Hello the list,
I saw some open source providers who have these dmarc settings:
_dmarc.disroot.org. 3495 IN TXT "v=DMARC1; p=reject; adkim=s; aspf=s;
rua=mailto:[email protected]; ruf=mailto:[email protected];";
_dmarc.autistici.org. 3504 IN TXT "v=DMARC1; p=reject; adkim=s; aspf=s;
rua=mailto:[email protected]";
_dmarc.dismail.de. 14400 IN TXT "v=DMARC1; p=reject; aspf=s; adkim=s;
rua=mailto:[email protected]";
As you see their dmarc policy is "reject".
I know many tech users use these providers for subscribing to mailing lists.
Since mailing lists:
1) mostly have SRS enabled, the rewrited sender address has no help to
SPF validation of the original sender.
2) mostly add the list signature in the body, so DKIM will break for the
orignal message.
since SPF/DKIM are in failure, then DMARK fails. this message will be
rejected by most MTAs (following the DMARC setting). So how to handle
the case?
Thanks.
Northwind
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
