[opendmarc-dev] Setting sending messages to the hold queue
A. Schulze
sca at andreasschulze.de
Wed Aug 12 13:51:24 PDT 2015
Scott Kitterman:
> This seems like a reasonable patch to me. What do you think? I have an
> opendmarc deployment that's blocking on lack of this capability and I'd like
> to see this move forward. Before I do anything locally, it'd be nice to get
> your feedback on the patch, particularly on the new option name.
Hello,
I like to point to a more general approach.
The DMARC specs knows "local policy overrides". In fact this patch is
such a override.
But as a result my MTA would deliver messages from *ALL* domains with
p=quarantine if DMARC fail.
OK, I could filter on the A-R Header. But that does not look like the
best choice.
Aggregated reports sent back to the domain owner don't know about such
postprocessings and may
report wrong delivery results.
From that perspective I would like to see lookup tables integrated in
OpenDMARC.
Lookup key may be the signingdomain, lookup value may be a local
policy override.
I know this would be a huge amount of coding work to implement that.
On the other side there is still such code: IgnoreMailFrom and IgnoreHosts
( IgnoreHosts is more comfortable because I could also reference a
separate file )
But it's there.
So instead of simply pass *ALL* messages that would be quarantined otherwise
I think a solution that act also depending on the signingdomain is
more valuable.
Andreas
More information about the opendmarc-dev
mailing list