Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:101101
Return-Path: <php@golemon.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 10783 invoked from network); 8 Nov 2017 12:39:41 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 8 Nov 2017 12:39:41 -0000
Authentication-Results: pb1.pair.com header.from=php@golemon.com; sender-id=softfail
Authentication-Results: pb1.pair.com smtp.mail=php@golemon.com; spf=softfail; sender-id=softfail
Received-SPF: softfail (pb1.pair.com: domain golemon.com does not designate 209.85.220.176 as permitted sender)
X-PHP-List-Original-Sender: php@golemon.com
X-Host-Fingerprint: 209.85.220.176 mail-qk0-f176.google.com  
Received: from [209.85.220.176] ([209.85.220.176:49038] helo=mail-qk0-f176.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 09/33-15386-A0BF20A5 for <internals@lists.php.net>; Wed, 08 Nov 2017 07:39:41 -0500
Received: by mail-qk0-f176.google.com with SMTP id a142so3077938qkb.5
        for <internals@lists.php.net>; Wed, 08 Nov 2017 04:39:38 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=golemon-com.20150623.gappssmtp.com; s=20150623;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to:cc;
        bh=/C+O+vHUp1HMRoKb1ICiXXnviq8hDtzTqOCs24Phi4g=;
        b=xQhoSLPnfhGoSAAqOBzDwM7z1EwPdxunzApcPFiSBEXBJDITVMsQ2weCkjv4dEsWdR
         oxUe/Py8Ctb/sW0Z9l95+pbpLmt6M/LbM9Kh30eKWpWUIxvSt5dZv2lGMB1k3WsvXSyj
         LVr+mhwGPFINEoJxau1hF7NIIjjm2B0dOjgVOCSw/r+wAlgn3WAw34HKA5nQbafBSkSO
         Lg8gqojSzyAppr0UwYDuMrcmpJvUNLnBZauokyV4rmKqc8vSDhsl5ekiQX4CiV6rxGLY
         FCbkfrpWF3IPC6GbmIQ6FwkH+hW+bDFBye5D2YifzbmbsfoMDYdjCyb3MQ+iMYpD6KHA
         d3OQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:sender:in-reply-to:references:from
         :date:message-id:subject:to:cc;
        bh=/C+O+vHUp1HMRoKb1ICiXXnviq8hDtzTqOCs24Phi4g=;
        b=BiR0AQ65pTJHY9ES4VXuoOVUCkL8M4x16LJCu37hC9vYBdJX4A2ocSL9gK2ko06CQQ
         /OXwhJ0+E2VktJ+n6pHaHpZEvlG5O+7gjMBM19J2X6HMrcphSWmkG8qVtkCY5HyZT3xY
         wN05mk8QtV/T9GlDvBNaynSXZPj1llfhpRgJOR7d6dvF15eYEdf3e3gXGPVmvLc7dS68
         QysmQY7zS50xNmyJyZQ1N0fOBSRVTe3Y58ycspIikoWB3Vr2fyDAGX3m4tQneEcdBcO/
         J0PmEsI/aC39VNWK+YHD8DAKV2cPt1XNOrAGx7HLqD3GpOB5PDxFngNGZWVzCfWfRHgc
         SYnw==
X-Gm-Message-State: AJaThX4t7Mj098wU5MKD4DoB34P8NopouVBPOghM5GZr20T3KcTJCXmF
	bA4lw9LXYhj6AX2uEO8Dz0bCKK6fdRVMj9VtCsYhJg==
X-Google-Smtp-Source: AGs4zMZlrWB9lW4MDggw4nfEqO5vG0J4PHV3hp6yjBgT55AxN1NT25pN3T0meO3ueM8L9Ry+ViqQe03oM54G/+XZGik=
X-Received: by 10.55.17.150 with SMTP id 22mr524562qkr.208.1510144775912; Wed,
 08 Nov 2017 04:39:35 -0800 (PST)
MIME-Version: 1.0
Sender: php@golemon.com
Received: by 10.12.156.1 with HTTP; Wed, 8 Nov 2017 04:39:35 -0800 (PST)
X-Originating-IP: [206.252.215.26]
In-Reply-To: <7b074035-57db-5e36-384e-147ad9d26489@gmx.de>
References: <CAESVnVovMZAZx4KyvwUjx4bRT6AODHdtZzGZ8nZaCJQUTqDNdQ@mail.gmail.com>
 <CAESVnVrYD7ACfpCBwt-bpJ0146hs8w_EpM43MaL8MSxTBEV7VA@mail.gmail.com>
 <CANt4hZhBimaY8yvv+z6VvSB6f8PQtiN1=dusQjhGPH-gLJ9uWg@mail.gmail.com>
 <CAEU6NAdE3Rpkzo6Mi1YLtQ5ntoyVW07A9LOP_44zCmYrt4Z4rQ@mail.gmail.com>
 <CANt4hZidj5SeVD8O6P3nbH-O8NKLSdm4fqw7AhFdKgVrofBjXA@mail.gmail.com>
 <077d8e99-3aac-c9ca-bce4-aa90c98ed075@heigl.org> <1510070893.27420.85.camel@ctankersley.com>
 <CAJd4=YZ2C_JPBU1NO1eOU7JGrJ-wx=665PYr0isOoQb+9T57+Q@mail.gmail.com>
 <CACXBjuiwaEkyjN_3sWgyoM0AJd5BGx-0XDQWXrGqwxRDu_8WJA@mail.gmail.com>
 <CAESVnVp54-3h4KX2Xt_UBMTfeWOboonurJDqyCbWd8cgwAPAwA@mail.gmail.com> <7b074035-57db-5e36-384e-147ad9d26489@gmx.de>
Date: Wed, 8 Nov 2017 07:39:35 -0500
X-Google-Sender-Auth: m2X2CjMILWK8DKS0COA6WoyZ-0c
Message-ID: <CAESVnVreecKo0YUgmSvbLQFTZqY5vzvvWZHKLWy0+qzjzqm3GQ@mail.gmail.com>
