Theodore Ts'o wrote:
Suppose we made the mailing list software take the contents of the
>From field, and moved it to something like "X-Originally-From: ", and
changed the From field to be "ietf@xxxxxxxx". That would be what the
DMARC people would want, right?
Except then, a couple of years later, because users might actually
want to find the message that was written by "Brian Carpenter", or
<snip>
Worse than that. That would any authentication back to the original author.
Personally, on my incoming mail, I really don't care if a message passed
through a mailing list or not - if it says it's From: <foo>, what I
really care about is that it really is from <foo> and that it's the
message that <foo> originally sent (modulo things like subject tags, and
list headers/footers) -- if some random mail list wants to forward the
mail to me, and it comes through intact - do I really care about the
legitimacy of the list server (other than not wanting it to become a
spam or attack vector)?
Not sure that's completely clear.
Miles Fidelman
--
In theory, there is no difference between theory and practice.
In practice, there is. .... Yogi Berra