[opendmarc-users] troubleshooting an opendmarc 1.3.1 auth failure?
jasonsu at mail-central.com
jasonsu at mail-central.com
Mon May 9 16:45:56 PDT 2016
I have opendmarc milter running.
Inbound mail flows through an SPF check, then a DKIM check, and finally on to a DMARC check in opendmarc.
I was notified of the following dmarc FAIL notice the other day -- AFTER the user's actually receiving the (important) mail.
I'm trying to figure out, and fix, the problem. I think it's got to do with the fact it's being bounced around between localhost/127.0.0.1 daemons, but not sure. And don't know yet what to do about it.
Here's the message
This is an authentication failure report for an email message received from IP
127.0.0.1 on Fri, 6 May 2016 08:58:58 -0700 (PDT).
Feedback-Type: auth-failure
Version: 1
User-Agent: OpenDMARC-Filter/1.3.1
Auth-Failure: dmarc
Authentication-Results: opendmarc.mail.example.com; dmarc=fail header.from=SSA.GOV
Original-Envelope-Id: 3r2CxZ3xfGz2wS2
Original-Mail-From: NO-REPLY at SSA.GOV
Source-IP: 127.0.0.1 (localhost)
Reported-Domain: SSA.GOV
X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on
mail.example.com
Received: from mail.example.com ([127.0.0.1])
by amavis.mail.example.com (mail.example.com [127.0.0.1]) (amavisd-new, port 33116)
with ESMTP id wNWTzdMInUC0 for <user at example.com>;
Fri, 6 May 2016 08:58:58 -0700 (PDT)
Authentication-Results: spf.mail.example.com; spf=pass (sender SPF authorized) smtp.mailfrom=ssa.gov (client-ip=137.200.4.23; helo=mailout4.ssa.gov; envelope-from=no-reply at ssa.gov; receiver=user at example.com)
Received: from mailout4.ssa.gov (mailout4.ssa.gov [137.200.4.23])
by mail.example.com (Postfix) with ESMTPS
for <user at example.com>; Fri, 6 May 2016 08:58:48 -0700 (PDT)
Received: from ssc-prd-mail-out-039.ssa.gov (netmail [10.24.157.39])
by mailout4.ssa.gov (Im.not.telling/8.15.2) with ESMTPS id b19Fwl6l20956188
(version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO)
for <user at example.com>; Sat, 7 May 2016 11:58:47 -0400
Received: from skd1f92.ba.ad.ssa.gov (skd1f92.ba.ad.ssa.gov [10.61.29.146])
by ssc-prd-mail-out-039.ssa.gov (8.14.4/8.14.4) with ESMTP id b19Fwlmq000376
for <user at example.com>; Sat, 7 May 2016 11:58:47 -0400
Received: from ssc-prd-mail-mugs-037.ssa.gov (ssc-prd-mail-mugs-037.ssa.gov [10.24.157.37])
by skd1f92.ba.ad.ssa.gov (8.13.8/8.13.8) with ESMTP id b19GJnen034866
for <user at example.com>; Sat, 7 May 2016 12:19:50 -0400
Received: from SY35 (wasprda.ssaprd1.sspf.ssa.gov [10.0.9.8])
by ssc-prd-mail-mugs-037.ssa.gov (8.14.4/8.14.4) with ESMTP id b19Fwkw9002264
for <user at example.com>; Sat, 7 May 2016 11:58:46 -0400
Date: Sat, 7 May 2016 11:58:46 -0400
From: NO-REPLY at SSA.GOV
To: user at example.com
Message-ID: <2008977364.0936.9487673956376.JavaMail.GKJGGD at SY35>
Subject: Important Information About Your Online Account
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-RCIS-Action: ALLOW
Why'd this 'fail', and what am I doing wrong?
Jason
More information about the opendmarc-users
mailing list