On Tue, Jun 13, 2017 at 10:22 AM, Vladimir Prus via Boost
thanks for the explanation. So, if I understand correctly, the problem is that some *senders* have their domains configured to ask recipients to reject emails that don't pass DKIM or SPF? In other words, the question is not how many organizations have DMARC for inbound authentication, but how many users are sending emails to a mailing list (which, by definition, forwards email with modifications) while also requesting than any forwared with modifications emails are rejected by recipients? How many such sending users/domains do we have?
I personally think it would be reasonable to just require that posters don't use such domain configuration.
Doesn't gmail also use dmarc?
If that's not possible, can't we make Mailman not add any footers, and don't add any DKIM signature of its own. Maybe, that will cause original DKIM signature to remain valid and DMARC check to pass?
The original From header is still problematic AFAIK. -- Olaf