Dave Wreski skrev den 2015-10-15 00:11:
Yes, I realize SPF is only concerned with the envelope-sender. I was thinking it would be possible to somehow correlate the SPF_PASS with a rule that analyzes the From: header and use that to compare?
From: header is dkim, just know that some milters like sid-milter is checking sender-id and says spf, but this is not the case, did you read such docs ?, if so its depricated with spf and dkim, dmarc is a subset meta on what dkim and spf does, when dmarc is a plugin in spamassassin it would be a faq on what not todo :=)
if you see my msg here on maillist gives dmarc pass, then i am happy to say it works for us both
so back to your subject if dmarc fail its a phishing attempt more or less
