On 6/6/19 11:24 AM, Stuart Henderson wrote:
>
> How does a mail listing what ports ypu maintain, asking you to reply
> saying if you want to continue, possibly look like phishing - would these
> people also ignore emails with other questions about their ports (whether
> from an openbsd.org address or not)? Part of the commitment for being
> listed as a maintainer is responding to questions about the port.
Well, I sometimes receive mails from unknown people asking me questions
(not about ports), which don't look obvious direct phishing, but which
are attempts at testing the gullibility or the recipient. Of course, the
one from Dan looked more genuine and this is why I checked and answered.
>
>> Next time, I think it might be interesting to send it from an @openbsd.org
>> mail address. Of course, from the official servers with SPF/DKIM, etc set up
>> correctly.
>
> SPF is a non-starter for openbsd.org, it doesn't fit at all well with
> how the email domain is used. And if we had to get DKIM setup on
> openbsd.org first this much needed maintenance would just never get
> done. (And without one or the other the mails would be very likely
> to fail).
>
DKIM and SPF are somehow interlinked, because if you want to use DKIM,
you need to send the mail from well known mail servers which know the
key, and thus which would be easily added in the SPF.
> I think doing this differently than danj@ did (within the constraints we
> have to work with) would have either reduced deliverability or, if he'd
> set reply-to openbsd.org, would have made it harder for replies to get
> through.
>
I know, there is no magical recipe and Dan did his best.
Maybe there should be a "mandatory" mailing list with very few messages.
But even that would not garantee a reply.
No comments:
Post a Comment