[opendmarc-users] OpenDMARC 1.3 and self SPF Check

A. Schulze sca at andreasschulze.de
Tue Aug 12 14:39:47 PDT 2014


Urban Loesch:

> But this doesn't seem to work. If I set both options to "true" there  
> will no DNS query be made for checking the SPF TXT records.

there is a testmode in opendmarc. The implementation is currently  
unable to test spf

this is my minimal setup:

$ cat /tmp/config
SPFSelfValidate         yes

$ cat /tmp/msg
From: <random at andreasschulze.de>

body

$ opendmarc -v -v -v -c /tmp/config -t /tmp/msg
opendmarc: mlfi_connect() returned SMFIS_CONTINUE
opendmarc: /tmp/msg: mlfi_envfrom() returned SMFIS_CONTINUE
opendmarc: /tmp/msg: line 1: mlfi_header() returned SMFIS_CONTINUE
### INSHEADER: idx=1 hname='Authentication-Results' hvalue='DEBUG-j;  
spf=pass smtp.mailfrom=sender at example.org'
### INSHEADER: idx=1 hname='Authentication-Results' hvalue='DEBUG-j;  
dmarc=none header.from=andreasschulze.de'
opendmarc: /tmp/msg: mlfi_eom() returned SMFIS_ACCEPT
opendmarc: mlfi_close() returned SMFIS_CONTINUE

there is no possibility to tell opendmarc about client-ip, smtp-helo  
or smtp-mail-from.
But you may strace and/or see a dns query for my _dmarc record.
I opened a ticket (sf.net/p/opendmarc/tickets/97)

Andreas



More information about the opendmarc-users mailing list