[opendmarc-users] troubleshooting an opendmarc 1.3.1 auth failure?

jasonsu at mail-central.com jasonsu at mail-central.com
Mon May 9 16:45:56 PDT 2016


I have opendmarc milter running.

Inbound mail flows through an SPF check, then a DKIM check, and finally on to a DMARC check in opendmarc.

I was notified of the following dmarc FAIL notice the other day -- AFTER the user's actually receiving the (important) mail.

I'm trying to figure out, and fix, the problem.  I think it's got to do with the fact it's being bounced around between localhost/127.0.0.1 daemons, but not sure.  And don't know yet what to do about it.

Here's the message

	This is an authentication failure report for an email message received from IP
	127.0.0.1 on Fri,  6 May 2016 08:58:58 -0700 (PDT).

	Feedback-Type: auth-failure
	Version: 1
	User-Agent: OpenDMARC-Filter/1.3.1
	Auth-Failure: dmarc
	Authentication-Results: opendmarc.mail.example.com; dmarc=fail header.from=SSA.GOV
	Original-Envelope-Id: 3r2CxZ3xfGz2wS2
	Original-Mail-From: NO-REPLY at SSA.GOV
	Source-IP: 127.0.0.1 (localhost)
	Reported-Domain: SSA.GOV

	X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on
		mail.example.com
	Received: from mail.example.com ([127.0.0.1])
		by amavis.mail.example.com (mail.example.com [127.0.0.1]) (amavisd-new, port 33116)
		with ESMTP id wNWTzdMInUC0 for <user at example.com>;
		Fri,  6 May 2016 08:58:58 -0700 (PDT)
	Authentication-Results: spf.mail.example.com; spf=pass (sender SPF authorized) smtp.mailfrom=ssa.gov (client-ip=137.200.4.23; helo=mailout4.ssa.gov; envelope-from=no-reply at ssa.gov; receiver=user at example.com)
	Received: from mailout4.ssa.gov (mailout4.ssa.gov [137.200.4.23])
		by mail.example.com (Postfix) with ESMTPS
		for <user at example.com>; Fri,  6 May 2016 08:58:48 -0700 (PDT)
	Received: from ssc-prd-mail-out-039.ssa.gov (netmail [10.24.157.39])
		by mailout4.ssa.gov (Im.not.telling/8.15.2) with ESMTPS id b19Fwl6l20956188
		(version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO)
		for <user at example.com>; Sat, 7 May 2016 11:58:47 -0400
	Received: from skd1f92.ba.ad.ssa.gov (skd1f92.ba.ad.ssa.gov [10.61.29.146])
		by ssc-prd-mail-out-039.ssa.gov (8.14.4/8.14.4) with ESMTP id b19Fwlmq000376
		for <user at example.com>; Sat, 7 May 2016 11:58:47 -0400
	Received: from ssc-prd-mail-mugs-037.ssa.gov (ssc-prd-mail-mugs-037.ssa.gov [10.24.157.37])
		by skd1f92.ba.ad.ssa.gov (8.13.8/8.13.8) with ESMTP id b19GJnen034866
		for <user at example.com>; Sat, 7 May 2016 12:19:50 -0400
	Received: from SY35 (wasprda.ssaprd1.sspf.ssa.gov [10.0.9.8])
		by ssc-prd-mail-mugs-037.ssa.gov (8.14.4/8.14.4) with ESMTP id b19Fwkw9002264
		for <user at example.com>; Sat, 7 May 2016 11:58:46 -0400
	Date: Sat, 7 May 2016 11:58:46 -0400
	From: NO-REPLY at SSA.GOV
	To: user at example.com
	Message-ID: <2008977364.0936.9487673956376.JavaMail.GKJGGD at SY35>
	Subject: Important Information About Your Online Account
	MIME-Version: 1.0
	Content-Type: text/plain; charset=us-ascii
	Content-Transfer-Encoding: 7bit
	X-RCIS-Action: ALLOW

Why'd this 'fail', and what am I doing wrong?

Jason


More information about the opendmarc-users mailing list