Looks like OpenSRS is sending domain verification emails with a from address of the domain technical contact. Not authenticated, as far as I can tell, and it probably violates a domain's DMARC policy, if they have a restrictive one.
It's 2019...you can't fake somebody else's from address when sending with DKIM and/or SPF. Trying to work through this with support, but also, I wanted to throw this out here to see if anyone from Tucows/OpenSRS was here or if anyone knew of a higher level contact that we could discuss this with. TIA! Cheers, Al -- al iverson // wombatmail // chicago http://www.aliverson.com http://www.spamresource.com _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
