История изменений
Исправление vvn_black, (текущая версия) :
Пример 50% спама, в котором наличие DKIM ничего не меняет:
Return-Path: <Leo.HeenaKumare123@outlook.com>
Received: from [40.92.255.78] (HELO APC01-HK2-obe.outbound.protection.outlook.com)
by xxx.xxx
with ESMTPS id 170579 for xxx@xxx.xx; Wed, 30 Jun 2021 18:12:40 +0300
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
b=fyFgxixu+KxfGDsVl7/f6JIHVM2Xw7vBwkatVD1YsHPVqvYzv/u4ZDsHSBB1pABmRibHqEYNLYKiA+WEScg8n2RtmqZQPKQfWA11HWkaUCHpF4PzheKYOy2w9U5qai2jGTX7E1/zfDY+VOxFUCHiaBJAFGs7NBRZ0lpFEbfUotkKLWiJIaZvl4sRlgLXMS0oPv0VDW40i3eQfWy9Rb9aeMsL0Mixn9AzqM1MuJWzsn3UqDuMCFevCNYTML69ODaYHHCttq2fy0jTD7PHmoUskuDrC7Pi50sr8duhHlqrZxmhVsx7L57nlowxUwp+orHGDyh0vNtcpxPjgbA/7GJrqg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
s=arcselector9901;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=2QmaZ0WjFc4vIXjPjgwJpPi0a/YZWklS4+58yRr7oxw=;
b=SG3HbA+lwha2ZFhCM0uRgTvZz+2a3BMC4lAs0ga6FmJWVN1TqXUCNqoE4cvH29P/mhWu30ffaQeaMvo+GtRFuzDel9/uJRcWdJlJxvYdLraExU3eoqqwu9JfJPXTp+bSTYBKg906CvN2i4vKJPXflvEA4ca0qFZIZ3czlGSfYM4v0ZxUoo3qoDVSW/VA3csL7NEITogInu7EaLg60FvKNc6fsssAWm7K/LVbFowiPwjgOByNgMiFUEgVCHbtQJfxkRDLLMe6dv/QJZ7GquqX/mBU+OJFdt9oGRocNtZspXy5UrW9wrItlp7+85PkbCkmm2f7SjIqamvoDI47tbGy2g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;
dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;
s=selector1;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=2QmaZ0WjFc4vIXjPjgwJpPi0a/YZWklS4+58yRr7oxw=;
b=ZKip7LZU6klT5eA5MYxXxEl7V8jxsIdtXuP8nCtw4BtzuC+LqbCZhZBkf6sQQOhuGFLkCBeL/w/JIpbIe81es65RwWkHrR9g6unbWVLzzdvSDiLqu+ClbB7FzLtfFRREcDuLd/8cY+JjZYbk9ujd4uoDg8CQBFDWML/TGNjtUueOWcaWn6sQGQVnnkmIz30C8ojwAyJj6mo2bO0HCYDQpZI8aFEKa5NvUIHyrSLQpwEyVmSVwfICG/0dN/Pmb7LCcqlfo/eWrgsU1GwAhwfkfhZntQTw+T6c8IofXJSbE8C6nCOlCNfIgOTSPky3FFs/2efcMGB+RFkWY8uYERjKzw==
Received: from TY2PR02MB3887.apcprd02.prod.outlook.com (2603:1096:404:e6::11)
by TY2PR02MB3774.apcprd02.prod.outlook.com (2603:1096:404:a7::13) with
Microsoft SMTP Server (version=TLS1_2,
cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4264.23; Wed, 30 Jun
2021 15:12:37 +0000
Received: from TY2PR02MB3887.apcprd02.prod.outlook.com
([fe80::85be:8ea5:ea1f:a77f]) by TY2PR02MB3887.apcprd02.prod.outlook.com
([fe80::85be:8ea5:ea1f:a77f%5]) with mapi id 15.20.4264.026; Wed, 30 Jun 2021
15:12:37 +0000
From: "Heena" <Leo.HeenaKumare123@outlook.com>
Ещё 25% идёт с валидной DKIM, с «купленных» доменов, это вообще не проблема для спамеров.
