10 Sep
2021
10 Sep
'21
6:22 p.m.
On 9/10/21 6:52 AM, Stephen J. Turnbull wrote:
[SNIPPED] dkim=fail (signature did not verify) header.d=sender.org;
This is sender.org's DKIM signature, and it is expected to fail unless Mailman is configured in pure pass-through mode where it does not touch the body or any of the signed header fields. sender.org's DKIM signature may as well not be there for a conforming MTA (I assume Microsoft's does in this, I don't see any advantage to them in breaking DKIM).
I'm troubleshooting a similar issue. Can you confirm/share how we set "pure pass-through mode" with Mailman3 to ensure it doesn't touch the body or signed header fields?
thanks!
matt