message   
   body, then signs the message. In the O.P.'s case, his outbound mail   
   server is authorized for use with specific domains and not with a gmail   
   address on From.   
      
   If I understand this correctly, the O.P. can notify his email service   
   provider that a specific gmail address is his and send his messages   
   with that address on From, but won't get DKIM signing.   
      
   The DKIM policy is domain-specific and doesn't sign a message if the   
   user has a foreign domain on From. I should have been clearer on this   
   point in the previous followup.   
      
   >[1] https://enwp.org/Sender_Policy_Framework   
      
   >Or is this something servers often mishandle?   
      
   I hope not as it's the oldest of the three methods of authentication.   
      
   >>We don't even get to the point of validating DKIM.   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]


(c) 1994,  bbs@darkrealms.ca