[GH-ISSUE #3587] ARC verification and signing for automated senders #1797

New issue

Open

opened 2026-02-27 11:19:11 +03:00 by kerem · 7 comments

kerem commented 2026-02-27 11:19:11 +03:00

Owner

Copy link

Originally created by @almereyda on GitHub (Feb 19, 2024).
Original GitHub issue: https://github.com/modoboa/modoboa/issues/3587

Now that Modoboa has the send-only flag for email accounts, we have a facility to identify automated senders. This is useful for providing ARC signing to those identities, which are used by systems that do not bring their own ARC signing facility. This is needed to deliver messages from automated senders into Google (and possibly others).

• Email sender guidelines - Google Workspace Admin Help

Rspamd has a module for verification and generation of ARC signatures.

• ARC module

–

Therefore it appears useful to add support for the requirement that

• the Modoboa rspamd plugin has support for configuring verification and generation of ARC signatures.

Originally created by @almereyda on GitHub (Feb 19, 2024). Original GitHub issue: https://github.com/modoboa/modoboa/issues/3587 Now that Modoboa has the send-only flag for email accounts, we have a facility to identify automated senders. This is useful for providing ARC signing to those identities, which are used by systems that *do not* bring their own ARC signing facility. This is needed to deliver messages from automated senders into Google (and possibly others). * [Email sender guidelines - Google Workspace Admin Help](https://support.google.com/a/answer/81126) Rspamd has a module for verification and generation of ARC signatures. * [ARC module](https://rspamd.com/doc/modules/arc.html) – Therefore it appears useful to add support for the requirement that - [ ] the Modoboa rspamd plugin has support for configuring verification and generation of ARC signatures.

kerem added the

enhancement

label 2026-02-27 11:19:11 +03:00

kerem commented 2026-02-27 11:19:11 +03:00

Author

Owner

Copy link

@stale[bot] commented on GitHub (Dec 18, 2025):

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

<!-- gh-comment-id:3667645059 --> @stale[bot] commented on GitHub (Dec 18, 2025): This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

kerem commented 2026-02-27 11:19:11 +03:00

Author

Owner

Copy link

@almereyda commented on GitHub (Dec 20, 2025):

This is still very useful for medium- to large-volume senders who use Modoboa with send-only accounts as transactional email service.

<!-- gh-comment-id:3677790802 --> @almereyda commented on GitHub (Dec 20, 2025): This is still very useful for medium- to large-volume senders who use Modoboa with send-only accounts as transactional email service.

kerem commented 2026-02-27 11:19:11 +03:00

Author

Owner

Copy link

@tonioo commented on GitHub (Jan 6, 2026):

@almereyda How would you integrate that into Modoboa?

<!-- gh-comment-id:3714571730 --> @tonioo commented on GitHub (Jan 6, 2026): @almereyda How would you integrate that into Modoboa?

kerem commented 2026-02-27 11:19:11 +03:00

Author

Owner

Copy link

@almereyda commented on GitHub (Jan 7, 2026):

In our setup Mailman 3 handles its ARC headers. Modoboa could add its own on top of the chain, like Google do when those are present. (I need to find an example.) Mailman 3 is also a Django application, which could maybe help to inspect their implementation or even plain reuse/copy some modules.

This will also be useful to add ARC headers to transactional messages sent from clients that do not add their own, indicating themselves as automated senders.

We will maybe want to make this mandatory and implicit when activating "send-only" (transactional) mail accounts.

<!-- gh-comment-id:3718834808 --> @almereyda commented on GitHub (Jan 7, 2026): In our setup Mailman 3 handles its ARC headers. Modoboa could add its own on top of the chain, like Google do when those are present. (I need to find an example.) Mailman 3 is also a Django application, which could maybe help to inspect their implementation or even plain reuse/copy some modules. This will also be useful to add ARC headers to transactional messages sent from clients that do not add their own, indicating themselves as automated senders. We will maybe want to make this mandatory and implicit when activating "send-only" (transactional) mail accounts.

kerem commented 2026-02-27 11:19:11 +03:00

Author

Owner

Copy link

@kryskool commented on GitHub (Jan 8, 2026):

After check Mailman source code, they use the library authheaders
to process an ARC signing

<!-- gh-comment-id:3725454847 --> @kryskool commented on GitHub (Jan 8, 2026): After check Mailman source code, they use the library [authheaders](https://github.com/ValiMail/authentication-headers) to process an ARC signing

kerem commented 2026-02-27 11:19:11 +03:00

Author

Owner

Copy link

@FlorianLaunay commented on GitHub (Jan 22, 2026):

I guess it would be better to rely on OpenARC or Rspamd ARC module like modoboa already handles DKIM signing natively with OpenDKIM or Rspamd with its modoboa.rspamd plugin.

