Re: dmarc=fail: sendmail, spf, dkim and opendmarc

Liste des GroupesRevenir à cm sendmail 
Sujet : Re: dmarc=fail: sendmail, spf, dkim and opendmarc
De : mm+usenet-es (at) *nospam* dorfdsl.de (Marco Moock)
Groupes : comp.mail.sendmail
Date : 12. Nov 2024, 20:45:07
Autres entêtes
Organisation : A noiseless patient Spider
Message-ID : <20241112204507.22816497@ryz.dorfdsl.de>
References : 1
On 12.11.2024 um 14:56 Uhr Wolfgang Agnes wrote:

This is long because I had LogLevel=15.  You'll see below that
opendmarc adds the authentication-results header with a failure, but
the spf and dkim headers appear to be correct.  I show these two
relevant log lines first and then I show the entire set of log lines
in case it's useful.

If you send outgoing mail, neither SPF nor DMARC must be checked
because they fail by design in this situation.
DKIM needs to sign it, as it does.

You need to configure the dmarc milter not to check if the mail is
being submitted from your clients (e.g. because they use auth or come
from your own IP ranges).
Sadly, I cannot tell you how to configure it to do that, I had the same
problem and I am currently not using any SPF nor dmarc milters.

The opendkim milter doesn't check DKIM if authentication is being used
or a the mail comes from whitelisted IP ranges. I dunno if opendmarc
has the same options.

--
kind regards
Marco

Send spam to 1731419772muell@cartoonies.org


Date Sujet#  Auteur
12 Nov 24 * dmarc=fail: sendmail, spf, dkim and opendmarc4Wolfgang Agnes
12 Nov 24 `* Re: dmarc=fail: sendmail, spf, dkim and opendmarc3Marco Moock
13 Nov 24  `* Re: dmarc=fail: sendmail, spf, dkim and opendmarc2Wolfgang Agnes
13 Nov 24   `- Re: dmarc=fail: sendmail, spf, dkim and opendmarc1Marco Moock

Haut de la page

Les messages affichés proviennent d'usenet.

NewsPortal