To: Michael Kliewe <mkliewe@gmx.de>
Cc: PHP internals <internals@lists.php.net>
Content-Type: text/plain; charset="UTF-8"
Subject: Re: [PHP-DEV] Re: PHP's mail servers suck
From: pollita@php.net (Sara Golemon)

On Wed, Nov 8, 2017 at 6:59 AM, Michael Kliewe <mkliewe@gmx.de> wrote:
> Am 08.11.2017 um 12:09 schrieb Sara Golemon:
>> On Wed, Nov 8, 2017 at 2:51 AM, Rasmus Lerdorf <rasmus@lerdorf.com> wrote:
>>> So please send your volunteer requests there, but not just a generic offer
>>> to help. Please include a concrete description of what you plan on doing.
>>> As in which software or configuration changes. If it is just replace ezmlm
>>> with Mailman, then you are going to have to make a really really strong
>>> case for why you think a sideways migration like that will make any
>>> difference. It is also important to understand the difference between the
>>> list server and the mail server responsibilities.
>> Without any generally available information about the existing email
>> infrastructure, it's hard to make targeted comments about how to fix
>> what is obviously broken with this system which literally nobody with
>> the ability to fix cares about.  That means a either a conversation
>> (which should be a shared experience (therefore internals@) or an
>> essentially open request for "I'd like to help, but I'll need the
>> ability to poke around to figure out wtf is going on".
> The problem seems to be the mailing list software, not the mail server.
> Mail servers just transfer bytes from A to B.
>
> The PHP mailing list software is not configured DMARC compliant. DMARC
> means, either SPF or DKIM has to be valid. The PHP mailing list changes
> the Subject (it adds [PHP-xxxx]), that's why the DKIM signature breaks.
> SPF breaks, because Gmail and others don't include the IP address of the
> PHP mailing list mailserver in their SPF records. So SPF also fails.
>
> Easiest fix should be:
> - Don't touch the email, especially don't change the Subject. Then the
> DKIM signature stays valid, and DMARC is happy.
>
> Maybe the better way:
> - Change the From:-Header to an email address that php.net owns, and put
> the original email address into the displayname. Like:
> Michael (mkliewe@gmx.de via PHP-DEV Mailing List)
> <members-internals@lists.php.net>
> - Remove existing (now broken) DKIM-Signatures, and add php.net own DKIM
> signature (alternative: change to X-Original-DKIM-Signature)
> - Set the original From: email address into Reply-To: if you want
> - Because now it's "your" email, you can change the Subject + content as
> you like.
>
> Obviously the mailing list software has to support this procedure.
> In MailMan for example you can configure this with some settings:
> https://wiki.list.org/DEV/DMARC
> For ezmlm there seems to be something in 7.2.0:
> https://untroubled.org/ezmlm/archive/7.2.0/CHANGES
>  "- Added optional rewritefrom feature to ezmlm-send, automatically
> enabled when the sender has a "reject" DMARC policy."
>
> Hope this helps to see, that it has to be fixed in the mailing list
> software, not the mailserver.
>
This would seem to describe *one* problem and potential solution set,
and I appreciate the detailed response; However it's certainly not the
entire scope of everything that's wrong with @php.net email.  Notably,
signing up for mailing lists should not be impacted by this
misconfiguration, yet new would-be contributed are regularly stymied
by our sign up process.  Additionally, I use at least one distribution
alias which isn't part of the mailing list software and I get "looks
like spam" rejections from the MTA a few times per month.