[opendmarc-users] How to deal with blocked DMARC reports

Benny Pedersen me at junc.eu
Thu Jan 3 06:31:36 PST 2019


Ken skrev den 2019-01-03 14:38:

> I'm in full agreement, it is very annoying.

users tend to use loopback ip mx for reporting, yes i have seen it

> Unfortunately, the only other option I can think of at the moment
> would be not sending reports.

that only solves half of the problem, mailto: links can be to totaly 
diffrent domain then sender envelope domain :/

so it support ddos another domain mx, why ietf have not thinked about 
that possible is imho sadly

> It should be possible to create a filter for procmail (or whatever) to
> do what you're looking for. But that's well beyond me

procmail is to late to solve the problem in milters

imho best way to solve is to create a new specifik milter to test that 
mailto: can be mailed to, if not succee tempfail senders that shoot them 
self in foots, why would domain owners like to have dmarc reporting when 
there mailserver does not accept it

there was a time i see lots of domains used mx to 127.0.0.1, this was 
simple to reject in postfix, now we need to mx check mailto: in dmarc :/


More information about the opendmarc-users mailing list