However, opendmarc milter requires those Authentication-Results
headers for SPF and DKIM to be already present. so you need
spf/dkim milter(s) before opendmarc.
On 19/03/22 01:46, Jesper Dybdal wrote:
I use Amavis to generate and verify DKIM signatures, and
policyd-spf-python to perform SPF checks. That works, but means
that the opendmarc milter must be run by the after-Amavis smtpd.
On 22.03.22 22:56, Nick Tait wrote:
Just in case you weren't aware: OpenDMARC can perform SPF validation,
FYI, the SPF validation is going to be removed from opendmarc.
NOTE: OpenDMARC's internal SPF handling will be removed
in a future version.
and although I don't recall the exact details, I seem to remember
there was a security exploit that could be prevented by getting
OpenDMARC to always do its own SPF validation?
the SPF header must be on the top - not after first Received: header.
pyspf-milter is fine here, so should be policyd-spf-python (same source
package)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Honk if you love peace and quiet.