У меня впечатление, что ценность DKIM - это как испытание для админов, типа обратной зоны, знаешь-понимаешь - значит молодец. Практическая ценность, получается, сильно преувеличена.
Исходная версия vvn_black, :
Пример 50% спама, в котором наличие DKIM ничего не меняет:
Return-Path: <Leo.HeenaKumare123@outlook.com>
Received: from [40.92.255.78] (HELO APC01-HK2-obe.outbound.protection.outlook.com)
by xxx.xxx
with ESMTPS id 170579 for xxx@xxx.xx; Wed, 30 Jun 2021 18:12:40 +0300
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
b=fyFgxixu+KxfGDsVl7/f6JIHVM2Xw7vBwkatVD1YsHPVqvYzv/u4ZDsHSBB1pABmRibHqEYNLYKiA+WEScg8n2RtmqZQPKQfWA11HWkaUCHpF4PzheKYOy2w9U5qai2jGTX7E1/zfDY+VOxFUCHiaBJAFGs7NBRZ0lpFEbfUotkKLWiJIaZvl4sRlgLXMS0oPv0VDW40i3eQfWy9Rb9aeMsL0Mixn9AzqM1MuJWzsn3UqDuMCFevCNYTML69ODaYHHCttq2fy0jTD7PHmoUskuDrC7Pi50sr8duhHlqrZxmhVsx7L57nlowxUwp+orHGDyh0vNtcpxPjgbA/7GJrqg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
s=arcselector9901;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=2QmaZ0WjFc4vIXjPjgwJpPi0a/YZWklS4+58yRr7oxw=;
b=SG3HbA+lwha2ZFhCM0uRgTvZz+2a3BMC4lAs0ga6FmJWVN1TqXUCNqoE4cvH29P/mhWu30ffaQeaMvo+GtRFuzDel9/uJRcWdJlJxvYdLraExU3eoqqwu9JfJPXTp+bSTYBKg906CvN2i4vKJPXflvEA4ca0qFZIZ3czlGSfYM4v0ZxUoo3qoDVSW/VA3csL7NEITogInu7EaLg60FvKNc6fsssAWm7K/LVbFowiPwjgOByNgMiFUEgVCHbtQJfxkRDLLMe6dv/QJZ7GquqX/mBU+OJFdt9oGRocNtZspXy5UrW9wrItlp7+85PkbCkmm2f7SjIqamvoDI47tbGy2g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;
dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;
s=selector1;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=2QmaZ0WjFc4vIXjPjgwJpPi0a/YZWklS4+58yRr7oxw=;
b=ZKip7LZU6klT5eA5MYxXxEl7V8jxsIdtXuP8nCtw4BtzuC+LqbCZhZBkf6sQQOhuGFLkCBeL/w/JIpbIe81es65RwWkHrR9g6unbWVLzzdvSDiLqu+ClbB7FzLtfFRREcDuLd/8cY+JjZYbk9ujd4uoDg8CQBFDWML/TGNjtUueOWcaWn6sQGQVnnkmIz30C8ojwAyJj6mo2bO0HCYDQpZI8aFEKa5NvUIHyrSLQpwEyVmSVwfICG/0dN/Pmb7LCcqlfo/eWrgsU1GwAhwfkfhZntQTw+T6c8IofXJSbE8C6nCOlCNfIgOTSPky3FFs/2efcMGB+RFkWY8uYERjKzw==
Received: from TY2PR02MB3887.apcprd02.prod.outlook.com (2603:1096:404:e6::11)
by TY2PR02MB3774.apcprd02.prod.outlook.com (2603:1096:404:a7::13) with
Microsoft SMTP Server (version=TLS1_2,
cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4264.23; Wed, 30 Jun
2021 15:12:37 +0000
Received: from TY2PR02MB3887.apcprd02.prod.outlook.com
([fe80::85be:8ea5:ea1f:a77f]) by TY2PR02MB3887.apcprd02.prod.outlook.com
([fe80::85be:8ea5:ea1f:a77f%5]) with mapi id 15.20.4264.026; Wed, 30 Jun 2021
15:12:37 +0000
From: "Heena" <Leo.HeenaKumare123@outlook.com>
Ещё 25% идёт с валидной DKIM, с «купленных» доменов, это вообще не проблема для спамеров.