On Thu 13/Jun/2024 11:14:04 +0200 Tobias Fiebig via mailop wrote:
What if spamd, while authenticating a malformed signature, notifies
the error in DMARC report? Would that "fix" spamd?
Would be somewhat pointless, though; From the top of my head I am not
sure whether there is a fitting field; And apart from that, I doubt
anyone would read those mails (or, rather, parse it into the DMARC
webif in use and display it in a way anyone would notice).
Also, there should be enough implementations out there that do not
verify DKIM there; So you _should_ already see the spike in non-passing
DKIM messages, incl. from your own senders.
There is a /human_result/ in DMARC reports. It would be a good idea to check
whether there are (new) messages there, and bring it to human attention in
case. Not doing so deprives the field of its /human/ attribute.
Yes, bounces are certainly more noticeable. However, they only happen on
p=reject. Otherwise, failure spikes being more noticeable than human results
just bespeaks the quality of report consumer software.
Do reports received at dm...@aperture-labs.org contribute to the output of
email-security-scans?
Best
Ale
--
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