<!-- gh-comment-id:3784453553 --> @FlorianLaunay commented on GitHub (Jan 22, 2026): I guess it would be better to rely on [OpenARC](https://github.com/trusteddomainproject/OpenARC) or [Rspamd ARC module](https://docs.rspamd.com/modules/arc/) like modoboa already handles DKIM signing natively with OpenDKIM or Rspamd with its `modoboa.rspamd` plugin.

kerem commented 2026-02-27 11:19:11 +03:00

Author

Owner

Copy link

@almereyda commented on GitHub (Jan 23, 2026):

Given usage of rspamd is considered the canonical implementation path for advanced Modoboa use cases, that sounds like a suitable implementation path for decoupling this from core.

<!-- gh-comment-id:3790076454 --> @almereyda commented on GitHub (Jan 23, 2026): Given usage of rspamd is considered the canonical implementation path for advanced Modoboa use cases, that sounds like a suitable implementation path for decoupling this from core.

kerem referenced this issue 2026-02-27 12:10:25 +03:00

[PR #1859] [MERGED] Adding setting to disable RSS requests. #2314

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

fix/sievefilters-allow-email-in-rule-name

dependabot/npm_and_yarn/frontend/axios-1.15.0

translations_04c0b653215cb5fa48ab101eae1a1917_ja_JP

translations_5d93982e9fd6dab991db4faf93ce9ded_ja_JP

fix/login-issue-3995

fix/sievefilters-issues

add-vitepress-openapi

2974-dmarc-empty-email

2.3.x

updated-doc-2.3.0

feature/OIDC

delete-all-alarms

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_af_ZA

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_ar

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_ca

1.x

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_sk

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_tr

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_es_ES

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_uk

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_zh_CN

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_de_DE

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_da_DK

1.8.x

1.7.x

1.6.x

1.4.x

1.3.x

1.2.x

2.8.2

2.8.1

2.8.0

2.7.2

2.7.1

2.7.0

2.6.5

2.6.4

2.6.3

2.6.2

2.6.1

2.6.0

2.5.1

2.5.0

2.4.11

2.4.10

2.4.9

2.4.8

2.4.7

2.4.6

2.4.5

2.4.4

2.4.3

2.4.2

2.4.1

2.4.0

2.3.6

2.3.5

2.3.4

2.3.3

2.3.2

2.3.1

2.3.0

2.3.0-beta.4

2.3.0-beta.3

2.3.0-beta.2

2.3.0-beta.1

2.2.4

2.2.3

2.2.2

2.2.1

2.2.0

2.1.2

2.1.1

2.1.0

2.0.5

2.0.4

2.0.3

2.0.2

2.0.1

2.0.0

2.0.0-beta.3

2.0.0-beta.2

2.0.0-beta.1

1.17.0

1.16.1

1.16.0

1.15.0

1.14.0

1.13.1

1.13.0

1.12.2

1.12.1

1.12.0

1.11.1

1.11.0

1.10.7

1.10.6

1.10.5

1.10.4

1.10.3

1.10.2

1.10.1

1.10.0

1.9.1

1.9.0

1.8.3

1.8.2

1.8.1

1.8.0

1.7.4

1.7.3

1.7.2

1.7.1

1.7.0

1.6.3

1.6.2

1.6.1

1.6.0

1.5.3

1.5.2

1.5.1

1.5.0

1.4.5

1.4.4

1.4.3

1.4.2

1.4.1

1.4.0

1.3.5

1.3.4

1.2.2

1.3.3

1.3.2

1.3.1

1.3.0

1.2.1

1.2.0

1.2.0-rc2

1.2.0-rc1

1.1.7

1.1.6

1.1.5

1.1.4

1.1.3

1.1.2

1.1.1

1.1.0

1.0.1

1.0.0

0.9.5

0.9.4

0.9.3

0.9.2

0.9.1

0.9

0.8.8

0.8.7

0.8.6.1

0.8.6

0.8.5

0.8.4

0.8.3

0.8.3-rc1

0.8.2

0.8.1

0.8

0.8-rc2

0.8-rc1

0.7.2

0.7.1

0.7

0.6.1

0.6

0.5

0.3

0.2

0.1

Labels

Clear labels   

bug

  

bug

  

dependencies

  

design

  

documentation

  

duplicate

  

enhancement

  

enhancement

  

enhancement

  

feedback-needed

  

help-needed

  

help-needed

  

installer

  

invalid

  

looking-for-sponsors

  

modoboa-contacts

  

new-ui

  

new-ui

  

pr

  

pull-request

Mirrored from GitHub Pull Request

  

pyconfr

  

python

  

question

  

security

  

stale

  

webmail

  

wontfix

No labels

bug

bug

dependencies

design

documentation

duplicate

enhancement

enhancement

enhancement

feedback-needed

help-needed

help-needed

installer

invalid

looking-for-sponsors

modoboa-contacts

new-ui

new-ui

pr

pull-request

pyconfr

python

question

security

stale

webmail

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/modoboa-modoboa#1797

No description provided.