[opendmarc-users] can't extract SPF address from Authentication-Results?

Dan Mahoney, System Admin danm at prime.gushi.org
Tue Aug 26 14:36:45 PDT 2014


On Tue, 26 Aug 2014, Dan Mahoney, System Admin wrote:

> Hey there all,
>
> I'm seeing a weird error:
>
> ug 26 08:20:51 quark-vm opendmarc[25448]: s7Q8KnjJ092103: can't extract SPF 
> address from Authentication-Results
> Aug 26 08:20:51 quark-vm opendmarc[25448]: s7Q8KnjJ092103: trusteddomain.org 
> none
>
> I'm periodically getting this message in my logs.  I think it could be 
> because I've got both sid-filter (from Sendmail) and openDKIM adding two 
> separate authentication-results headers -- As well as the older DomainKeys 
> milter, which I should probably rip out.

I tried a number of things.  Eventually I told opendmarc to do its own 
internal validation, and that made the error go away.

Note that because I had installed via a package, the maintainer had not 
made this the default.  I've mailed him to ask if it can be made such.

Murray, there's probably a couple of bugs here:

a) you've seen what my authentication-results headers look like.  Either 
they have the info and you're not finding it, or I'm putting the wrong 
info in.  (I'm using a plugin that I think you wrote).

b) opendmarc should throw an error when you set SPFSelfValidate true and 
have no compiled-in method to do this.  (Also, if you set SPFignoreresults 
and there's no way to check?)

-Dan

-- 

"It's three o'clock in the morning.  It's too late for 'oops'.  After
Locate Updates, don't even go there."

-Paul Baecker
  January 3, 2k
  Indeed, sometime after 3AM

--------Dan Mahoney--------
Techie,  Sysadmin,  WebGeek
Gushi on efnet/undernet IRC
ICQ: 13735144   AIM: LarpGM
Site:  http://www.gushi.org
---------------------------



More information about the opendmarc-users mailing list