[opendmarc-users] DMARC no sign
Dominic Raferd
dominic at timedicer.co.uk
Thu Aug 23 00:42:26 PDT 2018
On Thu, 23 Aug 2018 at 07:02, test <test at infinitynet.ro> wrote:
> Hello Benny,
>
>
>
> I have this:
>
>
> Aug 23 01:05:28 mail opendmarc[29753]: E9816301A73 ignoring
> Authentication-Results at 6 from infinitynet.ro/6436730197E
> Aug 23 01:05:28 mail opendmarc[29753]: E9816301A73: SPF(mailfrom):
> test at infinitynet.ro pass
> Aug 23 01:05:28 mail opendmarc[29753]: E9816301A73: infinitynet.ro pass
>
>
> job E9816301A73
> reporter mail.infinitynet.ro
> received 1534975528
> ipaddr 127.0.0.1
> from infinitynet.ro
> mfrom infinitynet.ro
> spf 0
> pdomain infinitynet.ro
> policy 15
> rua mailto:hrkgeyto at ag.dmarcian-eu.com
> pct 100
> adkim 114
> aspf 114
> p 113
> sp 0
> align_dkim 5
> align_spf 4
> action 2
>
>
> VS
>
>
> Aug 23 01:06:39 mail opendmarc[29753]: 504E430197E: SPF(mailfrom):
> test at infinitynet.ro fail
> Aug 23 01:06:39 mail opendmarc[29753]: 504E430197E: infinitynet.ro fail
>
> job 504E430197E
> reporter mail.infinitynet.ro
> received 1534975599
> ipaddr 77.81.71.71
> from infinitynet.ro
> mfrom infinitynet.ro
> spf 7
> pdomain infinitynet.ro
> policy 17
> rua mailto:hrkgeyto at ag.dmarcian-eu.com
> pct 100
> adkim 114
> aspf 114
> p 113
> sp 0
> align_dkim 5
> align_spf 5
> action 2
>
OP: your domain spf setting is:
"v=spf1 a mx a:mail.infinitynet.ro a:infinitynet.ro ip4:188.208.128.110
ip4:85.204.166.226 -all"
And your DMARC setting is: p=quarantine
Mailservers which enforce SPF strictly will block any emails from yourself
that are relayed through another server such as mailing list (reason:
'-all'). Personally I think blocking based only on SPF is a bad idea, but
you can't control what others do.
Moreover, emails that you send through some mailing lists (including,
ironically, this one) will fail DMARC (reason: SPF fails *and* DKIM
alignment fails) and because you have 'p=quarantine' they will end up in
recipients' spam folders.
My advice is to use a different domain when posting to mailing lists,
including this one i.e. one that doesn't has no DMARC policy or else
p=none, and either has no SPF policy or does not use '-all'.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.trusteddomain.org/pipermail/opendmarc-users/attachments/20180823/890341af/attachment-0001.htm>
More information about the opendmarc-users
mailing list