Hello the list,
I saw some open source providers who have these dmarc settings:
_dmarc.disroot.org. 3495 IN TXT "v=DMARC1; p=reject; adkim=s; aspf=s;
rua=mailto:ab...@disroot.org; ruf=mailto:ab...@disroot.org;";
_dmarc.autistici.org. 3504 IN TXT "v=DMARC1; p=reject; adkim=s; aspf=s;
rua=mailto:live-repo...@autistici.org";
_dmarc.dismail.de. 14400 IN TXT "v=DMARC1; p=reject; aspf=s; adkim=s;
rua=mailto:dmarc-...@dismail.de";
As you see their dmarc policy is "reject".
I know many tech users use these providers for subscribing to mailing lists.
Since mailing lists:
1) mostly have SRS enabled, the rewrited sender address has no help to
SPF validation of the original sender.
2) mostly add the list signature in the body, so DKIM will break for the
orignal message.
since SPF/DKIM are in failure, then DMARK fails. this message will be
rejected by most MTAs (following the DMARC setting). So how to handle
the case?
Thanks.
Northwind
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
