[opendmarc-users] can't extract SPF address from Authentication-Results?
Murray S. Kucherawy
msk at blackops.org
Wed Sep 3 22:18:00 PDT 2014
On Tue, 26 Aug 2014, Dan Mahoney, System Admin wrote:
> ug 26 08:20:51 quark-vm opendmarc[25448]: s7Q8KnjJ092103: can't extract SPF
> address from Authentication-Results
> Aug 26 08:20:51 quark-vm opendmarc[25448]: s7Q8KnjJ092103: trusteddomain.org
> none
>
> I'm periodically getting this message in my logs. I think it could be
> because I've got both sid-filter (from Sendmail) and openDKIM adding two
> separate authentication-results headers -- As well as the older DomainKeys
> milter, which I should probably rip out.
sid-milter actually generates non-standard Authentication-Results fields.
Specifically, "smtp.mfrom" is not legal; it should be "smtp.mailfrom". As
sid-milter is unmaintained these days, you could patch it yourself if
you're so inclined but an official fix is likely not forthcoming. You
could also patch opendmarc to accept both forms.
-MSK
More information about the opendmarc-users
mailing list